krb5-wallet.git - Unnamed repository; edit this file 'description' to name the repository.

Age	Commit message (Collapse)	Author
2007-12-01	The wallet backend test suite now supports using a database other than	Russ Allbery
	SQLite for testing. Also start a new Util.pm module for the test suite and move the contents sub into that module. More to follow.
2007-11-30	Initial work on supporting testing with MySQL.	Russ Allbery
	Add a drop() method to Wallet::Schema to destroy the wallet database. Add a test suite for it. Add a reinitialize() method to Wallet;:Server that drops the database before creating it. Modify the wallet object test cases to call reinitialize() to create the initial database and drop() to clean up the database after the test is complete. Fix a bug preventing Wallet::Schema from being initialized multiple times. We now stash the schema in a class static variable and reuse it for subsequent initializations, since re-reading DATA doesn't work.
2007-11-20	Attempt to create the object with a default owner on get and store	Russ Allbery
	when the object doesn't exist.
2007-11-20	Add support for running a user-defined function whenever an object is	Russ Allbery
	created by a non-ADMIN user and using the default owner ACL returned by that function provided that the calling user is authorized by that ACL. This permits dynamic creation of new objects based on a default owner ACL programmatically determined from the name of the object.
2007-11-15	Fix the configuration files for remctld, which had gotten inverted.	Russ Allbery

2007-11-15	Use the right remctld configuration for the ACL verifier. Don't produce	Russ Allbery
	Perl warnings if the NetDB roles are empty.
2007-11-15	Add an ACL verifier that checks access against NetDB roles using the	Russ Allbery
	NetDB remctl interface.
2007-10-11	Add an acl_history method to the server layer and test it.	Russ Allbery

2007-10-10	Add a history method to the Wallet::ACL API.	Russ Allbery

2007-10-10	Use variables for the user and host in the history traces.	Russ Allbery

2007-10-10	Adjust for the new behavior of showing the former value of an attribute	Russ Allbery
	when it is set. Use variables for the user and host.
2007-10-10	Add tests for the history method and its ACLs.	Russ Allbery

2007-10-10	Add the history method (for objects).	Russ Allbery

2007-10-10	Add tests for the history trace, which tests history records for	Russ Allbery
	attributes.
2007-10-10	Make enctype changes in sorted order so that the history trace is reliable	Russ Allbery
	and can be tested.
2007-10-10	Redo history tracking for attributes. Currently, all of our attributes	Russ Allbery
	take multiple values, so log them like flags. Hopefully this will continue to work; if not, we'll have to revisit it later. Improve logging for unsetting of attributes.
2007-10-10	Test rollback when attempting to set an invalid enctype.	Russ Allbery

2007-10-10	Start checking the history.	Russ Allbery

2007-10-10	Pass a timestamp in for trace information as well and check the timestamp	Russ Allbery
	on show rather than zeroing it.
2007-10-10	Add an object history method and tests for it.	Russ Allbery

2007-10-09	Fix foreign key reference in the history table for the object name.	Russ Allbery

2007-10-09	Bump version number for the keytab changes.	Russ Allbery

2007-10-09	Add NEWS entry for enctypes. Clarify in the documentation the behavior	Russ Allbery
	of the enctypes attribute when the unchanging flag is set.
2007-10-09	Add user documentation for the enctypes attribute on keytabs. Mention	Russ Allbery
	that the enctype must be in the database in the keytab object API documentation. The README and NEWS files are now done.
2007-10-09	Flesh out the rest of the tests for enctype handling.	Russ Allbery

2007-10-09	We have to check the validity of enctypes ourselves since SQLite doesn't	Russ Allbery
	enforce referential integrity.
2007-10-09	Initial implementation of enctype restriction with a basic test suite.	Russ Allbery
	Still needs a more comprehensive test suite. Remove all attributes for a keytab object when it is destroyed so that when the object is recreated, it doesn't inherit attributes from its previous self. Add a test case for that for the sync attribute.
2007-10-05	Updates to the required test configuration for the kaserver sync tests.	Russ Allbery

2007-10-05	Add comprehensive license information in LICENSE and update the copyright	Russ Allbery
	and license statements in all files. Make sure that some files that were missing copyright information now have them. Reference LICENSE rather than README in all notices.
2007-10-04	Fix error handling if we cannot dup stdout.	Russ Allbery

2007-09-26	Include the synchronization configuration in show() output. Provide a	Russ Allbery
	new object method that subclasses can override to add attribute information to show() and remove the documentation about overriding show().
2007-09-26	Add tests for the Kerberos v5 to Kerberos v4 name mapping and do more	Russ Allbery
	tests of the machinery around kaserver synchronization even if we don't have a full configuration.
2007-09-26	Add support for deleting principals out of the AFS kaserver (optionally)	Russ Allbery
	if synchronization is not set.
2007-09-25	If synchronization is enabled, destroy the principal out of K4 when the	Russ Allbery
	keytab object is destroyed.
2007-09-25	Add support for synchronizing a key with an AFS kaserver in the keytab	Russ Allbery
	object implementation, extracting the DES key with Authen::Krb5 (since ktutil doesn't work). Rename the KEYTAB_CACHE variable to KEYTAB_REMCTL_CACHE to match the rest of the keytab retrieval configuration and reorganize the Wallet::Config documentation to group related configuration options for the keytab backend. Fix a column name in the keytab_enctypes table to be more consistent with the rest of the schema.
2007-09-20	Take multiple values in the attr() method and convert it to a reference	Russ Allbery
	to an array internally so that the callers don't have to be aware of the internal API.
2007-09-20	Change the error handling of the Wallet::ACL list() method to return the	Russ Allbery
	empty list on errors and clear error() so that it can be used to distinguish between an error and an empty ACL.
2007-09-20	Change flag_list to return the empty list on error and clear error.	Russ Allbery
	Change the documentation to tell the caller to call error() after an empty return to see if an error occurred.
2007-09-20	Update the documentation to get rid of the stupid error return from	Russ Allbery
	attr and instead tell the caller to call error() on an empty return to see if there was a problem.
2007-09-20	Call attr() correctly when setting attributes, even if it doesn't	Russ Allbery
	matter for this test.
2007-09-20	Add support for attribute setting and retrieving to the high-level	Russ Allbery
	interface with appropriate ACL support. Retrieving is controlled by the show ACL and setting is controlled by the store ACL, both falling back to owner.
2007-09-19	Add generic attribute support to the object layer and update the API	Russ Allbery
	documentation to talk about overriding it. Update some other bits of the API documentation to include more hints about how to handle overridden methods.
2007-09-19	Redirect stderr from remctld to stdout so that it doesn't show up in	Russ Allbery
	the test summary.
2007-09-19	Skip the unchanging tests if Net::Remctl isn't available.	Russ Allbery

2007-09-19	Implement unchanging support in the keytab object backend, which retrieves	Russ Allbery
	keytabs via remctl from the KDC.
2007-09-19	Allow creation of a keytab object for a principal that already exists.	Russ Allbery
	Catch more errors when checking the existence of a principal. Add a test for creating a principal for which we don't have permissions.
2007-09-19	Drop the leading underscore for internal methods. I haven't been using	Russ Allbery
	that convention elsewhere.
2007-09-18	Test that retrieving data from a locked object still works.	Russ Allbery

2007-09-18	Implement the locked flag.	Russ Allbery

2007-09-18	Flags are now displayed as part of show.	Russ Allbery