diff options
| author | Russ Allbery <rra@stanford.edu> | 2013-03-27 16:28:35 -0700 |
|---|---|---|
| committer | Russ Allbery <rra@stanford.edu> | 2013-03-27 16:28:35 -0700 |
| commit | 7a64b4a91d0b3a640ac876afedc2c0a656651d34 (patch) | |
| tree | dc9b8ab270ffc9140f03748957949c73e74b50c3 | |
| parent | 48f0ca3940bf99bc4af63774e02586a632928579 (diff) | |
| parent | 7dc9e65f7ca2f1181e62f339b0d2ed7ca4978ee5 (diff) | |
Merge tag 'upstream/1.0' into debian
Upstream version 1.0
| -rw-r--r-- | NEWS | 7 | ||||
| -rw-r--r-- | README | 3 | ||||
| -rw-r--r-- | perl/Wallet/Admin.pm | 5 |
3 files changed, 13 insertions, 2 deletions
@@ -20,6 +20,13 @@ wallet 1.0 (2013-03-27) this ACL type for an existing wallet database, use wallet-admin to register the new verifier. + A new object type, wa-keyring (Wallet::Object::WAKeyring), is now + supported. This stores a WebAuth keyring and handles both key + rotation and garbage collection of old keys on retrieval of the + keyring. The WebAuth Perl module is required to use this object + type. To enable this object type for an existing wallet database, use + wallet-admin to register the new object. + Add a new acl check command which, given an ACL ID, prints yes if that ACL already exists and no otherwise. This is parallel to the check command for objects. @@ -101,6 +101,9 @@ REQUIREMENTS binary that supports the -norandkey option to ktadd. This option is included in MIT Kerberos 1.7 and later. + The WebAuth keyring object support in the wallet server requires the + WebAuth Perl module from WebAuth 4.4.0 or later. + To support the LDAP attribute ACL verifier, the Authen::SASL and Net::LDAP Perl modules must be installed on the server. This verifier only works with LDAP servers that support GSS-API binds. diff --git a/perl/Wallet/Admin.pm b/perl/Wallet/Admin.pm index 97a2c15..42476e9 100644 --- a/perl/Wallet/Admin.pm +++ b/perl/Wallet/Admin.pm @@ -125,8 +125,9 @@ sub default_data { # types default rows. my @record = ([ qw/ty_name ty_class/ ], - [ 'file', 'Wallet::Object::File' ], - [ 'keytab', 'Wallet::Object::Keytab' ]); + [ 'file', 'Wallet::Object::File' ], + [ 'keytab', 'Wallet::Object::Keytab' ], + [ 'wa-keyring', 'Wallet::Object::WAKeyring' ]); ($r1) = $self->{schema}->resultset('Type')->populate (\@record); warn "default Type not installed" unless defined $r1; |