summaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2008-03-21Add prettier ACL names in history entries.Russ Allbery
2008-03-18Add syntax-checking ACL entries.Russ Allbery
2008-03-12Another sample script from Stanford's wallet migration.Russ Allbery
2008-02-20Report the correct error message when addprinc fails while creating aRuss Allbery
keytab object.
2008-02-19Rename the -4 option to -k and fix a few bugs.Russ Allbery
2008-02-19Initial version.Russ Allbery
2008-02-19Remove declaration of unused variable.Russ Allbery
2008-02-19Fix a typo and add an explicit license pointer.Russ Allbery
2008-02-13Release 0.8-1.release/0.8debian/0.8-1Russ Allbery
2008-02-13Additional flags for the Stanford hacked kinit so that the test suiteRuss Allbery
can run in AFS.
2008-02-13Release 0.8.Russ Allbery
2008-02-13Remove the restriction that all object implementations must have classRuss Allbery
names of Wallet::Object::* and all ACL verifier implementations must have class names of Wallet::ACL::*.
2008-02-13Update the design documentation to reflect the current protocol andRuss Allbery
implementation.
2008-02-13wallet-admin now supports registering new object or ACL verifierRuss Allbery
implementations in the database.
2008-02-13Fix the signature of register_verifier in the documentation.Russ Allbery
2008-02-13Move register_object and register_verifier into Wallet::Admin.Russ Allbery
2008-02-12wallet-backend now supports a -q flag, which disables syslog logging.Russ Allbery
2008-02-12Correctly handle get of an empty object in the wallet client. TheRuss Allbery
empty string is valid object content. Add a full end-to-end test suite to catch protocol mismatches between the client and server, such as the one fixed in this release.
2008-02-12Add a few additional bits.Russ Allbery
2008-02-12Add wallet server configuration for end-to-end test.Russ Allbery
2008-02-12Initial pass at an end-to-end test suite.Russ Allbery
2008-02-12Move getcreds into the utility library as well.Russ Allbery
2008-02-11Move the remctld handling into the utility library.Russ Allbery
2008-02-09Actually implement FILE_MAX_SIZE.Russ Allbery
2008-02-09Add file object support to the wallet server.Russ Allbery
2008-02-09Minor documentation fixes.Russ Allbery
2008-02-08No unnecessary ; after __END__.Russ Allbery
2008-02-08Wallet::Config and hence the wallet server now checks for theRuss Allbery
environment variable WALLET_CONFIG and loads configuration from the file specified there instead of /etc/wallet/wallet.conf if it is set.
2008-02-08Fix the wallet client to use check instead of exists.Russ Allbery
2008-02-08Avoid uninitialized values if klist isn't installed.release/0.7debian/0.7-1Russ Allbery
2008-02-08Release 0.7-1.Russ Allbery
2008-02-08Release 0.7.Russ Allbery
2008-02-07Some reorganizing and prioritization.Russ Allbery
2008-02-07Added POD testing for the client and server documentation.Russ Allbery
2008-02-07Include news message for previous commit.Russ Allbery
2008-02-07Add new exists and autocreate wallet server interfaces. The firstRuss Allbery
states whether a given object exists and the second attempts to create the object using the default owner rules. Remove default owner handling from the create interface, which is now for administrators only. Remove server-side auto-creation of objects on get or store and instead have the client check for object existence and call autocreate if necessary. This removes confusion between default ACLs and administrative object creation for users who are also on the ADMIN ACL.
2008-02-07Fix copyright date.Russ Allbery
2008-02-07Correctly enable syslog logging in wallet-backend.Russ Allbery
2008-02-07Update copyright date.Russ Allbery
2008-02-07Switch to our, which works fine with testing.Russ Allbery
2008-02-07The current version of Net::Remctl can't handle explicit undef or theRuss Allbery
empty string as a principal argument. Be careful not to provide a principal argument if no principal was set. This workaround can be removed once we depend on a later version of Net::Remctl.
2008-02-07Add additional ideas from jhutz.Russ Allbery
2008-02-07Add a new autocreate API call that tries to create an object using theRuss Allbery
default ACLs. Remove autocreation support from create, which now requires that one be on the ADMIN ACL, and from get and store. The wallet client will soon know how to do the right thing.
2008-02-07Add a check command to the wallet server to determine whether an objectRuss Allbery
already exists.
2008-02-07When creating a srvtab based on a just-downloaded keytab, extract theRuss Allbery
srvtab key before merging the keytab into an existing file. Otherwise, if the new keys had a lower kvno than the old keys (possible after deleting and recreating the object), the wrong key would be extracted for the srvtab.
2008-02-07Add UNUSED markers for older versions of Kerberos.Russ Allbery
2008-02-06Check naming policy on wallet object creation before checking theRuss Allbery
default ACLs to avoid creating and stranding an ACL when the naming policy check fails.
2008-02-05Fix the example remctl configuration for keytab-backend to use theRuss Allbery
correct script name.
2008-02-01keytab-backend now passes kadmin.local ktadd its options in a specificRuss Allbery
order to satisfy the picky option parser.
2008-01-31* Create /var/lib/keytabs in the keytab-backend package.Russ Allbery
generated by cgit v1.2.3 (git 2.39.1) at 2025-02-06 13:16:34 +0000