git.proxmox.com Git - proxmox-perl-rs.git/log

]> git.proxmox.com Git - proxmox-perl-rs.git/log

projects / proxmox-perl-rs.git / log

commit | commitdiff | tree

Wolfgang Bumiller [Wed, 23 Feb 2022 14:15:32 +0000 (15:15 +0100)]

buildsys fixup

Signed-off-by: Wolfgang Bumiller <w.bumiller@proxmox.com>

commit | commitdiff | tree

Thomas Lamprecht [Thu, 3 Feb 2022 07:48:12 +0000 (08:48 +0100)]

pve-rs: bump version to 0.5.1

Signed-off-by: Thomas Lamprecht <t.lamprecht@proxmox.com>

commit | commitdiff | tree

Thomas Lamprecht [Thu, 3 Feb 2022 07:11:41 +0000 (08:11 +0100)]

pve-rs: d/control: update proxmox-openid build-dependency

That version switched from curl to ureq so we'll loose quite a few
transitive dependencies.

Also, auth0 compat with their non-standard timestamp format should be
fixed now too.

Signed-off-by: Thomas Lamprecht <t.lamprecht@proxmox.com>

commit | commitdiff | tree

Wolfgang Bumiller [Wed, 2 Feb 2022 08:56:34 +0000 (09:56 +0100)]

pve-rs: drop unused openssl dep

we don't directly use it

Signed-off-by: Wolfgang Bumiller <w.bumiller@proxmox.com>

commit | commitdiff | tree

Wolfgang Bumiller [Tue, 1 Feb 2022 09:29:15 +0000 (10:29 +0100)]

pmg: drop unused openssl dep

Signed-off-by: Wolfgang Bumiller <w.bumiller@proxmox.com>

commit | commitdiff | tree

Wolfgang Bumiller [Tue, 1 Feb 2022 09:27:20 +0000 (10:27 +0100)]

pmg: bump proxmox-acme-rs to 0.4

Signed-off-by: Wolfgang Bumiller <w.bumiller@proxmox.com>

commit | commitdiff | tree

Wolfgang Bumiller [Tue, 25 Jan 2022 08:38:24 +0000 (09:38 +0100)]

bump perlmod to 0.11

Signed-off-by: Wolfgang Bumiller <w.bumiller@proxmox.com>

commit | commitdiff | tree

Thomas Lamprecht [Thu, 13 Jan 2022 13:03:21 +0000 (14:03 +0100)]

pve-rs: bump version to 0.5.0

Signed-off-by: Thomas Lamprecht <t.lamprecht@proxmox.com>

commit | commitdiff | tree

Thomas Lamprecht [Thu, 13 Jan 2022 13:35:49 +0000 (14:35 +0100)]

pve-rs: record proxmox-time dependency

fixes build with new calendar event perlmod binding

Signed-off-by: Thomas Lamprecht <t.lamprecht@proxmox.com>

commit | commitdiff | tree

Dominik Csapak [Wed, 1 Dec 2021 08:55:13 +0000 (09:55 +0100)]

pve-rs: add PVE::RS::CalendarEvent

Signed-off-by: Dominik Csapak <d.csapak@proxmox.com>

commit | commitdiff | tree

Thomas Lamprecht [Tue, 11 Jan 2022 13:20:04 +0000 (14:20 +0100)]

d/control: fix vcs urls

Signed-off-by: Thomas Lamprecht <t.lamprecht@proxmox.com>

commit | commitdiff | tree

Wolfgang Bumiller [Tue, 14 Dec 2021 12:55:59 +0000 (13:55 +0100)]

bump perlmod to 0.10

Signed-off-by: Wolfgang Bumiller <w.bumiller@proxmox.com>

commit | commitdiff | tree

Thomas Lamprecht [Sun, 28 Nov 2021 16:25:17 +0000 (17:25 +0100)]

bump version to 0.4.0

Signed-off-by: Thomas Lamprecht <t.lamprecht@proxmox.com>

commit | commitdiff | tree

Wolfgang Bumiller [Fri, 26 Nov 2021 13:55:18 +0000 (14:55 +0100)]

pmg: bump d/control

Signed-off-by: Wolfgang Bumiller <w.bumiller@proxmox.com>

commit | commitdiff | tree

Wolfgang Bumiller [Fri, 26 Nov 2021 13:55:17 +0000 (14:55 +0100)]

pmg: add tfa module

Signed-off-by: Wolfgang Bumiller <w.bumiller@proxmox.com>

commit | commitdiff | tree

Wolfgang Bumiller [Fri, 26 Nov 2021 13:55:16 +0000 (14:55 +0100)]

pmg: bump perlmod to 0.9

Signed-off-by: Wolfgang Bumiller <w.bumiller@proxmox.com>

commit | commitdiff | tree

Wolfgang Bumiller [Fri, 26 Nov 2021 13:55:15 +0000 (14:55 +0100)]

import pmg-rs

Signed-off-by: Wolfgang Bumiller <w.bumiller@proxmox.com>

commit | commitdiff | tree

Wolfgang Bumiller [Fri, 26 Nov 2021 13:55:14 +0000 (14:55 +0100)]

pve: bump d/control

Signed-off-by: Wolfgang Bumiller <w.bumiller@proxmox.com>

commit | commitdiff | tree

Wolfgang Bumiller [Fri, 26 Nov 2021 13:55:13 +0000 (14:55 +0100)]

pve: update to proxmox-tfa 2.0

Signed-off-by: Wolfgang Bumiller <w.bumiller@proxmox.com>

commit | commitdiff | tree

Wolfgang Bumiller [Fri, 26 Nov 2021 13:55:12 +0000 (14:55 +0100)]

pve: bump perlmod to 0.9

Signed-off-by: Wolfgang Bumiller <w.bumiller@proxmox.com>

commit | commitdiff | tree

Wolfgang Bumiller [Mon, 22 Nov 2021 12:33:20 +0000 (13:33 +0100)]

bump pve-rs to 0.4.4

Signed-off-by: Wolfgang Bumiller <w.bumiller@proxmox.com>

commit | commitdiff | tree

Wolfgang Bumiller [Mon, 22 Nov 2021 12:27:57 +0000 (13:27 +0100)]

depend on proxmox-tfa >= 1.3.2 for appid/origin fixup

Signed-off-by: Wolfgang Bumiller <w.bumiller@proxmox.com>

commit | commitdiff | tree

Thomas Lamprecht [Fri, 19 Nov 2021 13:35:11 +0000 (14:35 +0100)]

bump pve-rs to 0.4.3

Signed-off-by: Thomas Lamprecht <t.lamprecht@proxmox.com>

commit | commitdiff | tree

Thomas Lamprecht [Fri, 19 Nov 2021 13:32:58 +0000 (14:32 +0100)]

pve-rs: d/control: break libpve-access-control (<< 7.1-3)

Signed-off-by: Thomas Lamprecht <t.lamprecht@proxmox.com>

commit | commitdiff | tree

Fabian Grünbichler [Fri, 19 Nov 2021 13:14:21 +0000 (14:14 +0100)]

bump pve-rs to 0.4.2

Signed-off-by: Fabian Grünbichler <f.gruenbichler@proxmox.com>

commit | commitdiff | tree

Fabian Grünbichler [Fri, 19 Nov 2021 13:13:27 +0000 (14:13 +0100)]

tfa: handle incompatible challenge data

by returning default data, in case the challenge data is not parseable.
this allows a new challenge to be started for the userid in question
without manual cleanup.

currently this can be triggered if an ongoing challenge created with
webauthn-rs 0.2.5 is stored in /run and attempted to be read
post-upgrade.

Reported-by: Wolfgang Bumiller <w.bumiller@proxmox.com>
Signed-off-by: Fabian Grünbichler <f.gruenbichler@proxmox.com>

commit | commitdiff | tree

Fabian Grünbichler [Fri, 19 Nov 2021 10:36:18 +0000 (11:36 +0100)]

bump pve-rs to 0.4.1

Signed-off-by: Fabian Grünbichler <f.gruenbichler@proxmox.com>

commit | commitdiff | tree

Fabian Grünbichler [Fri, 19 Nov 2021 10:24:53 +0000 (11:24 +0100)]

bump base64 to 0.13

Signed-off-by: Fabian Grünbichler <f.gruenbichler@proxmox.com>

commit | commitdiff | tree

Dietmar Maurer [Thu, 18 Nov 2021 08:53:04 +0000 (09:53 +0100)]

pve-rs: depend on proxmox-openid 0.9, bump version to 0.4.0

commit | commitdiff | tree

Wolfgang Bumiller [Wed, 17 Nov 2021 11:49:59 +0000 (12:49 +0100)]

bump pve-rs to 0.3.2

Signed-off-by: Wolfgang Bumiller <w.bumiller@proxmox.com>

commit | commitdiff | tree

Wolfgang Bumiller [Wed, 17 Nov 2021 11:49:31 +0000 (12:49 +0100)]

pve-rs: bump d/control

Signed-off-by: Wolfgang Bumiller <w.bumiller@proxmox.com>

commit | commitdiff | tree

Wolfgang Bumiller [Wed, 17 Nov 2021 11:33:03 +0000 (12:33 +0100)]

tfa: generate 'incomaptible' entries

for users with incompatible tfa entries, generate an
'incompatible' entry so they cannot log in via the old api

Signed-off-by: Wolfgang Bumiller <w.bumiller@proxmox.com>

commit | commitdiff | tree

Wolfgang Bumiller [Tue, 16 Nov 2021 11:43:14 +0000 (12:43 +0100)]

note that patch overrides go into the toplevel Cargo.toml

Signed-off-by: Wolfgang Bumiller <w.bumiller@proxmox.com>

commit | commitdiff | tree

Wolfgang Bumiller [Tue, 16 Nov 2021 11:42:55 +0000 (12:42 +0100)]

move proxmox_tfa_api module to proxmox-tfa as api feature

Signed-off-by: Wolfgang Bumiller <w.bumiller@proxmox.com>

commit | commitdiff | tree

Wolfgang Bumiller [Fri, 12 Nov 2021 10:00:33 +0000 (11:00 +0100)]

fix typo

Signed-off-by: Wolfgang Bumiller <w.bumiller@proxmox.com>

commit | commitdiff | tree

Wolfgang Bumiller [Fri, 12 Nov 2021 09:26:23 +0000 (10:26 +0100)]

bump pve-rs to 0.3.1

Signed-off-by: Wolfgang Bumiller <w.bumiller@proxmox.com>

commit | commitdiff | tree

Dominik Csapak [Fri, 12 Nov 2021 08:58:14 +0000 (09:58 +0100)]

pve-rs/tfa: ignore and discard incomplete u2f entries

it can happen that we have leftover entries with non-completed challenges.
since a user cannot continue here in a sensible way, ignore and discard
them

Signed-off-by: Dominik Csapak <d.csapak@proxmox.com>
Signed-off-by: Wolfgang Bumiller <w.bumiller@proxmox.com>

commit | commitdiff | tree

Dominik Csapak [Fri, 12 Nov 2021 08:58:13 +0000 (09:58 +0100)]

pve-rs/tfa: fix off by one trimming

to is the last *valid* character, and ranges end by default with one
less, so extend the range to the actual last character

this fixes an issue that we could not parse old configs with
non-padded base64 values

Signed-off-by: Dominik Csapak <d.csapak@proxmox.com>
Signed-off-by: Wolfgang Bumiller <w.bumiller@proxmox.com>

commit | commitdiff | tree

Wolfgang Bumiller [Wed, 10 Nov 2021 11:18:39 +0000 (12:18 +0100)]

buildsys: drop -C prefer-dynamic (and rebuild 0.3.0)

also add perl depends

the std library is actually big and not linking dynamically
doesn't add much
besides, the package names for libstd would cause issues
with minor compiler bumps...

the 0.3.0 package is actually built from this commit now,
since the installability checks caught this...

Signed-off-by: Wolfgang Bumiller <w.bumiller@proxmox.com>

commit | commitdiff | tree

Wolfgang Bumiller [Wed, 10 Nov 2021 10:58:03 +0000 (11:58 +0100)]

buildsys: add upload target

Signed-off-by: Wolfgang Bumiller <w.bumiller@proxmox.com>

commit | commitdiff | tree

Wolfgang Bumiller [Wed, 10 Nov 2021 10:52:34 +0000 (11:52 +0100)]

bump/release pve-rs as 0.3.0

Signed-off-by: Wolfgang Bumiller <w.bumiller@proxmox.com>

commit | commitdiff | tree

Wolfgang Bumiller [Wed, 10 Nov 2021 08:51:16 +0000 (09:51 +0100)]

pve: TfaConfig: add_totp_entry, add_yubico_entry

fast path to add those two from the old user.cfg

Signed-off-by: Wolfgang Bumiller <w.bumiller@proxmox.com>

commit | commitdiff | tree

Wolfgang Bumiller [Wed, 10 Nov 2021 08:50:46 +0000 (09:50 +0100)]

pve: add_totp anda dd_yubico cannot error, drop Result type

Signed-off-by: Wolfgang Bumiller <w.bumiller@proxmox.com>

commit | commitdiff | tree

Wolfgang Bumiller [Tue, 9 Nov 2021 08:50:07 +0000 (09:50 +0100)]

Add some dev tips to a README

Signed-off-by: Wolfgang Bumiller <w.bumiller@proxmox.com>

commit | commitdiff | tree

Wolfgang Bumiller [Tue, 9 Nov 2021 08:43:32 +0000 (09:43 +0100)]

build fix: pmg-rs is not here yet

Signed-off-by: Wolfgang Bumiller <w.bumiller@proxmox.com>

commit | commitdiff | tree

Wolfgang Bumiller [Tue, 9 Nov 2021 08:03:09 +0000 (09:03 +0100)]

pve: add tfa api

This consists of two parts:

1) A proxmox_tfa_api module which temporarily lives here but
   will become its own crate.

   Most of this is a copy from ' src/config/tfa.rs with some
   compatibility changes:
   * The #[api] macro is guarded by a feature flag, since we
     cannot use it for PVE.
   * The Userid type is replaced by &str since we don't have
     Userid in PVE either.
   * The file locking/reading is removed, this will stay in
     the corresponding product code, and the main entry
     point is now the TfaConfig object.
   * Access to the runtime active challenges in /run is
     provided via a trait implementation since PVE and PBS
     will use different paths for this.
   Essentially anything pbs-specific was removed and the
   code split into a few submodules (one per tfa type
   basically).

2) The tfa module in pve-rs, which contains:
   * The parser for the OLD /etc/pve/priv/tfa.cfg
   * The parser for the NEW /etc/pve/priv/tfa.cfg
   * These create a blessed PVE::RS::TFA instance which:
     - Wraps access to the TfaConfig rust object.
     - Has methods all the TFA API call implementations
       These are copied from PBS' src/api2/access/tfa.rs,
       and pbs specific code removed.

Signed-off-by: Wolfgang Bumiller <w.bumiller@proxmox.com>

commit | commitdiff | tree

Wolfgang Bumiller [Tue, 9 Nov 2021 07:57:36 +0000 (08:57 +0100)]

move apt to /perl-apt, use PERLMOD_PRODUCT env var

Signed-off-by: Wolfgang Bumiller <w.bumiller@proxmox.com>

commit | commitdiff | tree

Wolfgang Bumiller [Tue, 9 Nov 2021 07:56:38 +0000 (08:56 +0100)]

import pve-rs

Signed-off-by: Wolfgang Bumiller <w.bumiller@proxmox.com>

commit | commitdiff | tree

Wolfgang Bumiller [Tue, 9 Nov 2021 07:51:44 +0000 (08:51 +0100)]

import basic skeleton

Signed-off-by: Wolfgang Bumiller <w.bumiller@proxmox.com>

Proxmox rust interface for perl

RSS Atom