tyler.durden
/
icingaweb2
mirror of https://github.com/Icinga/icingaweb2.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
9,377 Commits 117 Branches 71 Tags 80 MiB
Commit Graph

315 Commits

Author SHA1 Message Date
Johannes Meyer d6432cd881 LdapUserGroupBackend: Fix invalid query column initialization, again 
I've mistakenly reverted a change from Aaron Collins that would have
prevented this issue from occuring.

fixes #10318
 2015-10-09 03:53:22 +02:00
Johannes Meyer 8358f82885 LdapUserGroupBackend: Do not consider every "member" as a "user" 
Not all members of a group are actual user objects. I would have liked to
actually only show real users, but this is currently not possible.

refs #9772
 2015-09-29 11:29:05 +02:00
Johannes Meyer d33b1954aa LdapUserGroupBackend: Fetch the uid for a member's DN 
refs #9772
 2015-09-29 09:48:57 +02:00
Johannes Meyer ef1a81897b LdapUserGroupBackend: Automatically unfold the user_name attribute 
refs #9772
 2015-09-29 09:48:22 +02:00
Johannes Meyer b7ddb6e4c2 LdapUserGroupBackend: Register the user backend for later use 
refs #9772
 2015-09-29 09:44:01 +02:00
Johannes Meyer e7e3520375 LdapUserGroupBackend: Fix method getMemberships() 
refs #9950
 2015-09-28 10:57:17 +02:00
Johannes Meyer e5f2174c1e LdapUserGroupBackend: Restore method requireTable() 
refs #9950
 2015-09-25 16:24:16 +02:00
Johannes Meyer fe9ee48d65 LdapUserGroupBackend: Fix incorrect table name initialization 
refs #9950
 2015-09-25 16:23:13 +02:00
Johannes Meyer b19ecbfb43 LdapUserGroupBackend: Remove the remaining code duplicates 
refs #9950
refs #9772
 2015-09-25 16:21:33 +02:00
Aaron Collins 23631c8f39 changed order of posix check 
refs #9950

Signed-off-by: Eric Lippmann <eric.lippmann@netways.de>
 2015-09-25 14:35:08 +02:00
Aaron Collins 73715c94b1 Fixes for ldap group auth 
The current LdapUserGroupBackend was incomplete and suffered from a little over zealous copy pasta.  It had over written certain functions that where unnecessary such as the constructor and a table validator.  This patch aims to clean those up.  Additionally it also makes this group auth work with posixGroup that use the username as the member identifier and not just inetGroups that use the full dn

refs #9950

Signed-off-by: Eric Lippmann <eric.lippmann@netways.de>
 2015-09-25 14:34:33 +02:00
Matthias Jentsch b69311165c Conform to coding guidelines 2015-09-22 14:53:29 +02:00
Matthias Jentsch 42fb1a174b Do not crash when ldap_dn is defined in additional variables 
refs #9950
 2015-09-22 14:08:15 +02:00
Matthias Jentsch 46f2f71c57 Improve logging of membership queries 
refs #9950
 2015-09-22 13:02:08 +02:00
Matthias Jentsch 84554d245d Conform to coding guidelines 
refs #9950
 2015-09-22 12:51:00 +02:00
Jo Rhett f3df1f228d Fix for support issue 9950, do lookups properly on posixGroup group classes 2015-09-18 13:37:04 -07:00
Alexander A. Klimov 17e8f01d24 Use the DN to fetch group memberships from LDAP 
fixes #9901
 2015-09-18 15:34:12 +02:00
Russell Kubik 056ab0c96c Fix that DbUserBackend::inspect() reports 0 users when only one exists 
refs #9739

Signed-off-by: Eric Lippmann <eric.lippmann@netways.de>
 2015-09-01 23:08:24 +02:00
Eric Lippmann d2a4b880b1 Revert "Accept DbUserBackends with only one single user" 
This reverts commit c8d065b3e0.

There's a PR on GitHub open that was contributed earlier than this fix. Thus giving credit to the PR's author.

refs #9739
 2015-09-01 23:05:34 +02:00
Johannes Meyer 1e6c394693 Controller: Create the filter editor in setupFilterControl() ... 
...instead of demanding a concrete controller to do so.
We still have to decide how to handle parameter preservation
properly.

refs #9029
 2015-08-13 17:05:13 +02:00
Johannes Meyer 4b6849eea7 Repository: Introduce query column blacklists 
We can no longer use $filterColumns to blacklist query columns so
there is now another set of column names required to achieve this.

refs #9029
 2015-08-13 14:06:27 +02:00
Johannes Meyer 316a4d8b82 Merge branch 'master' into bugfix/allow-to-configure-how-to-manage-groups-9609 2015-07-30 16:16:04 +02:00
Eric Lippmann a234852f32 Merge branch 'feature/basic-auth-9660' 
resolves #9660
 2015-07-30 15:05:07 +02:00
Eric Lippmann feed927fd2 Let external auth win over session auth and session auth over http auth 
refs #9660
 2015-07-30 14:50:05 +02:00
Eric Lippmann 55ad2dd65f Don't fail if password contains a colon on basic auth 
refs #9660
 2015-07-30 13:59:47 +02:00
Eric Lippmann c594d6db33 Challenge client on invalid basic access auth credentials 
refs #9660
 2015-07-30 13:59:18 +02:00
Eric Lippmann 3aae37aff3 Don't redirect on external auth 
refs #9660
 2015-07-30 12:02:42 +02:00
Eric Lippmann 36ff2d8914 lib: Set User::$isHttpUser in Auth 
refs #9660
 2015-07-30 09:32:24 +02:00
Eric Lippmann cf8c680482 lib: Add basic access authentication (WIP) 
refs #9660
 2015-07-29 17:22:55 +02:00
Johannes Meyer fb7666e6bd LdapUserGroupBackend: Adjust usage of LdapCapabilities::hasAdOid() 
Usage search ftw..
 2015-07-29 16:26:39 +02:00
Eric Lippmann c3a057dbdb lib: Add AuthChain::setSkipExternalBackends() in favor of setIteratorMode() 
There's only one mode.

refs #9660
 2015-07-29 16:18:30 +02:00
Eric Lippmann 3ca85f9daa lib: Add Auth::getRequest() 
Basic auth will require the request.

refs #9660
 2015-07-29 15:56:45 +02:00
Eric Lippmann 96e3111f58 lib: Reorder functions in Auth 
refs #9660
 2015-07-29 15:52:56 +02:00
Eric Lippmann 37ef87b9ab lib: Fix PHPDoc in ExternalBackend 
refs #9660
 2015-07-29 15:46:40 +02:00
Eric Lippmann 1b5c5deace lib: Rename remote user to external user 
We renamed our backend. Code now reflects this.

refs #9660
 2015-07-29 15:44:32 +02:00
Johannes Meyer 3f7081296b Merge branch 'master' into bugfix/allow-to-configure-how-to-manage-groups-9609 2015-07-29 15:02:20 +02:00
Eric Lippmann ae4b7144cd lib: Implement Auth::getAuthChain() 
Saves one use statement for auth chain usages.

refs #9660
 2015-07-29 14:14:19 +02:00
Eric Lippmann 745e30259d lib: Implement AuthChain::authenticate() 
Right now the LoginController has all the authentication which is kind of a mess. Further, the upcoming basic access authentication has to reuse this code.
Thus AuthChain::authenticate() is introduced to handle both cases.

refs #9660
 2015-07-29 14:11:54 +02:00
Johannes Meyer 13edbf901d UserBackend: Implement interface ConfigAwareFactory 
refs #9609
 2015-07-29 13:44:26 +02:00
Johannes Meyer 83aafe8cda Allow to discover LDAP connections in the wizard as well 
...
 2015-07-29 09:26:53 +02:00
Eric Lippmann 4d44a0625c lib: Move UserBackendInterface::authenticate() to new interface Authenticatable 
refs #9660
 2015-07-29 09:25:14 +02:00
Eric Lippmann 2a4e614b5e Fix code style in AuthChain 
refs #9660
 2015-07-28 19:55:26 +02:00
Eric Lippmann 07849e0fea lib: Rename Authentication/Manager to Authentication/Auth 
refs #9660
 2015-07-28 17:08:55 +02:00
Matthias Jentsch c8d065b3e0 Accept DbUserBackends with only one single user 
fixes #9739
 2015-07-28 12:41:08 +02:00
Matthias Jentsch 5478027855 Bring back user count in ldap backend inspection 
We already use count later in the wizard anyways.

refs #9630
 2015-07-16 16:52:56 +02:00
Matthias Jentsch e357960d1e Add Inspection API to DB backend 
refs #9641
 2015-07-16 16:16:55 +02:00
Matthias Jentsch ffe672c252 Improve message texts and scalabillity 
Always start uppercase and don't use count() function until we've got a more scalable implementation in the LdapConnection.

refs #9630
 2015-07-16 13:51:26 +02:00
Matthias Jentsch 6b8e5da76d Move all assertion functions into the inspect functions 
Reduce code duplication and add class Inspection

refs #9630
 2015-07-16 12:21:11 +02:00
Matthias Jentsch 59c4f8d056 Use Inspection API in User Backend Form 
refs #9630
 2015-07-15 19:35:25 +02:00
Matthias Jentsch 3ddb8ca1bd Add abillity to discover AD version and vendor name to discovery 
refs #9605
 2015-07-14 18:32:44 +02:00