krb5-wallet.git - Unnamed repository; edit this file 'description' to name the repository.

Age	Commit message (Collapse)	Author
2008-01-23	Return IDs and names from list_acls.	Russ Allbery

2008-01-23	Add Wallet::Admin interfaces to list all objects and all ACLs in the	Russ Allbery
	database.
2008-01-23	Only disconnect the database handle during Wallet::Server object	Russ Allbery
	destruction if the database handle hasn't already been destroyed.
2008-01-23	Add a destroy() method to the Wallet::Admin object and use that instead	Russ Allbery
	of Wallet::Schema::drop in the test suite.
2008-01-23	Refactor database initialization into a new Wallet::Admin module.	Russ Allbery

2008-01-23	Add a pointer to the wallet URL in the documentation.	Russ Allbery

2008-01-22	Update documentation for the API to Wallet::Object::Base and	Russ Allbery
	Wallet::ACL to take Wallet::Database objects instead of database handles.
2008-01-22	Add a Wallet::Database class that now holds the database connection code	Russ Allbery
	previously in Wallet::Server. Remove all the attribute setting on database handles in the other classes since Wallet::Database handles that initialization.
2008-01-17	Support enforcing a naming policy for wallet objects via a Perl	Russ Allbery
	function in the wallet server configuration file.
2007-12-07	Fix the module name in the SYNOPSIS example.release/0.5 debian/0.5-1	Russ Allbery

2007-12-07	Check a default creation ACL first before the ADMIN ACL when deciding	Russ Allbery
	whether we can auto-create a non-existent ACL, since creating one with the ADMIN ACL doesn't create a useful object. Allow @ in wallet-backend arguments so that principal names can be passed in.
2007-12-07	Correctly implement the documented intention that setting an attribute	Russ Allbery
	to the empty string clears the attribute values.
2007-12-07	Get rid of more return undefs.	Russ Allbery

2007-12-07	Get rid of a bunch more return undefs.	Russ Allbery

2007-12-07	Bump version numbers appropriately.	Russ Allbery

2007-12-07	Load the Perl modules for ACL verifiers and object types dynamically	Russ Allbery
	now that we're reading the class from the database.
2007-12-06	Be a bit more careful and conservative when stripping realms off.	Russ Allbery

2007-12-06	Fix the keytab principal validation regex to allow instances	Russ Allbery
	containing periods. Otherwise, it's hard to manage host keytabs. Add a missing test suite for that method.
2007-12-05	Various coding style fixes and cleanup based on a much-appreciated	Russ Allbery
	code audit by Simon Cozens. I didn't take all of his advise, and he shouldn't be blamed for any remaining issues.
2007-12-05	Coding style improvements.	Russ Allbery

2007-12-05	Bump version number for previous changes.	Russ Allbery

2007-12-05	Maintain a global cache of ACL verifiers in Wallet::ACL and reuse them	Russ Allbery
	over the life of the process if we see another ACL line from the same scheme, rather than only reusing ACL verifiers within a single ACL.
2007-12-05	Determine the class for object and ACL schema implementations from the	Russ Allbery
	database rather than a hard-coded list and provide Wallet::Schema methods for adding new class mappings. Add a missing class mapping for the netdb ACL schema verifier.
2007-12-04	Add a subclass of the NetDB ACL verifier that requires the principal	Russ Allbery
	have an instance of "root" and strips that instance before checking NetDB roles.
2007-12-01	Following the DBI documentation, turn on AutoCommit after RaiseError so	Russ Allbery
	that we have some hope of getting error messages if it fails.
2007-12-01	If we're using MySQL, force all the tables to InnoDB so that we get	Russ Allbery
	transactions.
2007-12-01	Don't disconnect on destruction of the server object if the handle is	Russ Allbery
	marked with InactiveDestroy.
2007-12-01	Set InactiveDestroy to the right thing. Doh.	Russ Allbery

2007-12-01	Make sure we always have a valid object and access to our database	Russ Allbery
	handle when calling kadmin so that we can do our database handle mangling.
2007-12-01	Don't use die when forking kasetkey fails and similarly don't close the	Russ Allbery
	database connection on a failed fork.
2007-12-01	Don't close our open database handles after a failed fork.	Russ Allbery

2007-12-01	Expiration dates are now expressed in YYYY-MM-DD HH:MM:SS instead of	Russ Allbery
	seconds since epoch and returned the same way. Timestamps are now stored in the database as correct date and time types rather than seconds since epoch to work properly with MySQL.
2007-12-01	Don't do an in-place edit of the SQL inside the object, since we then	Russ Allbery
	can't reuse the object with another database handle.
2007-12-01	Move wallet.conf to /etc/wallet since we're going to want to put other	Russ Allbery
	things in that directory as well.
2007-11-30	Initial work on supporting testing with MySQL.	Russ Allbery
	Add a drop() method to Wallet::Schema to destroy the wallet database. Add a test suite for it. Add a reinitialize() method to Wallet;:Server that drops the database before creating it. Modify the wallet object test cases to call reinitialize() to create the initial database and drop() to clean up the database after the test is complete. Fix a bug preventing Wallet::Schema from being initialized multiple times. We now stash the schema in a class static variable and reuse it for subsequent initializations, since re-reading DATA doesn't work.
2007-11-20	Attempt to create the object with a default owner on get and store	Russ Allbery
	when the object doesn't exist.
2007-11-20	Add support for running a user-defined function whenever an object is	Russ Allbery
	created by a non-ADMIN user and using the default owner ACL returned by that function provided that the calling user is authorized by that ACL. This permits dynamic creation of new objects based on a default owner ACL programmatically determined from the name of the object.
2007-11-15	Use the right remctld configuration for the ACL verifier. Don't produce	Russ Allbery
	Perl warnings if the NetDB roles are empty.
2007-11-15	Add an ACL verifier that checks access against NetDB roles using the	Russ Allbery
	NetDB remctl interface.
2007-10-11	Add an acl_history method to the server layer and test it.	Russ Allbery

2007-10-10	Add a history method to the Wallet::ACL API.	Russ Allbery

2007-10-10	Add the history method (for objects).	Russ Allbery

2007-10-10	Make enctype changes in sorted order so that the history trace is reliable	Russ Allbery
	and can be tested.
2007-10-10	Redo history tracking for attributes. Currently, all of our attributes	Russ Allbery
	take multiple values, so log them like flags. Hopefully this will continue to work; if not, we'll have to revisit it later. Improve logging for unsetting of attributes.
2007-10-10	Add an object history method and tests for it.	Russ Allbery

2007-10-09	Fix foreign key reference in the history table for the object name.	Russ Allbery

2007-10-09	Bump version number for the keytab changes.	Russ Allbery

2007-10-09	Add NEWS entry for enctypes. Clarify in the documentation the behavior	Russ Allbery
	of the enctypes attribute when the unchanging flag is set.
2007-10-09	Add user documentation for the enctypes attribute on keytabs. Mention	Russ Allbery
	that the enctype must be in the database in the keytab object API documentation. The README and NEWS files are now done.
2007-10-09	We have to check the validity of enctypes ourselves since SQLite doesn't	Russ Allbery
	enforce referential integrity.