krb5-wallet.git - Unnamed repository; edit this file 'description' to name the repository.

Age	Commit message (Collapse)	Author
2008-02-20	Report the correct error message when addprinc fails while creating a	Russ Allbery
	keytab object.
2008-02-13	Remove the restriction that all object implementations must have class	Russ Allbery
	names of Wallet::Object::* and all ACL verifier implementations must have class names of Wallet::ACL::*.
2008-02-13	Fix the signature of register_verifier in the documentation.	Russ Allbery

2008-02-13	Move register_object and register_verifier into Wallet::Admin.	Russ Allbery

2008-02-09	Actually implement FILE_MAX_SIZE.	Russ Allbery

2008-02-09	Add file object support to the wallet server.	Russ Allbery

2008-02-09	Minor documentation fixes.	Russ Allbery

2008-02-08	No unnecessary ; after __END__.	Russ Allbery

2008-02-08	Wallet::Config and hence the wallet server now checks for the	Russ Allbery
	environment variable WALLET_CONFIG and loads configuration from the file specified there instead of /etc/wallet/wallet.conf if it is set.
2008-02-07	The current version of Net::Remctl can't handle explicit undef or the	Russ Allbery
	empty string as a principal argument. Be careful not to provide a principal argument if no principal was set. This workaround can be removed once we depend on a later version of Net::Remctl.
2008-02-07	Add a new autocreate API call that tries to create an object using the	Russ Allbery
	default ACLs. Remove autocreation support from create, which now requires that one be on the ADMIN ACL, and from get and store. The wallet client will soon know how to do the right thing.
2008-02-07	Add a check command to the wallet server to determine whether an object	Russ Allbery
	already exists.
2008-02-06	Check naming policy on wallet object creation before checking the	Russ Allbery
	default ACLs to avoid creating and stranding an ACL when the naming policy check fails.
2008-01-23	Return IDs and names from list_acls.	Russ Allbery

2008-01-23	Add Wallet::Admin interfaces to list all objects and all ACLs in the	Russ Allbery
	database.
2008-01-23	Only disconnect the database handle during Wallet::Server object	Russ Allbery
	destruction if the database handle hasn't already been destroyed.
2008-01-23	Add a destroy() method to the Wallet::Admin object and use that instead	Russ Allbery
	of Wallet::Schema::drop in the test suite.
2008-01-23	Refactor database initialization into a new Wallet::Admin module.	Russ Allbery

2008-01-23	Add a pointer to the wallet URL in the documentation.	Russ Allbery

2008-01-22	Update documentation for the API to Wallet::Object::Base and	Russ Allbery
	Wallet::ACL to take Wallet::Database objects instead of database handles.
2008-01-22	Add a Wallet::Database class that now holds the database connection code	Russ Allbery
	previously in Wallet::Server. Remove all the attribute setting on database handles in the other classes since Wallet::Database handles that initialization.
2008-01-17	Support enforcing a naming policy for wallet objects via a Perl	Russ Allbery
	function in the wallet server configuration file.
2007-12-07	Fix the module name in the SYNOPSIS example.release/0.5 debian/0.5-1	Russ Allbery

2007-12-07	Check a default creation ACL first before the ADMIN ACL when deciding	Russ Allbery
	whether we can auto-create a non-existent ACL, since creating one with the ADMIN ACL doesn't create a useful object. Allow @ in wallet-backend arguments so that principal names can be passed in.
2007-12-07	Correctly implement the documented intention that setting an attribute	Russ Allbery
	to the empty string clears the attribute values.
2007-12-07	Get rid of more return undefs.	Russ Allbery

2007-12-07	Get rid of a bunch more return undefs.	Russ Allbery

2007-12-07	Bump version numbers appropriately.	Russ Allbery

2007-12-07	Load the Perl modules for ACL verifiers and object types dynamically	Russ Allbery
	now that we're reading the class from the database.
2007-12-06	Be a bit more careful and conservative when stripping realms off.	Russ Allbery

2007-12-06	Fix the keytab principal validation regex to allow instances	Russ Allbery
	containing periods. Otherwise, it's hard to manage host keytabs. Add a missing test suite for that method.
2007-12-05	Various coding style fixes and cleanup based on a much-appreciated	Russ Allbery
	code audit by Simon Cozens. I didn't take all of his advise, and he shouldn't be blamed for any remaining issues.
2007-12-05	Coding style improvements.	Russ Allbery

2007-12-05	Bump version number for previous changes.	Russ Allbery

2007-12-05	Maintain a global cache of ACL verifiers in Wallet::ACL and reuse them	Russ Allbery
	over the life of the process if we see another ACL line from the same scheme, rather than only reusing ACL verifiers within a single ACL.
2007-12-05	Determine the class for object and ACL schema implementations from the	Russ Allbery
	database rather than a hard-coded list and provide Wallet::Schema methods for adding new class mappings. Add a missing class mapping for the netdb ACL schema verifier.
2007-12-04	Add a subclass of the NetDB ACL verifier that requires the principal	Russ Allbery
	have an instance of "root" and strips that instance before checking NetDB roles.
2007-12-01	Following the DBI documentation, turn on AutoCommit after RaiseError so	Russ Allbery
	that we have some hope of getting error messages if it fails.
2007-12-01	If we're using MySQL, force all the tables to InnoDB so that we get	Russ Allbery
	transactions.
2007-12-01	Don't disconnect on destruction of the server object if the handle is	Russ Allbery
	marked with InactiveDestroy.
2007-12-01	Set InactiveDestroy to the right thing. Doh.	Russ Allbery

2007-12-01	Make sure we always have a valid object and access to our database	Russ Allbery
	handle when calling kadmin so that we can do our database handle mangling.
2007-12-01	Don't use die when forking kasetkey fails and similarly don't close the	Russ Allbery
	database connection on a failed fork.
2007-12-01	Don't close our open database handles after a failed fork.	Russ Allbery

2007-12-01	Expiration dates are now expressed in YYYY-MM-DD HH:MM:SS instead of	Russ Allbery
	seconds since epoch and returned the same way. Timestamps are now stored in the database as correct date and time types rather than seconds since epoch to work properly with MySQL.
2007-12-01	Don't do an in-place edit of the SQL inside the object, since we then	Russ Allbery
	can't reuse the object with another database handle.
2007-12-01	Move wallet.conf to /etc/wallet since we're going to want to put other	Russ Allbery
	things in that directory as well.
2007-11-30	Initial work on supporting testing with MySQL.	Russ Allbery
	Add a drop() method to Wallet::Schema to destroy the wallet database. Add a test suite for it. Add a reinitialize() method to Wallet;:Server that drops the database before creating it. Modify the wallet object test cases to call reinitialize() to create the initial database and drop() to clean up the database after the test is complete. Fix a bug preventing Wallet::Schema from being initialized multiple times. We now stash the schema in a class static variable and reuse it for subsequent initializations, since re-reading DATA doesn't work.
2007-11-20	Attempt to create the object with a default owner on get and store	Russ Allbery
	when the object doesn't exist.
2007-11-20	Add support for running a user-defined function whenever an object is	Russ Allbery
	created by a non-ADMIN user and using the default owner ACL returned by that function provided that the calling user is authorized by that ACL. This permits dynamic creation of new objects based on a default owner ACL programmatically determined from the name of the object.