Age | Commit message (Collapse) | Author | |
---|---|---|---|
2022-04-04 | login: T4341: disable user account prior to deletion | Christian Poessinger | |
(cherry picked from commit efa753bc661d04967237e7ec3d72d3757230aaf9) | |||
2021-09-07 | login: T971 allow quoting in public-keys options | Paul Lettington | |
This patch allows the use of `"` in ssh public-key options which unlocks the ability to set the `from` option in a way that sshd will accept to limit what hosts a user can connect from. (cherry picked from commit 6b52387190f8213e7e02060e894c6ddd4fb7cb3d) | |||
2021-09-02 | login: T3792: bugfix for usernames containing a hyphen | Christian Poessinger | |
While migrating to get_config_dict() in commit e8a1c291b1 ("login: radius: T3192: migrate to get_config_dict()") the user-name was not excluded from mangling (no_tag_node_value_mangle=True). This resulted in a username "vyos-user" from CLI to be actually created as "vyos_user" on the system. This commit also adds respective Smoketests to prevent this in the future. (cherry picked from commit 658de9ea0fbe91e593f9cf0a8c434791282af100) | |||
2021-07-23 | login: T3699: verify system username does not conflict with Linux base users | Christian Poessinger | |
2021-05-27 | login: T3455: Fix edit level configuration for user | sever-sever | |
2021-01-11 | login: T3208: fix wrong string formatting on my_set | Christian Poessinger | |
Commit e8a1c291 ("login: radius: T3192: migrate to get_config_dict()") did an invalid forward of the newly encrypted passwort to my_set to store it inside the config. (cherry picked from commit a7fe2ff4fdfcb2619b892aff170d42609965b20b) | |||
2021-01-09 | login: radius: T3192: remove debug print() | Christian Poessinger | |
(cherry picked from commit 586b440a835cba7d45e50bb6d1781823903332b6) | |||
2021-01-07 | login: radius: T3192: migrate to get_config_dict() | Christian Poessinger | |
2021-01-07 | login: radius: T3192: support IPv6 server(s) and source-address | Christian Poessinger | |
2020-11-27 | vyos.template: T2720: always enable Jinja2 trim_blocks feature | Christian Poessinger | |
2020-10-09 | login: T2492: remove empty plaintext-password node | Christian Poessinger | |
2020-08-31 | configd: T2582: add scripts to include list for daemon | John Estabrook | |
2020-07-22 | T2725: Fix config parse for users without passwords | Esa Varemo | |
Fix for https://phabricator.vyos.net/T2725 T2492 / a07e22377ab83104ac925e13d1824f241f0f8d4a introduced a change which broke the initialization of the user dict. In case the config contained an user without an encrypted-password set, the property would be missing and the commit would crash with `KeyError: 'password_encrypted'` | |||
2020-06-17 | login: radius: T2299: Implement RADIUS servers priority | DmitriyEshenko | |
2020-05-29 | airbag: T2088: explicit enabling of the feature | Thomas Mangin | |
airbag must now be explicitly installed. the patch also allow to fully disables the installation of the logging code at setup (and not just installing and doing nothing) | |||
2020-05-22 | login: T2492: must use try/except when adding user for the first time | Christian Poessinger | |
2020-05-22 | login: T2492: re-use code from vyos.util | Christian Poessinger | |
2020-05-22 | login: T2492: force setting of encrypted password on first boot | Christian Poessinger | |
2020-05-22 | login: T2492: fix flake8 warnings | Christian Poessinger | |
2020-05-22 | login: T2492: do not set encrypted user password when it is not changed | Christian Poessinger | |
2020-04-25 | login: radius: T2304: add VRF support | Christian Poessinger | |
This allows the radius client to work when a management VRF is in use. | |||
2020-04-15 | login: T2295: move from calling an os binary to Python crypt() function | Christian Poessinger | |
2020-04-12 | template: T2230: use render to generate templates | Thomas Mangin | |
convert all call to jinja to use template.render | |||
2020-04-11 | util: T2205: convert system login to call and cmd | Thomas Mangin | |
2020-04-09 | util: T2226: os.system was wrongly converted to run | Thomas Mangin | |
os.system does print the ouput of the command, run() does not. A new function called call() does the printing and return the error code. | |||
2020-04-06 | util: T2226: rewrite certbot to use cmd | Thomas Mangin | |
Previously failures of mkpasswd would not be reported to users | |||
2020-04-05 | system-login: T2230: move inlined templates to dedicated files | Christian Poessinger | |
2020-03-05 | login: T2050: extend verify() on public-keys | Christian Poessinger | |
* A type must be present for any one public-key element * A key must be present for any one public-key element | |||
2020-02-27 | login: T2050: retrieve home directory for SSH keys from OS and not guess it | Christian Poessinger | |
We should not rely on the home dir value stored in user['home_dir'] as if a crazy user will choose username root or any other system user this will fail. Should be deny using root at all? | |||
2020-02-25 | login: T1948: migrade local and radius configurations | Christian Poessinger | |
Splitting was not a good idea. By combining both we can create a RADIUS server XML include file which can be reused by multiple implementations to get a uniformed CLI for the users. |