Unnamed repository; edit this file 'description' to name the repository. https://git.gnuabordo.com.br/krb5-wallet.git/atom?h=master 2020-05-18T05:20:42+00:00 2020-05-18T05:20:42+00:00 Russ Allbery eagle@eyrie.org 2020-05-18T05:20:42+00:00 urn:sha1:303d68b41763b0aab62cd37190ded99998d8afc5 In general/server, suppress warnings from an unversioned database when testing various failure scenarios. 2018-06-03T22:36:42+00:00 Russ Allbery eagle@eyrie.org 2018-06-03T22:36:21+00:00 urn:sha1:4a0b9e747c8abfca24f30b7ce1e9a725ce11474a Add SPDX-License-Identifier headers to all substantial source files. Collapse copyright years. Add some Emacs configuration for files where the copyright notice is at the end. Add a test that every file has SPDX-License-Identifier. 2015-11-19T07:48:07+00:00 Jon Robertson jonrober@stanford.edu 2015-08-27T17:34:22+00:00 urn:sha1:6b0cad572edef05d119abc8fc843c8c5d33665b8 Added a version of the LDAP attribute ACL. Like the root version for NetDB, this requires that the principal end in /root, and then strips off /root before doing matching against the given LDAP attribute. Change-Id: I23119ef9c9ce3e0556f5d71a509815f2efc1bbe6 2015-11-19T07:47:40+00:00 Jon Robertson jonrober@stanford.edu 2015-06-09T22:04:14+00:00 urn:sha1:5d668b86ced32e84fd0f49046326a0a5e20dc8eb We needed a way to report on where all a specific ACL might be nested, since we can't destroy an ACL until it's no longer being nested. For the immediate this is part of wallet-report. Change-Id: I41c11b73325d1eb3a28289eac3505bf965877be1 2015-11-19T07:47:26+00:00 Jon Robertson jonrober@stanford.edu 2015-06-09T20:06:56+00:00 urn:sha1:43f386a6e3d0c141cd732b5ef5c2be8349f51f03 When destroying an ACL nested in other ACLs, we now fail with an explanation rather than going through to remove all the places it's nested. That's more in line with how we handle trying to destroy ACLs that own things. Change-Id: I8bc0530e37c54369ec52d9b369f8fabe98def77a 2015-06-08T22:24:34+00:00 Jon Robertson jonrober@stanford.edu 2015-06-08T18:15:37+00:00 urn:sha1:86533bf43d071048d654691dc18a3004b6142081 This verifier will allow embedding one ACL in another for more flexible ACL handling. As part of thise we've also added the ability for each verifier to do a syntax check to see if a given name is valid for that verifier. For the moment this returns true for everything but Nested. Nested will check to make sure the given name is an existing group. Change-Id: Iacdf146d46ed882d57b7534058d34db6e6ec1de4 2015-06-08T22:24:34+00:00 Jon Robertson jonrober@stanford.edu 2015-06-04T17:56:30+00:00 urn:sha1:626d3ee2b94384a4ffe95d5e8a907f359ff7cbfb All error messages should now use the ACL name rather than the ADL id, for readability. Change-Id: I2d1cfe806b459ef083293df4fa0b83cb4cef673b 2015-06-08T22:24:34+00:00 Jon Robertson jonrober@stanford.edu 2015-04-16T21:58:58+00:00 urn:sha1:45a7c9d2896cf2e0d1548fd98b3b78f9f812744f "wallet-report objects host <hostname>" reports on all objects that belong to the given host. This can be used to query things for retiring systems. Change-Id: Ib1c8e5978fed141d54ecc8504b56b43c037f9b17 2015-06-08T22:24:34+00:00 Jon Robertson jonrober@stanford.edu 2015-02-17T22:32:59+00:00 urn:sha1:1575e25c9e9edc8d577a0f1118732c98871984e0 Two new reports, 'types' and 'schemes'. These will print out all configured types and acl schemes. Change-Id: Ib06d37755fe80c168a6f723c9a1e683fdf5dfcde 2015-06-08T22:24:34+00:00 Jon Robertson jonrober@stanford.edu 2015-02-07T07:43:50+00:00 urn:sha1:0e16def8a9e12f9b2232b29da79cdacb6710b086 New command for replacing the ownership of anything owned by a specific ACL with another ACL. This differs from acl rename in that it's to be used when the destination ACL already exists and potentially already owns some objects. Change-Id: I765bebf499fe0f861abc2ffe1873990590beed36