]> git.proxmox.com Git - pve-access-control.git/blame - debian/changelog
projects / pve-access-control.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
fix #3402: add Pool.Audit permission
[pve-access-control.git] / debian / changelog
CommitLineData
67febb69
TL		 1libpve-access-control (7.0-1) bullseye; urgency=medium
2
3 * re-build for Debian 11 Bullseye based releases
4
5 -- Proxmox Support Team <support@proxmox.com> Sun, 09 May 2021 18:18:23 +0200
6
2942ba41
TL		 7libpve-access-control (6.4-1) pve; urgency=medium
8
9 * fix #1670: change PAM service name to project specific name
10
11 * fix #1500: permission path syntax check for access control
12
13 * pveum: add resource pool CLI commands
14
15 -- Proxmox Support Team <support@proxmox.com> Sat, 24 Apr 2021 19:48:21 +0200
16
54d312f3
TL		 17libpve-access-control (6.1-3) pve; urgency=medium
18
19 * partially fix #2825: authkey: rotate if it was generated in the
20 future
21
22 * fix #2947: add an option to LDAP or AD realm to switch user lookup to case
23 insensitive
24
25 -- Proxmox Support Team <support@proxmox.com> Tue, 29 Sep 2020 08:54:13 +0200
26
6a9be12f
TL		 27libpve-access-control (6.1-2) pve; urgency=medium
28
29 * also check SDN permission path when computing coarse permissions heuristic
30 for UIs
31
32 * add SDN Permissions.Modify
33
34 * add VM.Config.Cloudinit
35
36 -- Proxmox Support Team <support@proxmox.com> Tue, 30 Jun 2020 13:06:56 +0200
37
e6624f50
TL		 38libpve-access-control (6.1-1) pve; urgency=medium
39
40 * pveum: add tfa delete subcommand for deleting user-TFA
41
42 * LDAP: don't complain about missing credentials on realm removal
43
44 * LDAP: skip anonymous bind when client certificate and key is configured
45
46 -- Proxmox Support Team <support@proxmox.com> Fri, 08 May 2020 17:47:41 +0200
47
8f4a522f
TL		 48libpve-access-control (6.0-7) pve; urgency=medium
49
50 * fix #2575: die when trying to edit built-in roles
51
52 * add realm sub commands to pveum CLI tool
53
54 * api: domains: add user group sync API enpoint
55
56 * allow one to sync and import users and groups from LDAP/AD based realms
57
58 * realm: add default-sync-options to config for more convenient sync configuration
59
60 * api: token create: return also full token id for convenience
61
62 -- Proxmox Support Team <support@proxmox.com> Sat, 25 Apr 2020 19:35:17 +0200
63
23059f35
TL		 64libpve-access-control (6.0-6) pve; urgency=medium
65
66 * API: add group members to group index
67
68 * implement API token support and management
69
70 * pveum: add 'pveum user token add/update/remove/list'
71
72 * pveum: add permissions sub-commands
73
74 * API: add 'permissions' API endpoint
75
76 * user.cfg: skip inexisting roles when parsing ACLs
77
78 -- Proxmox Support Team <support@proxmox.com> Wed, 29 Jan 2020 10:17:27 +0100
79
3dd692e9
TL		 80libpve-access-control (6.0-5) pve; urgency=medium
81
82 * pveum: add list command for users, groups, ACLs and roles
83
84 * add initial permissions for experimental SDN integration
85
86 -- Proxmox Support Team <support@proxmox.com> Tue, 26 Nov 2019 17:56:37 +0100
87
4ef92d0d
FG		 88libpve-access-control (6.0-4) pve; urgency=medium
89
90 * ticket: use clinfo to get cluster name
91
92 * ldaps: add sslversion configuration property to support TLS 1.1 to 1.3 as
93 SSL version
94
95 -- Proxmox Support Team <support@proxmox.com> Mon, 18 Nov 2019 11:55:11 +0100
96
6e5bbca4
TL		 97libpve-access-control (6.0-3) pve; urgency=medium
98
99 * fix #2433: increase possible TFA secret length
100
101 * parse user configuration: correctly parse group names in ACLs, for users
102 which begin their name with an @
103
104 * sort user.cfg entries alphabetically
105
106 -- Proxmox Support Team <support@proxmox.com> Tue, 29 Oct 2019 08:52:23 +0100
107
e073493c
TL		 108libpve-access-control (6.0-2) pve; urgency=medium
109
110 * improve CSRF verification compatibility with newer PVE
111
112 -- Proxmox Support Team <support@proxmox.com> Wed, 26 Jun 2019 20:24:35 +0200
113
a237dc2e
TL		 114libpve-access-control (6.0-1) pve; urgency=medium
115
116 * ticket: properly verify exactly 5 minute old tickets
117
118 * use hmac_sha256 instead of sha1 for CSRF token generation
119
120 -- Proxmox Support Team <support@proxmox.com> Mon, 24 Jun 2019 18:14:45 +0200
121
f1531f22
TL		 122libpve-access-control (6.0-0+1) pve; urgency=medium
123
124 * bump for Debian buster
125
126 * fix #2079: add periodic auth key rotation
127
128 -- Proxmox Support Team <support@proxmox.com> Tue, 21 May 2019 21:31:15 +0200
129
ef761f51
TL		 130libpve-access-control (5.1-10) unstable; urgency=medium
131
132 * add /access/user/{id}/tfa api call to get tfa types
133
134 -- Proxmox Support Team <support@proxmox.com> Wed, 15 May 2019 16:21:10 +0200
135
860ddcba
TL		 136libpve-access-control (5.1-9) unstable; urgency=medium
137
138 * store the tfa type in user.cfg allowing to get it without proxying the call
139 to a higher priviledged daemon.
140
141 * tfa: realm required TFA should lock out users without TFA configured, as it
142 was done before Proxmox VE 5.4
143
144 -- Proxmox Support Team <support@proxmox.com> Tue, 30 Apr 2019 14:01:00 +0000
145
9fbad012
TL		 146libpve-access-control (5.1-8) unstable; urgency=medium
147
148 * U2F: ensure we save correct public key on registration
149
150 -- Proxmox Support Team <support@proxmox.com> Tue, 09 Apr 2019 12:47:12 +0200
151
4473c96c
TL		 152libpve-access-control (5.1-7) unstable; urgency=medium
153
154 * verify_ticket: allow general non-challenge tfa to be run as two step
155 call
156
157 -- Proxmox Support Team <support@proxmox.com> Mon, 08 Apr 2019 16:56:14 +0200
158
a270d4e1
TL		 159libpve-access-control (5.1-6) unstable; urgency=medium
160
161 * more general 2FA configuration via priv/tfa.cfg
162
163 * add u2f api endpoints
164
165 * delete TFA entries when deleting a user
166
167 * allow users to change their TOTP settings
168
169 -- Proxmox Support Team <support@proxmox.com> Wed, 03 Apr 2019 13:40:26 +0200
170
374647e8
TL		 171libpve-access-control (5.1-5) unstable; urgency=medium
172
173 * fix vnc ticket verification without authkey lifetime
174
175 -- Proxmox Support Team <support@proxmox.com> Mon, 18 Mar 2019 10:43:17 +0100
176
7fb70c94
TL		 177libpve-access-control (5.1-4) unstable; urgency=medium
178
179 * fix #1891: Add zsh command completion for pveum
180
181 * ground work to fix #2079: add periodic auth key rotation. Not yet enabled
182 to avoid issues on upgrade, will be enabled with 6.0
183
184 -- Proxmox Support Team <support@proxmox.com> Mon, 18 Mar 2019 09:12:05 +0100
185
6e010cde
TL		 186libpve-access-control (5.1-3) unstable; urgency=medium
187
188 * api/ticket: move getting cluster name into an eval
189
190 -- Proxmox Support Team <support@proxmox.com> Thu, 29 Nov 2018 12:59:36 +0100
191
f5a9380a
TL		 192libpve-access-control (5.1-2) unstable; urgency=medium
193
194 * fix #1998: correct return properties for read_role
195
196 -- Proxmox Support Team <support@proxmox.com> Fri, 23 Nov 2018 14:22:40 +0100
197
b54b7474
TL		 198libpve-access-control (5.1-1) unstable; urgency=medium
199
200 * pveum: introduce sub-commands
201
202 * register userid with completion
203
204 * fix #233: return cluster name on successful login
205
206 -- Proxmox Support Team <support@proxmox.com> Thu, 15 Nov 2018 09:34:47 +0100
207
52192dd4
WB		 208libpve-access-control (5.0-8) unstable; urgency=medium
209
210 * fix #1612: ldap: make 2nd server work with bind domains again
211
212 * fix an error message where passing a bad pool id to an API function would
213 make it complain about a wrong group name instead
214
215 * fix the API-returned permission list so that the GUI knows to show the
216 'Permissions' tab for a storage to an administrator apart from root@pam
217
218 -- Proxmox Support Team <support@proxmox.com> Thu, 18 Jan 2018 13:34:50 +0100
219
3dadf8cf
FG		 220libpve-access-control (5.0-7) unstable; urgency=medium
221
222 * VM.Snapshot.Rollback privilege added
223
224 * api: check for special roles before locking the usercfg
225
226 * fix #1501: pveum: die when deleting special role
227
228 * API/ticket: rework coarse grained permission computation
229
230 -- Proxmox Support Team <support@proxmox.com> Thu, 5 Oct 2017 11:27:48 +0200
231
ec4141f4
WB		 232libpve-access-control (5.0-6) unstable; urgency=medium
233
234 * Close #1470: Add server ceritifcate verification for AD and LDAP via the
235 'verify' option. For compatibility reasons this defaults to off for now,
236 but that might change with future updates.
237
238 * AD, LDAP: Add ability to specify a CA path or file, and a client
239 certificate via the 'capath', 'cert' and 'certkey' options.
240
241 -- Proxmox Support Team <support@proxmox.com> Tue, 08 Aug 2017 11:56:38 +0200
242
63134bd4
DM		 243libpve-access-control (5.0-5) unstable; urgency=medium
244
245 * change from dpkg-deb to dpkg-buildpackage
246
247 -- Proxmox Support Team <support@proxmox.com> Thu, 22 Jun 2017 09:12:37 +0200
248
868fb1ea
DM		 249libpve-access-control (5.0-4) unstable; urgency=medium
250
251 * PVE/CLI/pveum.pm: call setup_default_cli_env()
252
253 * PVE/Auth/PVE.pm: encode uft8 password before calling crypt
254
255 * check_api2_permissions: avoid warning about uninitialized value
256
257 -- Proxmox Support Team <support@proxmox.com> Tue, 02 May 2017 11:58:15 +0200
258
63358f40
DM		 259libpve-access-control (5.0-3) unstable; urgency=medium
260
261 * use new PVE::OTP class from pve-common
262
263 * use new PVE::Tools::encrypt_pw from pve-common
264
265 -- Proxmox Support Team <support@proxmox.com> Thu, 30 Mar 2017 17:45:55 +0200
266
05fd50af
DM		 267libpve-access-control (5.0-2) unstable; urgency=medium
268
269 * encrypt_pw: avoid '+' for crypt salt
270
271 -- Proxmox Support Team <support@proxmox.com> Thu, 30 Mar 2017 08:54:10 +0200
272
0835385b
FG		 273libpve-access-control (5.0-1) unstable; urgency=medium
274
275 * rebuild for PVE 5.0
276
277 -- Proxmox Support Team <support@proxmox.com> Mon, 6 Mar 2017 13:42:01 +0100
278
730f8863
DM		 279libpve-access-control (4.0-23) unstable; urgency=medium
280
281 * use new PVE::Ticket class
282
283 -- Proxmox Support Team <support@proxmox.com> Thu, 19 Jan 2017 13:42:06 +0100
284
1f1c4593
DM		 285libpve-access-control (4.0-22) unstable; urgency=medium
286
287 * RPCEnvironment: removed check_volume_access() to avoid cyclic dependency
288 (moved to PVE::Storage)
289
290 * PVE::PCEnvironment: use new PVE::RESTEnvironment as base class
291
292 -- Proxmox Support Team <support@proxmox.com> Thu, 19 Jan 2017 09:12:04 +0100
293
f9105063
DM		 294libpve-access-control (4.0-21) unstable; urgency=medium
295
296 * setup_default_cli_env: expect $class as first parameter
297
298 -- Proxmox Support Team <support@proxmox.com> Thu, 12 Jan 2017 13:54:27 +0100
299
9595066e
DM		 300libpve-access-control (4.0-20) unstable; urgency=medium
301
302 * PVE/RPCEnvironment.pm: new function setup_default_cli_env
303
304 * PVE/API2/Domains.pm: fix property description
305
306 * use new repoman for upload target
307
308 -- Proxmox Support Team <support@proxmox.com> Wed, 11 Jan 2017 12:13:26 +0100
309
2af5a793
DM		 310libpve-access-control (4.0-19) unstable; urgency=medium
311
312 * Close #833: ldap: non-anonymous bind support
313
314 * don't import 'RFC' from MIME::Base32
315
316 -- Proxmox Support Team <support@proxmox.com> Fri, 05 Aug 2016 13:09:08 +0200
317
5d87bb77
WB		 318libpve-access-control (4.0-18) unstable; urgency=medium
319
320 * fix #1062: recognize base32 otp keys again
321
322 -- Proxmox Support Team <support@proxmox.com> Thu, 21 Jul 2016 08:43:18 +0200
323
28ddf48b
WB		 324libpve-access-control (4.0-17) unstable; urgency=medium
325
326 * drop oathtool and libdigest-hmac-perl dependencies
327
328 -- Proxmox Support Team <support@proxmox.com> Mon, 11 Jul 2016 12:03:22 +0200
329
15cebb28
DM		 330libpve-access-control (4.0-16) unstable; urgency=medium
331
332 * use pve-doc-generator to generate man pages
333
334 -- Proxmox Support Team <support@proxmox.com> Fri, 08 Apr 2016 07:06:05 +0200
335
678df887
DM		 336libpve-access-control (4.0-15) unstable; urgency=medium
337
338 * Fix uninitialized warning when shadow.cfg does not exist
339
340 -- Proxmox Support Team <support@proxmox.com> Fri, 01 Apr 2016 07:10:57 +0200
341
cca9761a
DM		 342libpve-access-control (4.0-14) unstable; urgency=medium
343
344 * Add is_worker to RPCEnvironment
345
346 -- Proxmox Support Team <support@proxmox.com> Tue, 15 Mar 2016 16:47:34 +0100
347
8643c99d
DM		 348libpve-access-control (4.0-13) unstable; urgency=medium
349
350 * fix #916: allow HTTPS to access custom yubico url
351
352 -- Proxmox Support Team <support@proxmox.com> Mon, 14 Mar 2016 11:39:23 +0100
353
ae2a6bf9
DM		 354libpve-access-control (4.0-12) unstable; urgency=medium
355
356 * Catch certificate errors instead of segfaulting
357
358 -- Proxmox Support Team <support@proxmox.com> Wed, 09 Mar 2016 14:41:01 +0100
359
4836db5f
DM		 360libpve-access-control (4.0-11) unstable; urgency=medium
361
362 * Fix #861: use safer sprintf formatting
363
364 -- Proxmox Support Team <support@proxmox.com> Fri, 08 Jan 2016 12:52:39 +0100
365
ccbe23dc
DM		 366libpve-access-control (4.0-10) unstable; urgency=medium
367
368 * Auth::LDAP, Auth::AD: ipv6 support
369
370 -- Proxmox Support Team <support@proxmox.com> Thu, 03 Dec 2015 12:09:32 +0100
371
90399ca4
DM		 372libpve-access-control (4.0-9) unstable; urgency=medium
373
374 * pveum: implement bash completion
375
376 -- Proxmox Support Team <support@proxmox.com> Thu, 01 Oct 2015 17:22:52 +0200
377
364ffc13
DM		 378libpve-access-control (4.0-8) unstable; urgency=medium
379
380 * remove_storage_access: cleanup of access permissions for removed storage
381
382 -- Proxmox Support Team <support@proxmox.com> Wed, 19 Aug 2015 15:39:15 +0200
383
7c26cb4a
DM		 384libpve-access-control (4.0-7) unstable; urgency=medium
385
386 * new helper to remove access permissions for removed VMs
387
388 -- Proxmox Support Team <support@proxmox.com> Fri, 14 Aug 2015 07:57:02 +0200
389
296afbd1
DM		 390libpve-access-control (4.0-6) unstable; urgency=medium
391
392 * improve parse_user_config, parse_shadow_config
393
394 -- Proxmox Support Team <support@proxmox.com> Mon, 27 Jul 2015 13:14:33 +0200
395
7d2df2ef
DM		 396libpve-access-control (4.0-5) unstable; urgency=medium
397
398 * pveum: check for $cmd being defined
399
400 -- Proxmox Support Team <support@proxmox.com> Wed, 10 Jun 2015 10:40:15 +0200
401
98a34e3f
DM		 402libpve-access-control (4.0-4) unstable; urgency=medium
403
404 * use activate-noawait triggers
405
406 -- Proxmox Support Team <support@proxmox.com> Mon, 01 Jun 2015 12:25:31 +0200
407
15462727
DM		 408libpve-access-control (4.0-3) unstable; urgency=medium
409
410 * IPv6 fixes
411
412 * non-root buildfix
413
414 -- Proxmox Support Team <support@proxmox.com> Wed, 27 May 2015 11:15:44 +0200
415
bbf4cc9a
DM		 416libpve-access-control (4.0-2) unstable; urgency=medium
417
418 * trigger pve-api-updates event
419
420 -- Proxmox Support Team <support@proxmox.com> Tue, 05 May 2015 15:06:38 +0200
421
dfbcf6d3
DM		 422libpve-access-control (4.0-1) unstable; urgency=medium
423
424 * bump version for Debian Jessie
425
426 -- Proxmox Support Team <support@proxmox.com> Thu, 26 Feb 2015 11:22:01 +0100
427
94971b3a
DM		 428libpve-access-control (3.0-16) unstable; urgency=low
429
430 * root@pam can now be disabled in GUI.
431
432 -- Proxmox Support Team <support@proxmox.com> Fri, 30 Jan 2015 06:20:22 +0100
433
7b17c7cb
DM		 434libpve-access-control (3.0-15) unstable; urgency=low
435
436 * oath: add 'step' and 'digits' option
437
438 -- Proxmox Support Team <support@proxmox.com> Wed, 23 Jul 2014 06:59:52 +0200
439
1abc2c0a
DM		 440libpve-access-control (3.0-14) unstable; urgency=low
441
442 * add oath two factor auth
443
444 * add oathkeygen binary to generate keys for oath
445
446 * add yubico two factor auth
447
448 * dedend on oathtool
449
450 * depend on libmime-base32-perl
30be0de9
DM		 451
452 * allow to write builtin auth domains config (comment/tfa/default)
1abc2c0a
DM		 453
454 -- Proxmox Support Team <support@proxmox.com> Thu, 17 Jul 2014 13:09:56 +0200
455
298450ab
DM		 456libpve-access-control (3.0-13) unstable; urgency=low
457
458 * use correct connection string for AD auth
459
460 -- Proxmox Support Team <support@proxmox.com> Thu, 22 May 2014 07:16:09 +0200
461
396034e4
DM		 462libpve-access-control (3.0-12) unstable; urgency=low
463
464 * add dummy API for GET /access/ticket (useful to generate login pages)
465
466 -- Proxmox Support Team <support@proxmox.com> Wed, 30 Apr 2014 14:47:56 +0200
467
26361123
DM		 468libpve-access-control (3.0-11) unstable; urgency=low
469
470 * Sets common hot keys for spice client
471
472 -- Proxmox Support Team <support@proxmox.com> Fri, 31 Jan 2014 10:24:28 +0100
473
3643383d
DM		 474libpve-access-control (3.0-10) unstable; urgency=low
475
476 * implement helper to generate SPICE remote-viewer configuration
477
478 * depend on libnet-ssleay-perl
479
480 -- Proxmox Support Team <support@proxmox.com> Tue, 10 Dec 2013 10:45:08 +0100
481
0baedcf7
DM		 482libpve-access-control (3.0-9) unstable; urgency=low
483
484 * prevent user enumeration attacks
e4f8fc2e
DM		 485
486 * allow dots in access paths
0baedcf7
DM		 487
488 -- Proxmox Support Team <support@proxmox.com> Mon, 18 Nov 2013 09:06:38 +0100
489
d4b63eae
DM		 490libpve-access-control (3.0-8) unstable; urgency=low
491
492 * spice: use lowercase hostname in ticktet signature
493
494 -- Proxmox Support Team <support@proxmox.com> Mon, 28 Oct 2013 08:11:57 +0100
495
49594944
DM		 496libpve-access-control (3.0-7) unstable; urgency=low
497
498 * check_volume_access : use parse_volname instead of path, and remove
499 path related code.
7c410d63
DM		 500
501 * use warnings instead of global -w flag.
49594944
DM		 502
503 -- Proxmox Support Team <support@proxmox.com> Tue, 01 Oct 2013 12:35:53 +0200
504
fe7de5d0
DM		 505libpve-access-control (3.0-6) unstable; urgency=low
506
507 * use shorter spiceproxy tickets
508
509 -- Proxmox Support Team <support@proxmox.com> Fri, 19 Jul 2013 12:39:09 +0200
510
4cdd9507
DM		 511libpve-access-control (3.0-5) unstable; urgency=low
512
513 * add code to generate tickets for SPICE
514
515 -- Proxmox Support Team <support@proxmox.com> Wed, 26 Jun 2013 13:08:32 +0200
516
677f9ab0
DM		 517libpve-access-control (3.0-4) unstable; urgency=low
518
519 * moved add_vm_to_pool/remove_vm_from_pool from qemu-server
520
521 -- Proxmox Support Team <support@proxmox.com> Tue, 14 May 2013 11:56:54 +0200
522
139a8ecf
DM		 523libpve-access-control (3.0-3) unstable; urgency=low
524
7b395f99 525 * Add new role PVETemplateUser (and VM.Clone priviledge)
139a8ecf
DM		 526
527 -- Proxmox Support Team <support@proxmox.com> Mon, 29 Apr 2013 11:42:15 +0200
528
b78ce7c2
DM		 529libpve-access-control (3.0-2) unstable; urgency=low
530
531 * remove CGI.pm related code (pveproxy does not need that)
532
533 -- Proxmox Support Team <support@proxmox.com> Mon, 15 Apr 2013 12:34:23 +0200
534
786820f9
DM		 535libpve-access-control (3.0-1) unstable; urgency=low
536
537 * bump version for wheezy release
538
539 -- Proxmox Support Team <support@proxmox.com> Fri, 15 Mar 2013 08:07:06 +0100
540
e5ae5487
DM		 541libpve-access-control (1.0-26) unstable; urgency=low
542
543 * check_volume_access: fix access permissions for backup files
544
545 -- Proxmox Support Team <support@proxmox.com> Thu, 28 Feb 2013 10:00:14 +0100
546
e3e6510c
DM		 547libpve-access-control (1.0-25) unstable; urgency=low
548
549 * add VM.Snapshot permission
550
551 -- Proxmox Support Team <support@proxmox.com> Mon, 10 Sep 2012 09:23:32 +0200
552
1e15ebe7
DM		 553libpve-access-control (1.0-24) unstable; urgency=low
554
555 * untaint path (allow root to restore arbitrary paths)
556
557 -- Proxmox Support Team <support@proxmox.com> Wed, 06 Jun 2012 13:06:34 +0200
558
437be042
DM		 559libpve-access-control (1.0-23) unstable; urgency=low
560
561 * correctly compute GUI capabilities (consider pools)
562
563 -- Proxmox Support Team <support@proxmox.com> Wed, 30 May 2012 08:47:23 +0200
564
5bb4e06a
DM		 565libpve-access-control (1.0-22) unstable; urgency=low
566
567 * new plugin architecture for Auth modules, minor API change for Auth
568 domains (new 'delete' parameter)
569
570 -- Proxmox Support Team <support@proxmox.com> Wed, 16 May 2012 07:21:44 +0200
571
3030a176
DM		 572libpve-access-control (1.0-21) unstable; urgency=low
573
574 * do not allow user names including slash
575
576 -- Proxmox Support Team <support@proxmox.com> Tue, 24 Apr 2012 10:07:47 +0200
577
578libpve-access-control (1.0-20) unstable; urgency=low
579
580 * add ability to fork cli workers in background
581
582 -- Proxmox Support Team <support@proxmox.com> Wed, 18 Apr 2012 08:28:20 +0200
583
dd2cfee0
DM		 584libpve-access-control (1.0-19) unstable; urgency=low
585
586 * return set of privileges on login - can be used to adopt GUI
587
588 -- Proxmox Support Team <support@proxmox.com> Tue, 17 Apr 2012 10:25:10 +0200
589
1cf154b7
DM		 590libpve-access-control (1.0-18) unstable; urgency=low
591
533219a1
DM		 592 * fix bug #151: corretly parse username inside ticket
593
594 * fix bug #152: allow user to change his own password
1cf154b7
DM		 595
596 -- Proxmox Support Team <support@proxmox.com> Wed, 11 Apr 2012 09:40:15 +0200
597
2de14407
DM		 598libpve-access-control (1.0-17) unstable; urgency=low
599
600 * set propagate flag by default
601
602 -- Proxmox Support Team <support@proxmox.com> Thu, 01 Mar 2012 12:40:19 +0100
603
bdc61d7a
DM		 604libpve-access-control (1.0-16) unstable; urgency=low
605
606 * add 'pveum passwd' method
607
608 -- Proxmox Support Team <support@proxmox.com> Thu, 23 Feb 2012 12:05:25 +0100
609
cc7bdf33
DM		 610libpve-access-control (1.0-15) unstable; urgency=low
611
612 * Add VM.Config.CDROM privilege to PVEVMUser rule
613
614 -- Proxmox Support Team <support@proxmox.com> Wed, 22 Feb 2012 11:44:23 +0100
615
a69bbe2e
DM		 616libpve-access-control (1.0-14) unstable; urgency=low
617
618 * fix buf in userid-param permission check
619
620 -- Proxmox Support Team <support@proxmox.com> Wed, 22 Feb 2012 10:52:35 +0100
621
d9483d94
DM		 622libpve-access-control (1.0-13) unstable; urgency=low
623
624 * allow more characters in ldap base_dn attribute
625
626 -- Proxmox Support Team <support@proxmox.com> Wed, 22 Feb 2012 06:17:02 +0100
627
84619607
DM		 628libpve-access-control (1.0-12) unstable; urgency=low
629
630 * allow more characters with realm IDs
631
632 -- Proxmox Support Team <support@proxmox.com> Mon, 20 Feb 2012 08:50:33 +0100
633
09d27058
DM		 634libpve-access-control (1.0-11) unstable; urgency=low
635
636 * fix bug in exec_api2_perm_check
637
638 -- Proxmox Support Team <support@proxmox.com> Wed, 15 Feb 2012 07:06:30 +0100
639
7a4c849e
DM		 640libpve-access-control (1.0-10) unstable; urgency=low
641
642 * fix ACL group name parser
643
644 * changed 'pveum aclmod' command line arguments
645
646 -- Proxmox Support Team <support@proxmox.com> Tue, 14 Feb 2012 12:08:02 +0100
647
3eac4e35
DM		 648libpve-access-control (1.0-9) unstable; urgency=low
649
650 * fix bug in check_volume_access (fixes vzrestore)
651
652 -- Proxmox Support Team <support@proxmox.com> Mon, 13 Feb 2012 09:56:37 +0100
653
4384e19e
DM		 654libpve-access-control (1.0-8) unstable; urgency=low
655
656 * fix return value for empty ACL list.
657
658 -- Proxmox Support Team <support@proxmox.com> Fri, 10 Feb 2012 11:25:04 +0100
659
d8a56966
DM		 660libpve-access-control (1.0-7) unstable; urgency=low
661
662 * fix bug #85: allow root@pam to generate tickets for other users
663
664 -- Proxmox Support Team <support@proxmox.com> Tue, 17 Jan 2012 06:40:18 +0100
665
cb6f2f93
DM		 666libpve-access-control (1.0-6) unstable; urgency=low
667
668 * API change: allow to filter enabled/disabled users.
669
670 -- Proxmox Support Team <support@proxmox.com> Wed, 11 Jan 2012 12:30:37 +0100
671
272fe9ff
DM		 672libpve-access-control (1.0-5) unstable; urgency=low
673
674 * add a way to return file changes (diffs): set_result_changes()
675
676 -- Proxmox Support Team <support@proxmox.com> Tue, 20 Dec 2011 11:18:48 +0100
677
e42eedbc
DM		 678libpve-access-control (1.0-4) unstable; urgency=low
679
680 * new environment type for ha agents
681
682 -- Proxmox Support Team <support@proxmox.com> Tue, 13 Dec 2011 10:08:53 +0100
683
1fba27e0
DM		 684libpve-access-control (1.0-3) unstable; urgency=low
685
686 * add support for delayed parameter parsing - We need that to disable
687 file upload for normal API request (avoid DOS attacs)
688
689 -- Proxmox Support Team <support@proxmox.com> Fri, 02 Dec 2011 09:56:10 +0100
690
5bf71a96
DM		 691libpve-access-control (1.0-2) unstable; urgency=low
692
693 * fix bug in fork_worker
694
695 -- Proxmox Support Team <support@proxmox.com> Tue, 11 Oct 2011 08:37:05 +0200
696
2c3a6c0a
DM		 697libpve-access-control (1.0-1) unstable; urgency=low
698
699 * allow '-' in permission paths
700
701 * bump version to 1.0
702
703 -- Proxmox Support Team <support@proxmox.com> Mon, 27 Jun 2011 13:51:48 +0200
704
705libpve-access-control (0.1) unstable; urgency=low
706
707 * first dummy package - no functionality
708
709 -- Proxmox Support Team <support@proxmox.com> Thu, 09 Jul 2009 16:03:00 +0200
710
Access control framework