aboutsummaryrefslogtreecommitdiff
path: root/server/wallet-backend
AgeCommit message (Collapse)Author
2014-07-15Fix wallet-backend parsing of expiresRuss Allbery
Fix wallet-backend parsing of the expires command to expect only one argument as the expiration. This was correctly documented in the wallet client man page, but not in wallet-backend, and it accepted two arguments (a date and time). However, Wallet::Server did not and would just ignore the time. Now wallet-backend correctly requires the date and time be passed as a single argument. Change-Id: I8e51a576ea8781502f4eb983462ceca867b002be Reviewed-on: https://gerrit.stanford.edu/1556 Reviewed-by: Russ Allbery <rra@stanford.edu> Tested-by: Russ Allbery <rra@stanford.edu>
2014-07-11Test for Perl strict and minimum versionRuss Allbery
Fix strictness issues across the whole code base, and ensure that all Perl scripts enable warnings. (Hopefully enabling warnings won't cause problems for the server.) Change-Id: I4dee49f7a6bcbeeee21d74bf61a1fd26514f832c Reviewed-on: https://gerrit.stanford.edu/1532 Reviewed-by: Russ Allbery <rra@stanford.edu> Tested-by: Russ Allbery <rra@stanford.edu>
2014-04-13Change my email address to eagle@eyrie.orgRuss Allbery
Change-Id: I4c2b5d7c807d6c27dd18a3b92eef66d21287d21e Reviewed-on: https://gerrit.stanford.edu/1481 Reviewed-by: Russ Allbery <rra@stanford.edu> Tested-by: Russ Allbery <rra@stanford.edu>
2013-03-27Accept any characters in the argument to the comment commandRuss Allbery
It's nice to have spaces and other special characters in comments, so allow any character rather than applying the normal argument filtering. Change-Id: Iec8584f1f6893906db7245fbe571d62ebc60f72a Reviewed-on: https://gerrit.stanford.edu/989 Reviewed-by: Russ Allbery <rra@stanford.edu> Tested-by: Russ Allbery <rra@stanford.edu>
2013-03-27Allow owners of objects to destroy them by defaultRuss Allbery
Owners of wallet objects are now allowed to destroy them. In previous versions, a special destroy ACL had to be set and the owner ACL wasn't used for destroy actions, but operational experience at Stanford has shown that letting owners destroy their own objects is a better model. Change-Id: I0e97d7a000e62cf5321add7b44140db6edc6769f Reviewed-on: https://gerrit.stanford.edu/973 Reviewed-by: Russ Allbery <rra@stanford.edu> Tested-by: Russ Allbery <rra@stanford.edu>
2013-02-27Add explicit license statements to all POD documentationRuss Allbery
For scripts, do this by moving the copyright and license statement from the top of the script into the POD documentation. Also try to uniformly put the SEE ALSO section last. Change-Id: Id31a5c0d5e6f6831a689deec41a13d35bb40465a Reviewed-on: https://gerrit.stanford.edu/850 Reviewed-by: Russ Allbery <rra@stanford.edu> Tested-by: Russ Allbery <rra@stanford.edu>
2012-11-04Add new acl check commandRuss Allbery
Add a new acl check command which, given an ACL ID, prints yes if that ACL already exists and no otherwise. This is parallel to the check command for objects. Also fix some documentation errors in the wallet client documentation, saying that the check command doesn't require any ACL and fixing one place where "show" was used instead of "store".
2011-06-20Add a comment field to objectsRuss Allbery
Add a comment field to objects and corresponding commands to wallet-backend and wallet to set and retrieve it. The comment field can only be set by the owner or wallet administrators but can be seen by anyone on the show ACL.
2010-06-29Add a krb5-regex ACL typeIan Durkacz
Add the krb5-regex ACL type and corresponding Wallet::ACL::Krb5::Regex module. This ACL is identical to krb5 except that it takes a regular expression matching principals instead of a string that must match exactly.
2010-02-20Update documentation for support for storing nul dataRuss Allbery
Update the wallet client, wallet-backend, and Wallet::Object::File documentation for the support for storing data containing nul characters using the new stdin support in remctld. Add this to NEWS.
2010-02-20wallet-backend gets the third store argument from stdin if missingRuss Allbery
If there is no third argument to store, read it from standard input instead. This is the preferred way of running wallet-backend, using stdin=last support from remctl 2.14 and later. Receiving the third argument as a regular argument continues to be supported for backward compatibility.
2010-02-09Reorganize main POD tests and add a spelling checkRuss Allbery
Add a POD spelling test to the non-Perl-module part of the code and move the documentation tests into a separate directory. Merge the POD syntax tests between client and server into one test. Reformat all of the POD documentation to use 74 columns. Fix a few revealed spelling errors or weird wordings.
2010-02-09Remove the sync documentation from wallet-backendRuss Allbery
The code to support the attribute is still present in case we add a system with which to synchronize later on.
2010-02-09Use the long enctype name for aes256-cts-hmac-sha1-96Russ Allbery
Heimdal requires the full name and doesn't support the short name that MIT has as an alias. Change the documentation to use the long name uniformly.
2009-06-09Remove Subversion Id stringsRuss Allbery
2008-09-12Suppress the argument to store from logging on failures as well.Russ Allbery
2008-08-14Fix logging in wallet-backend and the remctl configuration to not logRuss Allbery
the data passed to store.
2008-08-13Correctly handle storing of data that begins with a dash and don'tRuss Allbery
parse it as an argument to wallet-backend.
2008-02-12wallet-backend now supports a -q flag, which disables syslog logging.Russ Allbery
2008-02-07Correctly enable syslog logging in wallet-backend.Russ Allbery
2008-02-07Add a new autocreate API call that tries to create an object using theRuss Allbery
default ACLs. Remove autocreation support from create, which now requires that one be on the ADMIN ACL, and from get and store. The wallet client will soon know how to do the right thing.
2008-02-07Add a check command to the wallet server to determine whether an objectRuss Allbery
already exists.
2008-01-23No longer any reason to load DBI directly here.Russ Allbery
2007-12-07Check a default creation ACL first before the ADMIN ACL when decidingRuss Allbery
whether we can auto-create a non-existent ACL, since creating one with the ADMIN ACL doesn't create a useful object. Allow @ in wallet-backend arguments so that principal names can be passed in.
2007-12-07Allow the empty string in wallet-backend arguments.Russ Allbery
When writing to a file in the wallet client program, remove an old backup file before creating a new backup and don't fail if the backup already exists.
2007-12-01Expiration dates are now expressed in YYYY-MM-DD HH:MM:SS instead ofRuss Allbery
seconds since epoch and returned the same way. Timestamps are now stored in the database as correct date and time types rather than seconds since epoch to work properly with MySQL.
2007-11-14The wallet backend script now logs all commands and errors to syslog.Russ Allbery
2007-10-11Add an acl history function to the server backend and the clientRuss Allbery
documentation and test it. Update NEWS and TODO for the completion of the history code.
2007-10-10Add history to the wallet-backend and to its documentation and the end-userRuss Allbery
documentation. Fix a variety of other problems with the documentation of the ACLs used and add mentions of getattr and setattr to a few places where they were missing.
2007-10-09Add NEWS entry for enctypes. Clarify in the documentation the behaviorRuss Allbery
of the enctypes attribute when the unchanging flag is set.
2007-10-09Add user documentation for the enctypes attribute on keytabs. MentionRuss Allbery
that the enctype must be in the database in the keytab object API documentation. The README and NEWS files are now done.
2007-10-08Fix some heading levels for attribute information.Russ Allbery
2007-10-05Add comprehensive license information in LICENSE and update the copyrightRuss Allbery
and license statements in all files. Make sure that some files that were missing copyright information now have them. Reference LICENSE rather than README in all notices.
2007-09-27Initial cut at srvtab support in the wallet client. This still requiresRuss Allbery
additional work and cleanup, particularly support for the sync attribute.
2007-09-24Add support for attribute setting and retrieval to the front end andRuss Allbery
document them in the user documentation.
2007-09-18Document the locked flag in the server backend and client man pages.Russ Allbery
Document locked flag issues when implementing a new object type.
2007-09-18Add flag clear and flag set to the public interface.Russ Allbery
2007-09-17Add an acl show command to the front end that calls the appropriateRuss Allbery
Wallet::Server method.
2007-09-14Rewrite to put the guts into a function to make testing easier. RemoveRuss Allbery
Wallet::Config, which was no longer used now that the database opening code is in Wallet::Server. Fix the exception in argument checking for store.
2007-09-01Note that the commands section is duplicated from the wallet documentation.Russ Allbery
2007-09-01Print error messages for unknown commands. Rewrite the command docs toRuss Allbery
use a better convention for command arguments and to include quite a few more details.
2007-09-01Add documentation.Russ Allbery
2007-09-01Add acl destroy as a command, add newlines after the owner, expires, andRuss Allbery
getacl returns, and handle undef returns from owner, expires, and getacl that aren't errors.
2007-08-31Implement argument checking. Stop explicitly including the MySQL driverRuss Allbery
since DBI doesn't require it.
2007-08-29Wallet::Server is now responsible for connecting to the database. Don'tRuss Allbery
bother working hard to disconnect the database on exit, since the DESTROY DBI method will do the right thing.
2007-08-29Initial driver implementation.Russ Allbery
generated by cgit v1.2.3 (git 2.39.1) at 2025-02-05 22:49:03 +0000