proxmox-mirrors/pve-access-control
1
0
Fork 0
mirror of https://git.proxmox.com/git/pve-access-control synced 2025-06-12 08:34:54 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
128 Commits 5 Branches 0 Tags 868 KiB
1abc2c0aee
Commit Graph

128 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Dietmar Maurer
1abc2c0aee add oath two factor auth, bump version to 3.0-14 2014-07-17 14:04:13 +02:00
Dietmar Maurer
077f078cd6 enable yubico OTP (by removing debuging code) 2014-07-15 14:18:17 +02:00
Dietmar Maurer
96f8ebd625 add basic support for two factor auth 2014-06-23 11:42:44 +02:00
Dietmar Maurer
ab652a8018 add experimental code for yubico OTP verification 2014-06-20 12:58:17 +02:00
Dietmar Maurer
298450ab9d bump version to 3.0-13 2014-05-22 07:16:36 +02:00
Dietmar Maurer
11a9043610 use correct connection string for AD auth (use encryption and port info). 2014-05-22 07:12:25 +02:00
Dietmar Maurer
396034e443 bump version to 3.0-12 2014-04-30 14:48:27 +02:00
Dietmar Maurer
39e4e36348 add dummy API for login page 2014-04-30 14:45:57 +02:00
Dietmar Maurer
26361123df bump version tp 3.0-11 2014-01-31 10:26:17 +01:00
Dietmar Maurer
63691fc66a cleanup previous patch 2014-01-22 07:25:09 +01:00
Lindsay Mathieson
dc7573bf85 Sets common hot keys for spice client 
* "Ctl-Alt-Insert" for secure-attention (Ctrl-Alt-del)
 * "Shift-F11" for Full Screen toggle
 * "Ctrl-Alt-R" for cursor release

Signed-off-by: Lindsay Mathieson <lindsay.mathieson@gmail.com>
 2014-01-22 07:22:57 +01:00
Dietmar Maurer
3643383db7 bump version to 3.0-10 2013-12-10 10:45:25 +01:00
Dietmar Maurer
cee5583b3d implement helper to generate SPICE remote-viewer configuration 
Moved read_x509_subject_spice() from PVE::QemuServer.
Depend on libnet-ssleay-perl.
 2013-12-10 10:43:46 +01:00
Dietmar Maurer
e4f8fc2e7e allow dots in access paths 
Because storage IDs may contain dots.
 2013-11-26 07:52:05 +01:00
Dietmar Maurer
fe2defd9d5 return correct 401 status code for unauthorized calls 
New HTTP::Server will delay the call by 3 seconds.
 2013-11-18 11:25:32 +01:00
Dietmar Maurer
0baedcf727 bump version to 3.0-9 2013-11-18 09:15:35 +01:00
Dietmar Maurer
6126ab75a0 prevent user enumeration attacks 2013-11-18 09:05:04 +01:00
Dietmar Maurer
d4b63eaedb bump version to 3.0-8 2013-10-28 08:12:29 +01:00
Dietmar Maurer
cb442f35e7 spice: use lowercase hostname in ticktet signature 2013-10-28 08:10:48 +01:00
Dietmar Maurer
7c410d6301 use warnings instead of global -w flag 2013-10-01 13:04:53 +02:00
Dietmar Maurer
495949443a bump version to 3.0-7 2013-10-01 12:36:02 +02:00
Dietmar Maurer
5f494227b8 remove path related code from check_volume_access() 2013-10-01 12:09:51 +02:00
Alexandre Derumier
854f1dceb6 check_volume_access : use parse_volname instead path 
to avoid extra calls for some storageplugins (zfs,nexenta).

Signed-off-by: Alexandre Derumier <aderumier@odiso.com>
 2013-10-01 11:40:57 +02:00
Dietmar Maurer
36ad0763f4 add reference to git version 2013-09-02 10:32:39 +02:00
Dietmar Maurer
fe7de5d099 bump version to 3.0-6 2013-07-19 12:39:26 +02:00
Dietmar Maurer
3f62bdbea6 produce shorter spiceproxy tickets 
By using a simple Digest with private secret /etc/pve/pve-www.key. This is
less secure than pub key auth, but good enough for the proxy.
 2013-07-19 12:35:23 +02:00
Dietmar Maurer
4cdd950757 bump version to 3.0-5 2013-06-26 13:08:58 +02:00
Dietmar Maurer
bf3e6d3105 new ticket code for spice 2013-06-26 13:07:00 +02:00
Dietmar Maurer
83d1f13ec0 assemble_spice_ticket: do not use base32 encoding 2013-06-25 12:03:48 +02:00
Alexandre Derumier
23b35225d3 assemble_spice_ticket 
Signed-off-by: Alexandre Derumier <aderumier@odiso.com>
 2013-06-25 11:48:05 +02:00
Dietmar Maurer
677f9ab0d9 bump version to 3.0-4 2013-05-14 11:57:13 +02:00
Dietmar Maurer
018ae3a90e moved add_vm_to_pool/remove_vm_from_pool from qemu-server 
Because we can also use this for openvz containers
 2013-05-14 11:55:26 +02:00
Dietmar Maurer
7b395f990d rename VM.Copy to VM.Clone 2013-05-02 11:44:52 +02:00
Dietmar Maurer
139a8ecfb4 bump version to 3.0-3 2013-04-29 11:42:25 +02:00
Dietmar Maurer
ff4b223563 add VM.Copy priviledge 
And a new role called PVETemplateUser
 2013-04-29 11:40:32 +02:00
Dietmar Maurer
b78ce7c252 remove CGI.pm related code 
New pveproxy does not need that.
 2013-04-15 12:34:41 +02:00
Dietmar Maurer
786820f901 bump version to 3.0-1 for wheezy release 2013-03-15 08:07:17 +01:00
Dietmar Maurer
e5ae548727 fix access permissions for backup files 
bump version to 1.0-26
 2013-02-28 10:01:04 +01:00
Dietmar Maurer
37d6e4772e bump RELEASE to 2.2 2012-09-24 12:00:15 +02:00
Dietmar Maurer
e3e6510c3a add VM.Snapshot permission 2012-09-10 09:24:37 +02:00
Dietmar Maurer
1e15ebe7b5 untaint path 2012-06-06 13:06:51 +02:00
Dietmar Maurer
437be042c2 correctly compute GUI capabilities (consider pools) 2012-05-30 08:47:43 +02:00
Dietmar Maurer
5bb4e06a64 new plugin architecture for Auth modules 2012-05-22 10:43:30 +02:00
Dietmar Maurer
3030a17643 do not allow user names including slash 2012-04-24 10:10:35 +02:00
Dietmar Maurer
3036e8b1be add ability to fork cli workers in background 2012-04-24 10:10:12 +02:00
Dietmar Maurer
dd2cfee072 return set of privileges on login - can be used to adopt GUI 2012-04-17 10:26:48 +02:00
Dietmar Maurer
533219a122 fix bug #151: corretly parse username inside ticket 2012-04-11 10:21:15 +02:00
Dietmar Maurer
1cf154b72f allow users to change his own password 2012-04-11 09:40:42 +02:00
Dietmar Maurer
2de144076b better error message for useradd 2012-03-01 12:40:52 +01:00
Dietmar Maurer
e2993b66c3 set propagate flag by default 2012-03-01 12:38:46 +01:00