From 3a6d69ab78981b53aa5c20f99e2ee370268a40ff Mon Sep 17 00:00:00 2001 From: Russ Allbery Date: Wed, 27 Mar 2013 16:13:24 -0700 Subject: Document the new WebAuth keyring object type Add a mention to NEWS and to the REQUIREMENTS section of README. Change-Id: I560f737e9cb899046f7fe3c8d2c8c648d31041e7 Reviewed-on: https://gerrit.stanford.edu/985 Reviewed-by: Russ Allbery Tested-by: Russ Allbery --- NEWS | 7 +++++++ README | 3 +++ 2 files changed, 10 insertions(+) diff --git a/NEWS b/NEWS index 7371780..5d36863 100644 --- a/NEWS +++ b/NEWS @@ -20,6 +20,13 @@ wallet 1.0 (2013-03-27) this ACL type for an existing wallet database, use wallet-admin to register the new verifier. + A new object type, wa-keyring (Wallet::Object::WAKeyring), is now + supported. This stores a WebAuth keyring and handles both key + rotation and garbage collection of old keys on retrieval of the + keyring. The WebAuth Perl module is required to use this object + type. To enable this object type for an existing wallet database, use + wallet-admin to register the new object. + Add a new acl check command which, given an ACL ID, prints yes if that ACL already exists and no otherwise. This is parallel to the check command for objects. diff --git a/README b/README index a199516..2a96bd0 100644 --- a/README +++ b/README @@ -101,6 +101,9 @@ REQUIREMENTS binary that supports the -norandkey option to ktadd. This option is included in MIT Kerberos 1.7 and later. + The WebAuth keyring object support in the wallet server requires the + WebAuth Perl module from WebAuth 4.4.0 or later. + To support the LDAP attribute ACL verifier, the Authen::SASL and Net::LDAP Perl modules must be installed on the server. This verifier only works with LDAP servers that support GSS-API binds. -- cgit v1.2.3