tyler.durden
/
icingaweb2
mirror of https://github.com/Icinga/icingaweb2.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
3,637 Commits 123 Branches 71 Tags 80 MiB
Commit Graph

81 Commits

Author SHA1 Message Date
Johannes Meyer 8c62c66a4e Make regular expression pattern in autologin backend being fully optional 2014-10-20 15:14:14 +02:00
Matthias Jentsch 9a9aa84e23 Respect base_dn in LdapUserBackend 2014-10-14 14:37:21 +02:00
Matthias Jentsch dd21b7b5d1 Make sure that we work only with arrays when handling LDAP groups 2014-10-09 10:14:42 +02:00
Matthias Jentsch 04e83a53c5 Add `base_dn' directive to LDAP backend config 2014-10-09 10:10:09 +02:00
Johannes Meyer 1cbe2451a8 Merge branch 'master' into feature/setup-wizard-7163 
Conflicts:
	application/forms/Config/Resource/StatusdatResourceForm.php
 2014-10-08 16:34:31 +02:00
Johannes Meyer 96ba45d896 Convert password salt to ASCII to avoid encoding issues with PostgreSQL 2014-10-08 15:26:42 +02:00
Johannes Meyer 393191ced1 Add admin creation routine 
refs #7163
 2014-10-08 10:26:12 +02:00
Alexander Fuhr 421263af00 Make LDAP Groups optional 
refs #7343
 2014-10-06 13:35:17 +02:00
Alexander Fuhr 017d4b8c9d Introduce Groups from LDAP to User Object 2014-10-01 16:03:42 +02:00
Johannes Meyer 8fcf21a6b8 Make it possible to retrieve a list of available users for authentication 
refs #7163
 2014-09-29 11:21:40 +02:00
Alexander Klimov 45638b218c Throw IcingaException rather than Exception 
fixes #7014
 2014-08-27 16:03:15 +02:00
Alexander Klimov b764993091 AuthenticationException: extend IcingaException 
refs #6931
 2014-08-22 10:59:52 +02:00
Marius Hein e2c761a7aa AutoLogin/Logout: Remove own session namespace 
Store data in the user and implement interface to left
backends store remote information.

fixes #6461
 2014-07-30 12:35:55 +02:00
Johannes Meyer 3105c2059e Remove license headers from all files 
refs #6309
 2014-07-15 13:43:52 +02:00
Matthias Jentsch 57f3023ec4 Fix coding style 2014-07-03 16:20:45 +02:00
Matthias Jentsch c18b6f26f0 Throw Ldap\Exception when something goes wrong in a Ldap connection 2014-06-25 12:41:17 +02:00
Matthias Jentsch 77a9dd1e6e Throw exception on fetchDN, when no row exists 
Instead of fetchDN, authentication now uses hasUser to check if the user
exists before querying the password, to prevent the exception from messing
up the whole authentication process
 2014-06-23 14:02:45 +02:00
Thomas Gelf d2ccc68214 Merge remote-tracking branch 'origin/master' into feature/query-interfaces-6018 
Conflicts:
	modules/monitoring/application/controllers/ListController.php
 2014-06-17 09:47:14 +00:00
Eric Lippmann 7d2ee41f42 Autologin: Fix PHPDoc 2014-06-11 15:46:59 +02:00
Eric Lippmann 992ccf4f6d Autologin: Actually set the username upon authentication 
Before, when using autologin the username of the authenticated user always was the empty string.
 2014-06-11 15:46:59 +02:00
Eric Lippmann 65a2bd41bc Autologin: Do not use absolute `use' 2014-06-11 15:46:58 +02:00
Eric Lippmann 7215ba4f59 Autologin: Do not require a bogus password in the source code 2014-06-11 15:46:58 +02:00
Eric Lippmann 63fc8eb27e Autologin: Use REMOTE_USER for authentication 
It's not safe to rely on PHP_AUTH_USER and PHP_AUTH_TYPE because
PHP cgi handlers (fgcid for example) only set the REMOTE_USER environment variable
and the authentication type for negogiation methods (Kerberos for example) is neither
Basic nor Digest.
We may have to add REDIRECT_REMOTE_USER for authentication for proxy setups.
 2014-06-11 15:46:58 +02:00
Eric Lippmann c09341d77e Autologin: Do NOT sanitize username 
I don't know the reason why this was done initially but a username must not be changed.
 2014-06-11 15:46:58 +02:00
Matthias Jentsch c42c7977be Call extended backend health checks when creating ldap authentication backends 
fixes #6457
 2014-06-11 15:09:36 +02:00
Matthias Jentsch 6c82cb8988 Check ldap backend health during Authentication 
Check if authentication is possible during authentication, to generate more
useful error and log messages, in case the backend configuration is wrong

ref #6457
 2014-06-11 15:08:05 +02:00
Matthias Jentsch bca166c644 Do not throw an exception when the username does not exist 
refs #6457
 2014-06-11 15:08:05 +02:00
Thomas Gelf db3accc704 Data\Db: rename Query and Connection to Db... 
Class names in namespaces should not be chosen as once we didn't have
such. The fact that we already did "use Db\Connection as DbConnection"
is the best hint that naming was wrong.

So this patch renames Db\Connection to Db\DbConnection and does the
same with DbQuery. DbQuery has been adjusted to fit our new SimpleQuery
and to handle the new Filter implementation.
 2014-06-06 06:43:13 +00:00
Marius Hein 29f593a357 Authentication: Add backend to handle external authentication 
Drop external auth configuration from config.ini and move
implementation into a single backend provider named
'autologin'. This provider can strip realm names from
username with a custom regexp.

fixes #6081
 2014-06-03 17:59:22 +02:00
Eric Lippmann cfcaf019bd User backends: Throw exception when authentication fails due to an exception 
refs #5685
 2014-06-02 15:52:58 +02:00
Johannes Meyer bafa8cc032 Fix authentication error handling 2014-03-28 14:45:03 +01:00
Marius Hein c92e1307f6 Fix: Database login 
fixes #5706
 2014-03-06 14:07:33 +01:00
Eric Lippmann 39c80dccaf Decouple authentication backend creation from Icinga\Authentication\Manager 
Add authentication backend type msldap with default values for user_class
and user_name_attribute. Backend type ldap now logs an error when user_class
and user_name_attribute ist not configured. Rename membership.ini to
memberships.ini since all our INI configuration files are in the plurar
where it makes sense. The AuthenticationController now handles
authentication

refs #5685
refs #5638
fixes #5218
 2014-03-03 17:21:17 +01:00
Johannes Meyer 0b28bd31e5 Fix exception when the password of a valid ldap user is invalid 2014-01-29 10:41:17 +01:00
Matthias Jentsch 85dbd86e5b Change all UserBackends to a lazy connection-behavior 
refs #5506
 2014-01-22 13:04:11 +01:00
Marius Hein 263f09a94c Add email column to extensible features 
refs #5151
 2013-11-28 17:23:55 +01:00
Marius Hein 93d233f37d Make DbUserBackend extensible 
Fix: Swap hmac secret key

refs #5151
 2013-11-27 11:10:07 +01:00
Matthias Jentsch bd38e998d7 Provide a cleaner interface for the Authentication Backends 
refs #4786
 2013-11-06 14:49:16 +01:00
Matthias Jentsch ad08691362 Extend resources.ini to contain all resources, including ldap 
Remove the old calls to DbAdapterFactory and use ResourceFactory instead. Remove
the DbAdapterFactory and fix all unit tests that have been broken due to the changes.
Change the functionality of the ResourceFactory to also handle LdapConnections

resolves #4587
 2013-11-06 10:20:15 +01:00
Eric Lippmann ca1d50ae53 Rename Icinga 2 Web to Icinga Web 2 2013-10-23 15:11:06 +02:00
Marius Hein 439168ecfb Fix ldap connection port setting 
refs #4941
 2013-10-22 17:50:21 +02:00
Eric Lippmann 35fd9fd391 CS: Remove whitespaces at end of line 
find application/ library/ test/ modules/ -name *.php | xargs sed -i 's/\s\+$//'
 2013-09-04 18:27:16 +02:00
Marius Hein 446da85a88 UserBackend: Fix interface in test 
refs #4593
 2013-08-30 15:32:06 +02:00
Marius Hein e2e744a424 Fix authentication chain 
refs #4593
 2013-08-30 14:46:52 +02:00
Marius Hein 7765877318 CS: Fix LdapUserBackend 
refs #4641
 2013-08-30 12:50:57 +02:00
Marius Hein c77a48ff1f CS: Fix DbUserBackend 
refs #4641
 2013-08-30 12:50:57 +02:00
Marius Hein 7c8252a983 Rename class Credentials to Credential 
refs #4641
 2013-08-30 12:50:57 +02:00
Marius Hein 83d20a6175 AuthManager: Fix tests 
refs #4641
 2013-08-30 12:50:28 +02:00
Marius Hein dfb7238b81 AuthManager: Implement backend chain 
refs #4641
refs #4590
refs #4593
 2013-08-30 12:50:28 +02:00
Jannis Moßhammer d0ac97f335 Configure fixes, regression test for 4606 
The configure routine still has to be improved, right now unused
authentication backends are commented out

refs #4491
refs #4606
refs #4640
 2013-08-29 11:48:32 +02:00