aboutsummaryrefslogtreecommitdiff
AgeCommit message (Collapse)Author
2013-01-16Add a test for WAKeyring objectsRuss Allbery
Change-Id: Id360aebe8f0a3911a7d628feafef9b3110801124 Reviewed-on: https://gerrit.stanford.edu/715 Reviewed-by: Russ Allbery <rra@stanford.edu> Tested-by: Russ Allbery <rra@stanford.edu>
2013-01-16Fix a few random errors in the WAKeyring object implementationRuss Allbery
Be sure that we don't purge keys if that would leave us with fewer than three keys. Fix a few other error reporting issues and one syntax error in a WebAuth call. Change-Id: I9bb75de56da3542f8c26ca8eab0814afea06c16a Reviewed-on: https://gerrit.stanford.edu/714 Reviewed-by: Russ Allbery <rra@stanford.edu> Tested-by: Russ Allbery <rra@stanford.edu>
2013-01-16In Wallet::Object::WAKeyring, require the right version of WebAuthRuss Allbery
We need at least version 3.06 to have the encode and decode WebAuth::Keyring functions. Change-Id: Ia4e3ed74cc038c06e3ba6ab13b37ea3cdb06c032 Reviewed-on: https://gerrit.stanford.edu/713 Reviewed-by: Russ Allbery <rra@stanford.edu> Tested-by: Russ Allbery <rra@stanford.edu>
2013-01-16Fix a mistake in the WebAuth keyring section of Wallet::ConfigRuss Allbery
A copy/paste error from the file object configuration. Change-Id: Ie3ee48ed7adcf3fa50a510f085e664c5b0c91300 Reviewed-on: https://gerrit.stanford.edu/712 Reviewed-by: Russ Allbery <rra@stanford.edu> Tested-by: Russ Allbery <rra@stanford.edu>
2013-01-16Add Wallet::Object::WAKeyring documentationRuss Allbery
Change-Id: I12e430acd089de5ac50f62ebbdeb869be31eeeec Reviewed-on: https://gerrit.stanford.edu/711 Reviewed-by: Russ Allbery <rra@stanford.edu> Tested-by: Russ Allbery <rra@stanford.edu>
2012-11-04Add new acl check commandRuss Allbery
Add a new acl check command which, given an ACL ID, prints yes if that ACL already exists and no otherwise. This is parallel to the check command for objects. Also fix some documentation errors in the wallet client documentation, saying that the check command doesn't require any ACL and fixing one place where "show" was used instead of "store".
2012-11-04Add stopwords for the preliminary Wallet::Object::WAKeyring docsRuss Allbery
2012-11-04Adjust test suite to remove unused variablesRuss Allbery
2012-11-04Minor improvement to the Wallet::Kadmin test suiteRuss Allbery
2012-10-03Add splitting get and update to TODORuss Allbery
2012-08-30Clean up a file created by the MIT keytab testsRuss Allbery
2012-08-30Fix POD stopwords and formattingRuss Allbery
Fix a formatting error in Wallet::ACL::LDAP::Attribute and add new stopwords required by the latest aspell.
2012-08-30Fix test counts and an error in the MIT keytab test suiteRuss Allbery
2012-08-30In show, handle undefined columnsRuss Allbery
Some database drivers, such as current SQLite, will return undef for a data column that is set to NULL instead of the empty string. Skip past those data columns without attempting to examine the length of the resulting data.
2012-08-30Display the error message on the first kadmin test failureRuss Allbery
2012-08-30Attempt kinit --no-afslog first in Perl test suiteRuss Allbery
Avoid tromping on the user's AFS credentials if using Heimdal user space.
2012-08-30Add additional TODOs for initial keying and contacting ownersRuss Allbery
2012-08-07Initial implementation of WebAuth keyring objectsRuss Allbery
This is very preliminary. There is no test suite yet, no documentation, and the test suite currently doesn't pass for other reasons.
2012-08-07Add some stopwords for POD spelling checksRuss Allbery
2012-07-16Add NEWS entry for new object type and ACL scheme documentationRuss Allbery
2012-07-16Add objects-and-schemes to EXTRA_DIST, renameRuss Allbery
2012-07-16Add documentation of existing wallet objects and ACL schemesRuss Allbery
2012-07-16Add a few more wallet ideas to TODORuss Allbery
2012-07-10Minor TODO update on database layer redesignRuss Allbery
2012-06-06Resync TODO with JIRARuss Allbery
2012-04-03Add initial LDAP attribute ACL verifierRuss Allbery
A new ACL type, ldap-attr (Wallet::ACL::LDAP::Attribute), is now supported. This ACL type grants access if the LDAP entry corresponding to the principal contains the attribute name and value specified in the ACL. The Net::LDAP and Authen::SASL Perl modules are required to use this ACL type. New configuration settings are required as well; see Wallet::Config for more information. To enable this ACL type for an existing wallet database, use wallet-admin to register the new verifier.
2012-04-03Ignore the new MYMETA.yml file generated by ExtUtils::MakeMakerRuss Allbery
2012-03-29Fix incorrect wallet.conf path in the setup documentationRuss Allbery
2011-12-31Add IDG JIRA ticket number for one TODO itemRuss Allbery
2011-12-31Resync with JIRARuss Allbery
Add a missing TODO item for purging host-related objects that was filed in JIRA.
2011-08-15Check command for ACLs to TODORuss Allbery
2011-06-20Add a comment field to objectsRuss Allbery
Add a comment field to objects and corresponding commands to wallet-backend and wallet to set and retrieve it. The comment field can only be set by the owner or wallet administrators but can be seen by anyone on the show ACL.
2011-06-12Add checksums of file objects and refreshing to TODORuss Allbery
2011-05-17Remove completed TODO entriesRuss Allbery
2011-05-17Add wallet-admin upgrade command to upgrade the databaseRuss Allbery
Hook the new upgrade method of Wallet::Schema into Wallet::Admin and the wallet-admin wrapper script.
2011-05-17Support database upgrades from version 0Russ Allbery
Version 0 is the version without the metadata table. Add a new upgrade method to Wallet::Schema and support upgrading the database to version 1. (Version 1 is not yet finalized.)
2011-05-17Add metadata table to the wallet databaseRuss Allbery
Add a metadata table whose only column, currently, is a version number. We will store the version of the schema in this table and use that to know what to do during upgrades.
2011-03-23Add -ssl-keystore to the Stanford naming conventionsRuss Allbery
2010-09-17Add owners command to wallet-report help outputRuss Allbery
2010-09-07Fix a syntax error in the sample wallet-report remctl configurationRuss Allbery
2010-08-27Add documentation for wallet-unknown-hostsRuss Allbery
Change how autogen generates man pages to use a loop, which will make it easier to add more documentation in the future.
2010-08-25Add tests/HOWTO from C TAP Harness docs/writing-testsrelease/0.12Russ Allbery
2010-08-25Add more new files to EXTRA_DISTRuss Allbery
2010-08-25Add wallet-rekey.pod and Wallet::ACL::Krb5::Regex to EXTRA_DISTRuss Allbery
Also create the Wallet/ACL/Krb5 directory when copying the Perl files for srcdir != builddir builds.
2010-08-25Release 0.12Russ Allbery
2010-08-25Add additional gcc warningsRuss Allbery
Add -Wformat=2 -Winit-self -Wswitch-enum -Wdeclaration-after-statement -Wshadow to the set of gcc warnings. Stop passing -DDEBUG=1 since I no longer use that define anywhere. Change -W to -Wextra since I'm requiring a fairly new GCC anyway.
2010-08-25Update to rra-c-util 2.6 and C TAP Harness 1.5Russ Allbery
Update to C TAP Harness 1.5: * Better reporting of fatal errors in the test suite. * Summarize results at the end of test execution. * Add tests/HOWTO from docs/writing-tests in C TAP Harness. Update to rra-c-util 2.6: * Fix portability to bundled Heimdal on OpenBSD. * Improve checking for krb5_kt_free_entry with older MIT Kerberos. * Fix portability for missing krb5_get_init_creds_opt_free. * Fix header guard for util/xwrite.h. * Restore default compiler configuration after GSS-API library probe.
2010-08-25wallet-unknown-hosts now uses Wallet::ServerRuss Allbery
2010-08-18Add reporting and purge functions to wallet-unknown-hostsRuss Allbery
Add the report of purge-eligible keytabs and the command to do the purge. The command-line parsing still needs work.
2010-08-16First cut at wallet contrib script to find keytabs for unknown hostsRuss Allbery
generated by cgit v1.2.3 (git 2.39.1) at 2025-02-06 09:21:56 +0000