commit d86285852c0555c8f63e5d12062f6d36603635fd
author Lutz Justen <ljusten@chromium.org> Thu May 04 02:46:54 2017 +0000
committer android-build-merger <android-build-merger@google.com> Thu May 04 02:46:54 2017 +0000
tree 9862f20c9aa15977b2da03640df52df94ed63e89
parent 8768ccb9262ccc193b2b2f0d37b1585a7b1cf271
parent b94f37739489ba79c1585eed8cddd7b742a541c3

authpolicy: Add password and last error status
am: b94f377394

Change-Id: Iebe533ffa8a392dcfd431b58a57265966dd0a9b1

dbus/authpolicy/active_directory_info.proto

diff --git a/dbus/authpolicy/active_directory_info.proto b/dbus/authpolicy/active_directory_info.proto
index f949866..90c1047 100644
--- a/dbus/authpolicy/active_directory_info.proto
+++ b/dbus/authpolicy/active_directory_info.proto
@@ -24,7 +24,17 @@
   // Logon name of the user (without @realm). Taken from the sAMAccountName
   // property of the Active Directory user account information.
   optional string sam_account_name = 4;
-  // Next ID to use: 5
+  // Timestamp when the password was last set, see
+  // https://msdn.microsoft.com/en-us/library/ms679430(v=vs.85).aspx. Taken from
+  // the pwdLastSet property of the Active Directory user account information.
+  // Used in authpolicyd only, unused in Chrome.
+  optional uint64 pwd_last_set = 5;
+  // User account control flags, see
+  // https://msdn.microsoft.com/en-us/library/ms680832(v=vs.85).aspx. Taken from
+  // the userAccountControl property of the Active Directory user account
+  // information. Used in authpolicyd only, unused in Chrome.
+  optional uint32 user_account_control = 6;
+  // Next ID to use: 7
 }
 
 // Message sent to Chromium by authpolicy service as a response to a successful
@@ -38,9 +48,21 @@
     // Next ID to use: 3
   }
 
+  // Whether the password has to be changed or sync'ed with cryptohome.
+  enum PasswordStatus {
+    PASSWORD_VALID = 0;    // Valid as far as we can tell.
+    PASSWORD_EXPIRED = 1;  // User has to enter a new password on next logon.
+    PASSWORD_CHANGED = 2;  // Changed on server, possibly from other client.
+    // Next ID to use: 3
+  }
+
   // User's account information, see above.
   optional ActiveDirectoryAccountInfo account_info = 1;
   // Status of the user's ticket-granting-ticket (TGT).
   optional TgtStatus tgt_status = 2;
-  // Next ID to use: 3
+  // Status of the user's password.
+  optional PasswordStatus password_status = 3;
+  // Last error returned from AuthenticateUser D-Bus call, see ErrorType.
+  optional int32 last_auth_error = 4;
+  // Next ID to use: 5
 }