proxmox-mirrors/pve-access-control
1
0
Fork 0
mirror of https://git.proxmox.com/git/pve-access-control synced 2025-06-14 07:18:21 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
263 Commits 5 Branches 0 Tags 868 KiB
2b4c98ab01
Commit Graph

22 Commits

Author SHA1 Message Date
Dietmar Maurer
af5d7da7f1 Revert "Add title and print_width fields to properties" 
This reverts commit bcf4eb3d49.
I think those titles does not add any value.
 2018-08-03 10:45:13 +02:00
Stoiko Ivanov
bcf4eb3d49 Add title and print_width fields to properties 
Used for printing in pveum

Signed-off-by: Stoiko Ivanov <s.ivanov@proxmox.com>
 2018-06-27 16:40:55 +02:00
Dominik Csapak
f4e7fc7bab fix #1612: give authenticate_user_ldap the realm on second server 
this was missing and lead to 'use of unitialized value $realm...'
and a not working second server if a bindpw was defined

Signed-off-by: Dominik Csapak <d.csapak@proxmox.com>
Reviewed-by: Thomas Lamprecht <t.lamprecht@proxmox.com>
 2018-01-11 11:39:08 +01:00
Philip Abernethy
0a6e09fd47 Whitespace fixes 
Reviewed-by: Thomas Lamprecht <t.lamprecht@proxmox.com>
 2017-09-22 08:38:50 +02:00
Philip Abernethy
5654af83fa Remove unused Dumper uses 
Reviewed-by: Thomas Lamprecht <t.lamprecht@proxmox.com>
 2017-09-22 08:38:48 +02:00
Dominik Csapak
8bdbfd4ddf fix trailing whitespace 
Signed-off-by: Dominik Csapak <d.csapak@proxmox.com>
 2017-08-08 11:46:10 +02:00
Dominik Csapak
23e0cf85fd fix #1470: ad: server and client certificate support 
as with ldap we now accept
the verify, capath, cert and certkey parameters for active directory

Signed-off-by: Dominik Csapak <d.csapak@proxmox.com>
 2017-08-08 11:46:10 +02:00
Wolfgang Bumiller
e03c2aef17 ldap: server and client certificate support 
This adds 4 more options to the ldap authentication method:

verify: boolean
  If enabled, the server certificate must be valid

capath: path to a file or directory
  The CA to use to verify the server certificate. Used only
  if 'verify' is true.

cert: path to a certificate
  Used as client certificate when connecting to a server,
  provided 'secure' is true. Requires 'certkey' to be set.

certkey: path to the certificate's key
  Required only used when 'cert' is used.
 2017-08-08 11:46:10 +02:00
Dietmar Maurer
3641833bc0 PVE/Auth/PVE.pm: encode uft8 password before calling crypt 2017-05-02 10:37:20 +02:00
Dietmar Maurer
63358f40b3 use new PVE::Tools::encrypt_pw, bump version to 5.0-3 2017-03-30 17:54:38 +02:00
Dietmar Maurer
54028297ea encrypt_pw: avoid '+' for crypt salt 
And make salt less predictable.
 2017-03-30 08:53:12 +02:00
Wolfgang Bumiller
b5040b42f1 Close #833: ldap: non-anonymous bind support 
The password will be read from /etc/pve/priv/ldap/$realm.pw
 2016-08-05 10:59:14 +02:00
Fabian Grünbichler
8978ab373c Fix uninitialized warning 
when shadow.cfg does not exist, parsing should return an
empty hash instead of displaying a warning
 2016-04-01 07:10:23 +02:00
Wolfgang Bumiller
8b600c4d27 Auth::LDAP, Auth::AD: ipv6 support 
Also had to change server1/server2 schema from a pattern to
the 'address' format.
 2015-12-03 12:08:56 +01:00
Wolfgang Bumiller
62af314a96 improve parse_user_config, parse_shadow_config 
same as in pve-common: replace substituting line parsing
with /gm modified match regexps.
 2015-07-22 08:10:49 +02:00
Dietmar Maurer
86cd805b63 add step/digits option to oath configuration 2014-07-23 06:59:01 +02:00
Dietmar Maurer
30be0de97a allow to write builtin auth domains 
So that we can set tfa, comment, default with the GUI.
 2014-07-18 11:30:19 +02:00
Dietmar Maurer
1abc2c0aee add oath two factor auth, bump version to 3.0-14 2014-07-17 14:04:13 +02:00
Dietmar Maurer
96f8ebd625 add basic support for two factor auth 2014-06-23 11:42:44 +02:00
Dietmar Maurer
11a9043610 use correct connection string for AD auth (use encryption and port info). 2014-05-22 07:12:25 +02:00
Dietmar Maurer
7c410d6301 use warnings instead of global -w flag 2013-10-01 13:04:53 +02:00
Dietmar Maurer
5bb4e06a64 new plugin architecture for Auth modules 2012-05-22 10:43:30 +02:00