1. 04 Jan, 2016 1 commit
    • Russ Allbery's avatar
      Add Wallet::ACL::External ACL type · 23a6b180
      Russ Allbery authored
      A new ACL type, external (Wallet::ACL::External), is now supported.
      This ACL runs an external command to check if access is allowed, and
      passes the principal and the ACL identifier to that command.  To
      enable this ACL type for an existing wallet database, use wallet-admin
      to register the new verifier.
      
      Change-Id: I21b72b4373eefc92985aca1505e2d1a1ec699602
      23a6b180
  2. 03 Jan, 2016 1 commit
  3. 15 Dec, 2015 1 commit
  4. 03 Dec, 2015 1 commit
    • Bill MacAllister's avatar
      Implement support for managed Active Directory keytabs · 0eb853eb
      Bill MacAllister authored
      This version implements Active Directory as the store for keytabs.
      The interface to Active Directory uses a combination of direct LDAP
      queries and the msktutil utility.  This version does not support the
      wallet unchanging flag.  Unchanging requires that a keytab be
      retrieved without changing the password/kvno which is not supported by
      msktutil.
      0eb853eb
  5. 08 Jun, 2015 3 commits
    • Jon Robertson's avatar
      ACL.pm: Error messages use name rather than ID · 626d3ee2
      Jon Robertson authored
      All error messages should now use the ACL name rather than the ADL id,
      for readability.
      
      Change-Id: I2d1cfe806b459ef083293df4fa0b83cb4cef673b
      626d3ee2
    • Jon Robertson's avatar
      Added new method for wallet-backend, update · 000b3386
      Jon Robertson authored
      update will work generally like get, but only for objects that have a
      concept of updating content automatically, like keytabs and passwords.
      For these, the content will be updated before sending to the client.
      
      In a later release get for keytabs will be modified to never update the
      kvno before sending to the user, and so the unchanging flag will be
      phased out in lieu of explicitly using the method that does what you
      want.
      
      Change-Id: I96a84416c5e50278eb29fe07052dde6e063bc071
      000b3386
    • Jon Robertson's avatar
      Updated NEWS with changes so far · 956cc938
      Jon Robertson authored
      Change-Id: Icb894b4b52e6b5c07a7c12251b1f4c79025c7bc6
      956cc938
  6. 09 Dec, 2014 1 commit
    • Russ Allbery's avatar
      Release 1.2 · 391f4f92
      Russ Allbery authored
      Change-Id: I4157db0f690542db0eb1bfbcb7e15bfee890cd65
      391f4f92
  7. 28 Oct, 2014 1 commit
  8. 09 Oct, 2014 1 commit
  9. 16 Jul, 2014 11 commits
  10. 12 Jul, 2014 4 commits
    • Russ Allbery's avatar
      Switch to Module::Build for the Perl module · 1575d5c3
      Russ Allbery authored
      The wallet server now requires Perl 5.8 or later (instead of 5.006 in
      previous versions) and is now built with Module::Build instead of
      ExtUtils::MakeMaker.  This should be transparent to anyone not working
      with the source code, since Perl 5.8 was released in 2002, but
      Module::Build is now required to build the wallet server.  It is
      included in some versions of Perl, or can be installed separately from
      CPAN, distribution packages, or other sources.
      
      Also reorganize the test suite to use subdirectories.
      
      Change-Id: Id06120ba2bad1ebbfee3d8a48ca2f25869463165
      Reviewed-on: https://gerrit.stanford.edu/1530
      
      
      Reviewed-by: default avatarRuss Allbery <rra@stanford.edu>
      Tested-by: default avatarRuss Allbery <rra@stanford.edu>
      1575d5c3
    • Russ Allbery's avatar
      Update to rra-c-util 5.5 and C TAP Harness 3.1 · da0aba21
      Russ Allbery authored
      Update to rra-c-util 5.5:
      
      * Use Lancaster Consensus environment variables to control tests.
      * Use calloc or reallocarray for protection against integer overflows.
      * Suppress warnings from Kerberos headers in non-system paths.
      * Assume calloc initializes pointers to NULL.
      * Assume free(NULL) is properly ignored.
      * Improve error handling in xasprintf and xvasprintf.
      * Check the return status of snprintf and vsnprintf properly.
      * Preserve errno if snprintf fails in vasprintf replacement.
      
      Update to C TAP Harness 3.1:
      
      * Reopen standard input to /dev/null when running a test list.
      * Don't leak extraneous file descriptors to tests.
      * Suppress lazy plans and test summaries if the test failed with bail.
      * runtests now treats the command line as a list of tests by default.
      * The full test executable path can now be passed to runtests -o.
      * Improved harness output for tests with lazy plans.
      * Improved harness output to a terminal for some abort cases.
      * Flush harness output after each test even when not on a terminal.
      
      Change-Id: I05161eb3d3be49a98f7762e876cb114da0c84e9a
      Reviewed-on: https://gerrit.stanford.edu/1529
      
      
      Reviewed-by: default avatarRuss Allbery <rra@stanford.edu>
      Tested-by: default avatarRuss Allbery <rra@stanford.edu>
      da0aba21
    • Russ Allbery's avatar
      Clean up foreign keys and indices for history tables · f1b99382
      Russ Allbery authored
      Previous versions had erroneous foreign key constraints between the
      object history table and the objects table.  Remove those constraints,
      and an incorrect linkage in the schema for the ACL history, and add
      indices for the object type, name, and ACL instead.
      
      Change-Id: Ie0ff2448caa82c7a533a1b9ff5c13029bb6ae4ef
      Reviewed-on: https://gerrit.stanford.edu/1526
      
      
      Reviewed-by: default avatarRuss Allbery <rra@stanford.edu>
      Tested-by: default avatarRuss Allbery <rra@stanford.edu>
      f1b99382
    • Russ Allbery's avatar
      Add new object type for Duo integrations · 26927d5b
      Russ Allbery authored
      A new object type, duo (Wallet::Object::Duo), is now supported.  This
      creates an integration with the Duo Security cloud multifactor
      authentication service and allows retrieval of the integration key,
      secret key, and admin hostname.  Currently, only UNIX integration
      types are supported.  The Net::Duo Perl module is required to use this
      object type.  New configuration settings are required as well; see
      Wallet::Config for more information.  To enable this object type for
      an existing wallet database, use wallet-admin to register the new
      object.
      
      Change-Id: I2c0dac75e81f526b34d6b509c4bdaecb43dd4a9d
      Reviewed-on: https://gerrit.stanford.edu/1516
      
      
      Reviewed-by: default avatarRuss Allbery <rra@stanford.edu>
      Tested-by: default avatarRuss Allbery <rra@stanford.edu>
      26927d5b
  11. 09 Jan, 2014 1 commit
  12. 07 Jan, 2014 1 commit
  13. 28 May, 2013 1 commit
  14. 16 Apr, 2013 1 commit
  15. 28 Mar, 2013 1 commit
  16. 27 Mar, 2013 4 commits
  17. 28 Feb, 2013 1 commit
    • Russ Allbery's avatar
      Update to rra-c-util 4.8 and C TAP Harness 1.12 · 234e3805
      Russ Allbery authored
      Update to rra-c-util 4.8:
      
      * Look for krb5-config in /usr/kerberos/bin after the user's PATH.
      * Kerberos library probing fixes without transitive shared libraries.
      * Fix Autoconf warnings when probing for AIX's bundled Kerberos.
      * Avoid using krb5-config if --with-{krb5,gssapi}-{include,lib} given.
      * Correctly remove -I/usr/include from Kerberos and GSS-API flags.
      * Build on systems where krb5/krb5.h exists but krb5.h does not.
      * Pass --deps to krb5-config unless --enable-reduced-depends was used.
      * Do not use krb5-config results unless gssapi is supported.
      * Fix probing for Heimdal's libroken to work with older versions.
      * Update warning flags for GCC 4.6.1.
      * Update utility library and test suite for newer GCC warnings.
      * Fix broken GCC attribute markers causing compilation problems.
      * Suppress warnings on compilers that support gcc's __attribute__.
      * Add notices to all files copied over from rra-c-util.
      * Fix warnings when reporting memory allocation failure in messages.c.
      * Fix message utility library compiler warnings on 64-bit systems.
      * Include strings.h for additional POSIX functions where found.
      * Use an atexit handler to clean up after Kerberos tests.
      * Kerberos test configuration now goes in tests/config.
      * The principal of the test keytab is determined automatically.
      * Simplify the test suite calls for Kerberos and remctl tests.
      * Check for a missing ssize_t.
      * Improve the xstrndup utility function.
      * Checked asprintf variants are now void functions and cannot fail.
      * Fix use of long long in portable/mkstemp.c.
      * Fix test suite portability to Solaris.
      * Substantial improvements to the POD syntax and spelling checks.
      
      Update to C TAP Harness 1.12:
      
      * Fix compliation of runtests with more aggressive warnings.
      * Add a more complete usage message and a -h command-line flag.
      * Flush stderr before printing output from tests.
      * Better handle running shell tests without BUILD and SOURCE set.
      * Fix runtests to honor -s even if BUILD and -b aren't given.
      * runtests now frees all allocated resources on exit.
      * Only use feature-test macros when requested or built with gcc -ansi.
      * Drop is_double from the C TAP library to avoid requiring -lm.
      * Avoid using local in the shell libtap.sh library.
      * Suppress warnings on compilers that support gcc's __attribute__.
      
      Change-Id: I394294d5486ac1ce265c7713bec71a148aaaf1ce
      Reviewed-on: https://gerrit.stanford.edu/841
      
      
      Reviewed-by: default avatarRuss Allbery <rra@stanford.edu>
      Tested-by: default avatarRuss Allbery <rra@stanford.edu>
      234e3805
  18. 04 Nov, 2012 1 commit
    • Russ Allbery's avatar
      Add new acl check command · 357532f3
      Russ Allbery authored
      Add a new acl check command which, given an ACL ID, prints yes if that
      ACL already exists and no otherwise.  This is parallel to the check
      command for objects.
      
      Also fix some documentation errors in the wallet client documentation,
      saying that the check command doesn't require any ACL and fixing one
      place where "show" was used instead of "store".
      357532f3
  19. 16 Jul, 2012 1 commit
  20. 04 Apr, 2012 1 commit
    • Russ Allbery's avatar
      Add initial LDAP attribute ACL verifier · f1eab726
      Russ Allbery authored
      A new ACL type, ldap-attr (Wallet::ACL::LDAP::Attribute), is now
      supported.  This ACL type grants access if the LDAP entry
      corresponding to the principal contains the attribute name and value
      specified in the ACL.  The Net::LDAP and Authen::SASL Perl modules are
      required to use this ACL type.  New configuration settings are
      required as well; see Wallet::Config for more information.  To enable
      this ACL type for an existing wallet database, use wallet-admin to
      register the new verifier.
      f1eab726
  21. 20 Jun, 2011 1 commit
    • Russ Allbery's avatar
      Add a comment field to objects · 74ed6945
      Russ Allbery authored
      Add a comment field to objects and corresponding commands to
      wallet-backend and wallet to set and retrieve it.  The comment field
      can only be set by the owner or wallet administrators but can be seen
      by anyone on the show ACL.
      74ed6945
  22. 17 May, 2011 1 commit