Imported Upstream version 1.0

author: Russ Allbery <rra@stanford.edu> 2013-03-27 16:28:26 -0700
committer: Russ Allbery <rra@stanford.edu> 2013-03-27 16:28:26 -0700
commit: 7dc9e65f7ca2f1181e62f339b0d2ed7ca4978ee5 (patch)
tree: c7232d6cd41d42795880c843b39d45d743b8a276
parent: 6871bae8e26beadaff5035de56b4f70a78961dc9 (diff)
parent: 0a6b556943dbe970e0cf764b030718f3a1361816 (diff)
3 files changed, 13 insertions, 2 deletions
diff --git a/NEWS b/NEWS
index 7371780..5d36863 100644
--- a/NEWS
+++ b/NEWS
@@ -20,6 +20,13 @@ wallet 1.0 (2013-03-27)
     this ACL type for an existing wallet database, use wallet-admin to
     register the new verifier.
 
+    A new object type, wa-keyring (Wallet::Object::WAKeyring), is now
+    supported.  This stores a WebAuth keyring and handles both key
+    rotation and garbage collection of old keys on retrieval of the
+    keyring.  The WebAuth Perl module is required to use this object
+    type.  To enable this object type for an existing wallet database, use
+    wallet-admin to register the new object.
+
     Add a new acl check command which, given an ACL ID, prints yes if that
     ACL already exists and no otherwise.  This is parallel to the check
     command for objects.
diff --git a/README b/README
index a199516..2a96bd0 100644
--- a/README
+++ b/README
@@ -101,6 +101,9 @@ REQUIREMENTS
   binary that supports the -norandkey option to ktadd.  This option is
   included in MIT Kerberos 1.7 and later.
 
+  The WebAuth keyring object support in the wallet server requires the
+  WebAuth Perl module from WebAuth 4.4.0 or later.
+
   To support the LDAP attribute ACL verifier, the Authen::SASL and
   Net::LDAP Perl modules must be installed on the server.  This verifier
   only works with LDAP servers that support GSS-API binds.
diff --git a/perl/Wallet/Admin.pm b/perl/Wallet/Admin.pm
index 97a2c15..42476e9 100644
--- a/perl/Wallet/Admin.pm
+++ b/perl/Wallet/Admin.pm
@@ -125,8 +125,9 @@ sub default_data {
 
     # types default rows.
     my @record = ([ qw/ty_name ty_class/ ],
-               [ 'file', 'Wallet::Object::File' ],
-               [ 'keytab', 'Wallet::Object::Keytab' ]);
+               [ 'file',       'Wallet::Object::File' ],
+               [ 'keytab',     'Wallet::Object::Keytab' ],
+               [ 'wa-keyring', 'Wallet::Object::WAKeyring' ]);
     ($r1) = $self->{schema}->resultset('Type')->populate (\@record);
     warn "default Type not installed" unless defined $r1;
author	Russ Allbery <rra@stanford.edu>	2013-03-27 16:28:26 -0700
committer	Russ Allbery <rra@stanford.edu>	2013-03-27 16:28:26 -0700
commit	7dc9e65f7ca2f1181e62f339b0d2ed7ca4978ee5 (patch)
tree	c7232d6cd41d42795880c843b39d45d743b8a276
parent	6871bae8e26beadaff5035de56b4f70a78961dc9 (diff)
parent	0a6b556943dbe970e0cf764b030718f3a1361816 (diff)