1. 04 Jan, 2016 1 commit
  2. 16 Jul, 2014 1 commit
  3. 12 Jul, 2014 4 commits
  4. 13 Apr, 2014 1 commit
  5. 16 Apr, 2013 1 commit
  6. 27 Mar, 2013 1 commit
  7. 28 Feb, 2013 1 commit
  8. 01 Feb, 2013 1 commit
    • Jon Robertson's avatar
      Renamed dbh subroutines and variables for clarity · bf18b39b
      Jon Robertson authored
      In moving from DBI to DBIx::Class, we at first left the various
      variables the same.  This goes through to update them for the proper
      names.
      
      * Wallet::Admin::schema was created to return the schema object (and
      similarly for Wallet::Server and Wallet::Report).
      * Wallet::Admin::dbh was modified to return the actual DBI handle again
      (and similarly for Wallet::Server and Wallet::Report).
      * Various places that used $admin->{dbh} were moved to $admin->{schema}.
      * Various places using $dbh for the schema object were changed to
      $schema.
      
      Change-Id: I00914866e9a8250855a7828474aa9ce0f37b914f
      Reviewed-on: https://gerrit.stanford.edu/733
      
      
      Reviewed-by: default avatarRuss Allbery <rra@stanford.edu>
      Tested-by: default avatarRuss Allbery <rra@stanford.edu>
      bf18b39b
  9. 31 Jan, 2013 1 commit
  10. 30 Aug, 2012 2 commits
  11. 18 May, 2010 1 commit
  12. 04 Mar, 2010 1 commit
  13. 21 Feb, 2010 1 commit
  14. 19 Feb, 2010 3 commits
    • Russ Allbery's avatar
      Refactor Wallet::Kadmin keytab_rekey to return keytab · 93eb5f8f
      Russ Allbery authored
      Change the API for keytab_rekey to match keytab, returning the keytab
      as data instead of writing it to a file.  This simplifies the wallet
      object implementation and moves the logic for reading the temporary
      file into Wallet::Kadmin and its child classes.  (Eventually, there may
      be a kadmin backend that doesn't require using a temporary file.)
      
      Setting KEYTAB_TMP is now required to instantiate either the ::MIT or
      ::Heimdal Wallet::Kadmin classes.
      93eb5f8f
    • Russ Allbery's avatar
      Support unchanging keytabs with Heimdal without remctl · a24d3ac3
      Russ Allbery authored
      Heimdal supports retrieving a keytab containing the existing keys over
      the kadmin protocol.  Move the support for using remctl to retrieve an
      existing keytab into Wallet::Kadmin::MIT and provide two separate
      methods in the Wallet::Kadmin interface: one which rekeys and one which
      doesn't.  Implement the non-rekeying interface for Heimdal.  Expand the
      test suite for the unchanging keytabs to include tests for the Heimdal
      method.
      a24d3ac3
    • Russ Allbery's avatar
      Rename functions in Wallet::Kadmin API · 2651ef43
      Russ Allbery authored
      Now that we support multiple versions of Kerberos, use generic names
      for the functions in the Wallet::Kadmin interface rather than the
      commands from the MIT kadmin interface.
      2651ef43
  15. 10 Feb, 2010 1 commit
  16. 09 Feb, 2010 5 commits
    • Russ Allbery's avatar
      Remove kaserver synchronization support from the wallet backend · 59455fd5
      Russ Allbery authored
      Remove kaserver synchronization support.  It is no longer tested, and
      retaining the code was increasing the complexity of wallet, and some
      specific requirements (such as different realm names between kaserver
      and Kerberos v5 and the kvno handling) were Stanford-specific.  Rather
      than using this support, AFS sites running kaserver will probably find
      deploying Heimdal with its internal kaserver compatibility is probably
      an easier transition approach.
      59455fd5
    • Russ Allbery's avatar
      Additional cleanup of the keytab test suite · 954151bb
      Russ Allbery authored
      Map the AES enctype to the full enctype name, which will work for both
      MIT and Heimdal.  Fix the test count.  Really test rollback from invalid
      enctypes (what we did before made no sense).  Skip tests that will just
      fail if the enctype stuff is not working, since otherwise it confuses
      matters.
      954151bb
    • Russ Allbery's avatar
      Redo how we find enctypes in the keytab test suite · c2422d4f
      Russ Allbery authored
      We may have a different userspace than the Kerberos type, so always
      try klist -ke first and then fall back on ktutil if it fails.
      
      Also display the error message in a few more places if things fail,
      discovered as useful when debugging other problems.
      c2422d4f
    • Russ Allbery's avatar
      Use Wallet::Kadmin to do kadmin operations in the keytab test · a96f4abb
      Russ Allbery authored
      Now that we have Wallet::Kadmin, use it, rather than running the kadmin
      client program.  We may not have the same kadmin client program as the
      server that we're testing against.
      a96f4abb
    • Russ Allbery's avatar
      Use kvno or kgetcred to check principal existance · b6cf2f78
      Russ Allbery authored
      Don't use kadmin to check for principal existence.  We want to verify
      that we can get tickets, not just look at kadmin.  Use whatever is found
      on the user's PATH, not something based on the Kerberos type, since our
      userspace may not match the server implementation.
      b6cf2f78
  17. 08 Feb, 2010 1 commit
    • Russ Allbery's avatar
      Coding style and whitespace fixes · 34666035
      Russ Allbery authored
      Combine a long series of eval blocks into a single block and a single
      error check.  Remove trailing whitespace, and in some cases remove
      trailing () on method calls where the parens aren't useful.
      34666035
  18. 28 Jan, 2010 1 commit
    • Jon Robertson's avatar
      Improved and fixed tests related to Pod and KDC type · 04b87559
      Jon Robertson authored
      Added a fix to the Pod tests to change the order of the arguments in a
      skip statement to the correct order.  Also added tests for the
      KEYTAB_KRBTYPE value in the keytab tests, and changed the Wallet::Kadmin
      module to standardize the errors returned with no keytab set and add new
      error for keytab set but not a valid value.
      04b87559
  19. 22 Jan, 2010 1 commit
    • Jon Robertson's avatar
      Removed valid_principal as a Kadmin API function · 854063db
      Jon Robertson authored
      valid_principal has been removed from Wallet::Kadmin and
      Wallet::Kadmin::Heimdal.  An accessor for it in Wallet::Object::Keytab
      has also been removed, as have the tests in perl/t/keytab.t for the
      function.  It still remains within Wallet::Kadmin::MIT and is used there,
      but only as a private method for flagging what the kadmin command-line
      interface cannot handle.
      854063db
  20. 20 Jan, 2010 1 commit
    • Russ Allbery's avatar
      Coding style fixes for Perl wallet code · d6840497
      Russ Allbery authored
      Strip trailing whitespace, convert tabs to spaces, add newlines to
      exceptions, and remove a few stray blank lines and a few other minor
      coding style oddities.  Make the SQL style consistent.
      d6840497
  21. 05 Jan, 2010 1 commit
    • Jon Robertson's avatar
      Added keytab testing cases for Heimdal KDC · fc1dd4f5
      Jon Robertson authored
      Added cases to handle the Wallet::Object::Keytab module using a Heimdal
      KDC as well as an MIT KDC.  In most cases this is transparent, but some
      tests are skipped for Heimdal, and the commands run to test that the
      created principals and keytabs are correct are different for Heimdal.
      The code now branches based on the value of
      $Wallet::Config::KEYTAB_KRBTYPE.
      fc1dd4f5
  22. 17 Dec, 2009 1 commit
    • Jon Robertson's avatar
      Added keytab testing cases for Heimdal KDC · e0f69c0b
      Jon Robertson authored
      Added cases to handle the Wallet::Object::Keytab module using a Heimdal
      KDC as well as an MIT KDC.  In most cases this is transparent, but some
      tests are skipped for Heimdal, and the commands run to test that the
      created principals and keytabs are correct are different for Heimdal.
      The code now branches based on the value of
      $Wallet::Config::KEYTAB_KRBTYPE.
      e0f69c0b
  23. 09 Jun, 2009 1 commit
  24. 12 Feb, 2008 1 commit
  25. 11 Feb, 2008 1 commit
  26. 23 Jan, 2008 2 commits
  27. 04 Jan, 2008 1 commit
    • Russ Allbery's avatar
      The build system now probes for GSS-API, Kerberos v5 and v4, and AFS · 71ab261f
      Russ Allbery authored
      libraries as necessary rather than hard-coding libraries.  Building
      on systems without strong shared library dependencies and building
      against static libraries should now work.
      
      Building kasetkey (for AFS kaserver synchronization) is now optional
      and not enabled by default.  Pass --with-afs to enable it.  This
      allows wallet to be easily built in an environment without AFS.
      71ab261f
  28. 06 Dec, 2007 1 commit
  29. 01 Dec, 2007 1 commit