| Age | Commit message (Collapse) | Author |
|---|
|
This requires changing the ACL verifier plumbing to pass object
type and name all the way through when verifying ACLs. Hopefully
I caught everything.
|
|
A new ACL type, external (Wallet::ACL::External), is now supported.
This ACL runs an external command to check if access is allowed, and
passes the principal and the ACL identifier to that command. To
enable this ACL type for an existing wallet database, use wallet-admin
to register the new verifier.
Change-Id: I21b72b4373eefc92985aca1505e2d1a1ec699602
|
|
Change-Id: Idd2e1038fc02dd51aab9a9ffdd5b3400db2b106f
|
|
The documentation now includes information about the Duo file types, and
the new password types. This is both the general information, and the
Stanford-specific naming docs.
Change-Id: Iae256224a063ce42f22cd933ef7bb3ab402e0e2d
|
|
A new object type, duo (Wallet::Object::Duo), is now supported. This
creates an integration with the Duo Security cloud multifactor
authentication service and allows retrieval of the integration key,
secret key, and admin hostname. Currently, only UNIX integration
types are supported. The Net::Duo Perl module is required to use this
object type. New configuration settings are required as well; see
Wallet::Config for more information. To enable this object type for
an existing wallet database, use wallet-admin to register the new
object.
Change-Id: I2c0dac75e81f526b34d6b509c4bdaecb43dd4a9d
Reviewed-on: https://gerrit.stanford.edu/1516
Reviewed-by: Russ Allbery <rra@stanford.edu>
Tested-by: Russ Allbery <rra@stanford.edu>
|
|
tivoli-key used to always contain the entirety of the TSM.PWD file,
but it's more useful to store only the encryption key in password
form.
Change-Id: Id770691fb756b7675ec0fe2eee1308a8974c9c3f
Reviewed-on: https://gerrit.stanford.edu/1309
Reviewed-by: Russ Allbery <rra@stanford.edu>
Tested-by: Russ Allbery <rra@stanford.edu>
|
|
Adam requested some clarification on whether the name of the object
should be fully-qualified or not (since we didn't in the legacy
naming scheme).
Change-Id: I52fcab71e54aee38f0c03eff774f927c5836ad03
Reviewed-on: https://gerrit.stanford.edu/1054
Reviewed-by: Russ Allbery <rra@stanford.edu>
Tested-by: Russ Allbery <rra@stanford.edu>
|
|
Change-Id: If833e4a6434362e04e738274a6f7fb276a9efe51
Reviewed-on: https://gerrit.stanford.edu/988
Reviewed-by: Russ Allbery <rra@stanford.edu>
Tested-by: Russ Allbery <rra@stanford.edu>
|
|
Owners of wallet objects are now allowed to destroy them. In previous
versions, a special destroy ACL had to be set and the owner ACL wasn't
used for destroy actions, but operational experience at Stanford has
shown that letting owners destroy their own objects is a better model.
Change-Id: I0e97d7a000e62cf5321add7b44140db6edc6769f
Reviewed-on: https://gerrit.stanford.edu/973
Reviewed-by: Russ Allbery <rra@stanford.edu>
Tested-by: Russ Allbery <rra@stanford.edu>
|
|
Change-Id: Id5af9714e3d4f516cf7391c869eff89521e145c5
Reviewed-on: https://gerrit.stanford.edu/849
Reviewed-by: Russ Allbery <rra@stanford.edu>
Tested-by: Russ Allbery <rra@stanford.edu>
|
|
Used currently by MDM to store both the certificate and the key in
the same file for convenience.
Change-Id: I38901ac93fe3022c2e00f735a0f995500841d709
Reviewed-on: https://gerrit.stanford.edu/784
Reviewed-by: Russ Allbery <rra@stanford.edu>
Tested-by: Russ Allbery <rra@stanford.edu>
|
|
If there are multiple SSL private keys for the same host-based CN,
an application name can be added as an additional component of the
name.
Change-Id: I06e25359b291a77a7dbca1a7f3db84afb2b16ddd
Reviewed-on: https://gerrit.stanford.edu/754
Reviewed-by: Russ Allbery <rra@stanford.edu>
Tested-by: Russ Allbery <rra@stanford.edu>
|
|
Remove the group for host-based file object names. Move the group
to the second component for non-host-based names so that the first
component is always the object type. Add some additional object
types and clarify wording based on feedback from Adam.
Change-Id: I5db7b23d2b004c69afb869df5624d455b751c0d5
Reviewed-on: https://gerrit.stanford.edu/724
Reviewed-by: Russ Allbery <rra@stanford.edu>
Tested-by: Russ Allbery <rra@stanford.edu>
|
|
Recommend slash-separated names by default. Remove some obsolete
bits and update a lot of the recommendations and wording.
Change-Id: I44cbf8116e7529b00a61261248ff9daecacdb910
Reviewed-on: https://gerrit.stanford.edu/723
Reviewed-by: Russ Allbery <rra@stanford.edu>
Tested-by: Russ Allbery <rra@stanford.edu>
|
|
|
|
|
|
|
|
|
|
The previous wording implied that <group>-<server>-tivoli-key was only
used for encryption keys. Allow for either passwords or encryption keys,
and remove the note that it should be base64-encoded since wallet now
supports binary files.
|
|
If there is no third argument to store, read it from standard input
instead. This is the preferred way of running wallet-backend, using
stdin=last support from remctl 2.14 and later. Receiving the third
argument as a regular argument continues to be supported for backward
compatibility.
|
|
|
|
We have some general configuration files that contain database
passwords. Add a general naming convention to avoid creating new
ones with each new type of config file.
|
|
Add a naming convention for puppet.conf files containing secure data
and reorganize the naming convention documentation to group all
service objects together.
|
|
|
|
|
|
|
|
|
|
naming.
|
|
|
|
implementation.
|
|
database and list all objects and ACLs in the database.
|
|
things in that directory as well.
|
|
Still needs a more comprehensive test suite.
Remove all attributes for a keytab object when it is destroyed so that
when the object is recreated, it doesn't inherit attributes from its
previous self. Add a test case for that for the sync attribute.
|
|
new object method that subclasses can override to add attribute
information to show() and remove the documentation about overriding
show().
|
|
attr and instead tell the caller to call error() on an empty return
to see if there was a problem.
|
|
documentation to talk about overriding it. Update some other bits of
the API documentation to include more hints about how to handle
overridden methods.
|
|
Document locked flag issues when implementing a new object type.
|
|
|
|
|
|
|
|
system, taking out all the documentation of the object API that's now
covered in the Wallet::Object::Base documentation.
|
|
aren't going to do, and flesh out some of the thoughts.
|
|
|
|
rework the introduction a little.
|
|
information but can also return the SQL commands or apply them to a
database.
|
|
rather than returning undef so that we can save the error message.
|
|
pluralization of other table names. Add indexes and uniqueness
constraints and fix the object_history primary key.
|
|
|
|
I'll do something different with a policy framework.
Added some more information about what this file documents.
Added the ACL API, although that's shortly going to move out of this file
into documentation.
|
|
I was only going to use that for the krb5-group ACL, which I won't be
implementing.
|
