]> git.proxmox.com Git - pve-access-control.git/blame - debian/changelog
projects / pve-access-control.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
bump version to 7.0-3
[pve-access-control.git] / debian / changelog
CommitLineData
7a4c4fd8
TL		 1libpve-access-control (7.0-3) bullseye; urgency=medium
2
3 * api: acl: add missing `/access/realm/<realm>`, `/access/group/<group>` and
4 `/sdn/zones/<zone>` to allowed ACL paths
5
6 -- Proxmox Support Team <support@proxmox.com> Mon, 21 Jun 2021 10:31:19 +0200
7
0902a936
FG		 8libpve-access-control (7.0-2) bullseye; urgency=medium
9
10 * fix #3402: add Pool.Audit privilege - custom roles containing
11 Pool.Allocate must be updated to include the new privilege.
12
13 -- Proxmox Support Team <support@proxmox.com> Tue, 1 Jun 2021 11:28:38 +0200
14
67febb69
TL		 15libpve-access-control (7.0-1) bullseye; urgency=medium
16
17 * re-build for Debian 11 Bullseye based releases
18
19 -- Proxmox Support Team <support@proxmox.com> Sun, 09 May 2021 18:18:23 +0200
20
2942ba41
TL		 21libpve-access-control (6.4-1) pve; urgency=medium
22
23 * fix #1670: change PAM service name to project specific name
24
25 * fix #1500: permission path syntax check for access control
26
27 * pveum: add resource pool CLI commands
28
29 -- Proxmox Support Team <support@proxmox.com> Sat, 24 Apr 2021 19:48:21 +0200
30
54d312f3
TL		 31libpve-access-control (6.1-3) pve; urgency=medium
32
33 * partially fix #2825: authkey: rotate if it was generated in the
34 future
35
36 * fix #2947: add an option to LDAP or AD realm to switch user lookup to case
37 insensitive
38
39 -- Proxmox Support Team <support@proxmox.com> Tue, 29 Sep 2020 08:54:13 +0200
40
6a9be12f
TL		 41libpve-access-control (6.1-2) pve; urgency=medium
42
43 * also check SDN permission path when computing coarse permissions heuristic
44 for UIs
45
46 * add SDN Permissions.Modify
47
48 * add VM.Config.Cloudinit
49
50 -- Proxmox Support Team <support@proxmox.com> Tue, 30 Jun 2020 13:06:56 +0200
51
e6624f50
TL		 52libpve-access-control (6.1-1) pve; urgency=medium
53
54 * pveum: add tfa delete subcommand for deleting user-TFA
55
56 * LDAP: don't complain about missing credentials on realm removal
57
58 * LDAP: skip anonymous bind when client certificate and key is configured
59
60 -- Proxmox Support Team <support@proxmox.com> Fri, 08 May 2020 17:47:41 +0200
61
8f4a522f
TL		 62libpve-access-control (6.0-7) pve; urgency=medium
63
64 * fix #2575: die when trying to edit built-in roles
65
66 * add realm sub commands to pveum CLI tool
67
68 * api: domains: add user group sync API enpoint
69
70 * allow one to sync and import users and groups from LDAP/AD based realms
71
72 * realm: add default-sync-options to config for more convenient sync configuration
73
74 * api: token create: return also full token id for convenience
75
76 -- Proxmox Support Team <support@proxmox.com> Sat, 25 Apr 2020 19:35:17 +0200
77
23059f35
TL		 78libpve-access-control (6.0-6) pve; urgency=medium
79
80 * API: add group members to group index
81
82 * implement API token support and management
83
84 * pveum: add 'pveum user token add/update/remove/list'
85
86 * pveum: add permissions sub-commands
87
88 * API: add 'permissions' API endpoint
89
90 * user.cfg: skip inexisting roles when parsing ACLs
91
92 -- Proxmox Support Team <support@proxmox.com> Wed, 29 Jan 2020 10:17:27 +0100
93
3dd692e9
TL		 94libpve-access-control (6.0-5) pve; urgency=medium
95
96 * pveum: add list command for users, groups, ACLs and roles
97
98 * add initial permissions for experimental SDN integration
99
100 -- Proxmox Support Team <support@proxmox.com> Tue, 26 Nov 2019 17:56:37 +0100
101
4ef92d0d
FG		 102libpve-access-control (6.0-4) pve; urgency=medium
103
104 * ticket: use clinfo to get cluster name
105
106 * ldaps: add sslversion configuration property to support TLS 1.1 to 1.3 as
107 SSL version
108
109 -- Proxmox Support Team <support@proxmox.com> Mon, 18 Nov 2019 11:55:11 +0100
110
6e5bbca4
TL		 111libpve-access-control (6.0-3) pve; urgency=medium
112
113 * fix #2433: increase possible TFA secret length
114
115 * parse user configuration: correctly parse group names in ACLs, for users
116 which begin their name with an @
117
118 * sort user.cfg entries alphabetically
119
120 -- Proxmox Support Team <support@proxmox.com> Tue, 29 Oct 2019 08:52:23 +0100
121
e073493c
TL		 122libpve-access-control (6.0-2) pve; urgency=medium
123
124 * improve CSRF verification compatibility with newer PVE
125
126 -- Proxmox Support Team <support@proxmox.com> Wed, 26 Jun 2019 20:24:35 +0200
127
a237dc2e
TL		 128libpve-access-control (6.0-1) pve; urgency=medium
129
130 * ticket: properly verify exactly 5 minute old tickets
131
132 * use hmac_sha256 instead of sha1 for CSRF token generation
133
134 -- Proxmox Support Team <support@proxmox.com> Mon, 24 Jun 2019 18:14:45 +0200
135
f1531f22
TL		 136libpve-access-control (6.0-0+1) pve; urgency=medium
137
138 * bump for Debian buster
139
140 * fix #2079: add periodic auth key rotation
141
142 -- Proxmox Support Team <support@proxmox.com> Tue, 21 May 2019 21:31:15 +0200
143
ef761f51
TL		 144libpve-access-control (5.1-10) unstable; urgency=medium
145
146 * add /access/user/{id}/tfa api call to get tfa types
147
148 -- Proxmox Support Team <support@proxmox.com> Wed, 15 May 2019 16:21:10 +0200
149
860ddcba
TL		 150libpve-access-control (5.1-9) unstable; urgency=medium
151
152 * store the tfa type in user.cfg allowing to get it without proxying the call
153 to a higher priviledged daemon.
154
155 * tfa: realm required TFA should lock out users without TFA configured, as it
156 was done before Proxmox VE 5.4
157
158 -- Proxmox Support Team <support@proxmox.com> Tue, 30 Apr 2019 14:01:00 +0000
159
9fbad012
TL		 160libpve-access-control (5.1-8) unstable; urgency=medium
161
162 * U2F: ensure we save correct public key on registration
163
164 -- Proxmox Support Team <support@proxmox.com> Tue, 09 Apr 2019 12:47:12 +0200
165
4473c96c
TL		 166libpve-access-control (5.1-7) unstable; urgency=medium
167
168 * verify_ticket: allow general non-challenge tfa to be run as two step
169 call
170
171 -- Proxmox Support Team <support@proxmox.com> Mon, 08 Apr 2019 16:56:14 +0200
172
a270d4e1
TL		 173libpve-access-control (5.1-6) unstable; urgency=medium
174
175 * more general 2FA configuration via priv/tfa.cfg
176
177 * add u2f api endpoints
178
179 * delete TFA entries when deleting a user
180
181 * allow users to change their TOTP settings
182
183 -- Proxmox Support Team <support@proxmox.com> Wed, 03 Apr 2019 13:40:26 +0200
184
374647e8
TL		 185libpve-access-control (5.1-5) unstable; urgency=medium
186
187 * fix vnc ticket verification without authkey lifetime
188
189 -- Proxmox Support Team <support@proxmox.com> Mon, 18 Mar 2019 10:43:17 +0100
190
7fb70c94
TL		 191libpve-access-control (5.1-4) unstable; urgency=medium
192
193 * fix #1891: Add zsh command completion for pveum
194
195 * ground work to fix #2079: add periodic auth key rotation. Not yet enabled
196 to avoid issues on upgrade, will be enabled with 6.0
197
198 -- Proxmox Support Team <support@proxmox.com> Mon, 18 Mar 2019 09:12:05 +0100
199
6e010cde
TL		 200libpve-access-control (5.1-3) unstable; urgency=medium
201
202 * api/ticket: move getting cluster name into an eval
203
204 -- Proxmox Support Team <support@proxmox.com> Thu, 29 Nov 2018 12:59:36 +0100
205
f5a9380a
TL		 206libpve-access-control (5.1-2) unstable; urgency=medium
207
208 * fix #1998: correct return properties for read_role
209
210 -- Proxmox Support Team <support@proxmox.com> Fri, 23 Nov 2018 14:22:40 +0100
211
b54b7474
TL		 212libpve-access-control (5.1-1) unstable; urgency=medium
213
214 * pveum: introduce sub-commands
215
216 * register userid with completion
217
218 * fix #233: return cluster name on successful login
219
220 -- Proxmox Support Team <support@proxmox.com> Thu, 15 Nov 2018 09:34:47 +0100
221
52192dd4
WB		 222libpve-access-control (5.0-8) unstable; urgency=medium
223
224 * fix #1612: ldap: make 2nd server work with bind domains again
225
226 * fix an error message where passing a bad pool id to an API function would
227 make it complain about a wrong group name instead
228
229 * fix the API-returned permission list so that the GUI knows to show the
230 'Permissions' tab for a storage to an administrator apart from root@pam
231
232 -- Proxmox Support Team <support@proxmox.com> Thu, 18 Jan 2018 13:34:50 +0100
233
3dadf8cf
FG		 234libpve-access-control (5.0-7) unstable; urgency=medium
235
236 * VM.Snapshot.Rollback privilege added
237
238 * api: check for special roles before locking the usercfg
239
240 * fix #1501: pveum: die when deleting special role
241
242 * API/ticket: rework coarse grained permission computation
243
244 -- Proxmox Support Team <support@proxmox.com> Thu, 5 Oct 2017 11:27:48 +0200
245
ec4141f4
WB		 246libpve-access-control (5.0-6) unstable; urgency=medium
247
248 * Close #1470: Add server ceritifcate verification for AD and LDAP via the
249 'verify' option. For compatibility reasons this defaults to off for now,
250 but that might change with future updates.
251
252 * AD, LDAP: Add ability to specify a CA path or file, and a client
253 certificate via the 'capath', 'cert' and 'certkey' options.
254
255 -- Proxmox Support Team <support@proxmox.com> Tue, 08 Aug 2017 11:56:38 +0200
256
63134bd4
DM		 257libpve-access-control (5.0-5) unstable; urgency=medium
258
259 * change from dpkg-deb to dpkg-buildpackage
260
261 -- Proxmox Support Team <support@proxmox.com> Thu, 22 Jun 2017 09:12:37 +0200
262
868fb1ea
DM		 263libpve-access-control (5.0-4) unstable; urgency=medium
264
265 * PVE/CLI/pveum.pm: call setup_default_cli_env()
266
267 * PVE/Auth/PVE.pm: encode uft8 password before calling crypt
268
269 * check_api2_permissions: avoid warning about uninitialized value
270
271 -- Proxmox Support Team <support@proxmox.com> Tue, 02 May 2017 11:58:15 +0200
272
63358f40
DM		 273libpve-access-control (5.0-3) unstable; urgency=medium
274
275 * use new PVE::OTP class from pve-common
276
277 * use new PVE::Tools::encrypt_pw from pve-common
278
279 -- Proxmox Support Team <support@proxmox.com> Thu, 30 Mar 2017 17:45:55 +0200
280
05fd50af
DM		 281libpve-access-control (5.0-2) unstable; urgency=medium
282
283 * encrypt_pw: avoid '+' for crypt salt
284
285 -- Proxmox Support Team <support@proxmox.com> Thu, 30 Mar 2017 08:54:10 +0200
286
0835385b
FG		 287libpve-access-control (5.0-1) unstable; urgency=medium
288
289 * rebuild for PVE 5.0
290
291 -- Proxmox Support Team <support@proxmox.com> Mon, 6 Mar 2017 13:42:01 +0100
292
730f8863
DM		 293libpve-access-control (4.0-23) unstable; urgency=medium
294
295 * use new PVE::Ticket class
296
297 -- Proxmox Support Team <support@proxmox.com> Thu, 19 Jan 2017 13:42:06 +0100
298
1f1c4593
DM		 299libpve-access-control (4.0-22) unstable; urgency=medium
300
301 * RPCEnvironment: removed check_volume_access() to avoid cyclic dependency
302 (moved to PVE::Storage)
303
304 * PVE::PCEnvironment: use new PVE::RESTEnvironment as base class
305
306 -- Proxmox Support Team <support@proxmox.com> Thu, 19 Jan 2017 09:12:04 +0100
307
f9105063
DM		 308libpve-access-control (4.0-21) unstable; urgency=medium
309
310 * setup_default_cli_env: expect $class as first parameter
311
312 -- Proxmox Support Team <support@proxmox.com> Thu, 12 Jan 2017 13:54:27 +0100
313
9595066e
DM		 314libpve-access-control (4.0-20) unstable; urgency=medium
315
316 * PVE/RPCEnvironment.pm: new function setup_default_cli_env
317
318 * PVE/API2/Domains.pm: fix property description
319
320 * use new repoman for upload target
321
322 -- Proxmox Support Team <support@proxmox.com> Wed, 11 Jan 2017 12:13:26 +0100
323
2af5a793
DM		 324libpve-access-control (4.0-19) unstable; urgency=medium
325
326 * Close #833: ldap: non-anonymous bind support
327
328 * don't import 'RFC' from MIME::Base32
329
330 -- Proxmox Support Team <support@proxmox.com> Fri, 05 Aug 2016 13:09:08 +0200
331
5d87bb77
WB		 332libpve-access-control (4.0-18) unstable; urgency=medium
333
334 * fix #1062: recognize base32 otp keys again
335
336 -- Proxmox Support Team <support@proxmox.com> Thu, 21 Jul 2016 08:43:18 +0200
337
28ddf48b
WB		 338libpve-access-control (4.0-17) unstable; urgency=medium
339
340 * drop oathtool and libdigest-hmac-perl dependencies
341
342 -- Proxmox Support Team <support@proxmox.com> Mon, 11 Jul 2016 12:03:22 +0200
343
15cebb28
DM		 344libpve-access-control (4.0-16) unstable; urgency=medium
345
346 * use pve-doc-generator to generate man pages
347
348 -- Proxmox Support Team <support@proxmox.com> Fri, 08 Apr 2016 07:06:05 +0200
349
678df887
DM		 350libpve-access-control (4.0-15) unstable; urgency=medium
351
352 * Fix uninitialized warning when shadow.cfg does not exist
353
354 -- Proxmox Support Team <support@proxmox.com> Fri, 01 Apr 2016 07:10:57 +0200
355
cca9761a
DM		 356libpve-access-control (4.0-14) unstable; urgency=medium
357
358 * Add is_worker to RPCEnvironment
359
360 -- Proxmox Support Team <support@proxmox.com> Tue, 15 Mar 2016 16:47:34 +0100
361
8643c99d
DM		 362libpve-access-control (4.0-13) unstable; urgency=medium
363
364 * fix #916: allow HTTPS to access custom yubico url
365
366 -- Proxmox Support Team <support@proxmox.com> Mon, 14 Mar 2016 11:39:23 +0100
367
ae2a6bf9
DM		 368libpve-access-control (4.0-12) unstable; urgency=medium
369
370 * Catch certificate errors instead of segfaulting
371
372 -- Proxmox Support Team <support@proxmox.com> Wed, 09 Mar 2016 14:41:01 +0100
373
4836db5f
DM		 374libpve-access-control (4.0-11) unstable; urgency=medium
375
376 * Fix #861: use safer sprintf formatting
377
378 -- Proxmox Support Team <support@proxmox.com> Fri, 08 Jan 2016 12:52:39 +0100
379
ccbe23dc
DM		 380libpve-access-control (4.0-10) unstable; urgency=medium
381
382 * Auth::LDAP, Auth::AD: ipv6 support
383
384 -- Proxmox Support Team <support@proxmox.com> Thu, 03 Dec 2015 12:09:32 +0100
385
90399ca4
DM		 386libpve-access-control (4.0-9) unstable; urgency=medium
387
388 * pveum: implement bash completion
389
390 -- Proxmox Support Team <support@proxmox.com> Thu, 01 Oct 2015 17:22:52 +0200
391
364ffc13
DM		 392libpve-access-control (4.0-8) unstable; urgency=medium
393
394 * remove_storage_access: cleanup of access permissions for removed storage
395
396 -- Proxmox Support Team <support@proxmox.com> Wed, 19 Aug 2015 15:39:15 +0200
397
7c26cb4a
DM		 398libpve-access-control (4.0-7) unstable; urgency=medium
399
400 * new helper to remove access permissions for removed VMs
401
402 -- Proxmox Support Team <support@proxmox.com> Fri, 14 Aug 2015 07:57:02 +0200
403
296afbd1
DM		 404libpve-access-control (4.0-6) unstable; urgency=medium
405
406 * improve parse_user_config, parse_shadow_config
407
408 -- Proxmox Support Team <support@proxmox.com> Mon, 27 Jul 2015 13:14:33 +0200
409
7d2df2ef
DM		 410libpve-access-control (4.0-5) unstable; urgency=medium
411
412 * pveum: check for $cmd being defined
413
414 -- Proxmox Support Team <support@proxmox.com> Wed, 10 Jun 2015 10:40:15 +0200
415
98a34e3f
DM		 416libpve-access-control (4.0-4) unstable; urgency=medium
417
418 * use activate-noawait triggers
419
420 -- Proxmox Support Team <support@proxmox.com> Mon, 01 Jun 2015 12:25:31 +0200
421
15462727
DM		 422libpve-access-control (4.0-3) unstable; urgency=medium
423
424 * IPv6 fixes
425
426 * non-root buildfix
427
428 -- Proxmox Support Team <support@proxmox.com> Wed, 27 May 2015 11:15:44 +0200
429
bbf4cc9a
DM		 430libpve-access-control (4.0-2) unstable; urgency=medium
431
432 * trigger pve-api-updates event
433
434 -- Proxmox Support Team <support@proxmox.com> Tue, 05 May 2015 15:06:38 +0200
435
dfbcf6d3
DM		 436libpve-access-control (4.0-1) unstable; urgency=medium
437
438 * bump version for Debian Jessie
439
440 -- Proxmox Support Team <support@proxmox.com> Thu, 26 Feb 2015 11:22:01 +0100
441
94971b3a
DM		 442libpve-access-control (3.0-16) unstable; urgency=low
443
444 * root@pam can now be disabled in GUI.
445
446 -- Proxmox Support Team <support@proxmox.com> Fri, 30 Jan 2015 06:20:22 +0100
447
7b17c7cb
DM		 448libpve-access-control (3.0-15) unstable; urgency=low
449
450 * oath: add 'step' and 'digits' option
451
452 -- Proxmox Support Team <support@proxmox.com> Wed, 23 Jul 2014 06:59:52 +0200
453
1abc2c0a
DM		 454libpve-access-control (3.0-14) unstable; urgency=low
455
456 * add oath two factor auth
457
458 * add oathkeygen binary to generate keys for oath
459
460 * add yubico two factor auth
461
462 * dedend on oathtool
463
464 * depend on libmime-base32-perl
30be0de9
DM		 465
466 * allow to write builtin auth domains config (comment/tfa/default)
1abc2c0a
DM		 467
468 -- Proxmox Support Team <support@proxmox.com> Thu, 17 Jul 2014 13:09:56 +0200
469
298450ab
DM		 470libpve-access-control (3.0-13) unstable; urgency=low
471
472 * use correct connection string for AD auth
473
474 -- Proxmox Support Team <support@proxmox.com> Thu, 22 May 2014 07:16:09 +0200
475
396034e4
DM		 476libpve-access-control (3.0-12) unstable; urgency=low
477
478 * add dummy API for GET /access/ticket (useful to generate login pages)
479
480 -- Proxmox Support Team <support@proxmox.com> Wed, 30 Apr 2014 14:47:56 +0200
481
26361123
DM		 482libpve-access-control (3.0-11) unstable; urgency=low
483
484 * Sets common hot keys for spice client
485
486 -- Proxmox Support Team <support@proxmox.com> Fri, 31 Jan 2014 10:24:28 +0100
487
3643383d
DM		 488libpve-access-control (3.0-10) unstable; urgency=low
489
490 * implement helper to generate SPICE remote-viewer configuration
491
492 * depend on libnet-ssleay-perl
493
494 -- Proxmox Support Team <support@proxmox.com> Tue, 10 Dec 2013 10:45:08 +0100
495
0baedcf7
DM		 496libpve-access-control (3.0-9) unstable; urgency=low
497
498 * prevent user enumeration attacks
e4f8fc2e
DM		 499
500 * allow dots in access paths
0baedcf7
DM		 501
502 -- Proxmox Support Team <support@proxmox.com> Mon, 18 Nov 2013 09:06:38 +0100
503
d4b63eae
DM		 504libpve-access-control (3.0-8) unstable; urgency=low
505
506 * spice: use lowercase hostname in ticktet signature
507
508 -- Proxmox Support Team <support@proxmox.com> Mon, 28 Oct 2013 08:11:57 +0100
509
49594944
DM		 510libpve-access-control (3.0-7) unstable; urgency=low
511
512 * check_volume_access : use parse_volname instead of path, and remove
513 path related code.
7c410d63
DM		 514
515 * use warnings instead of global -w flag.
49594944
DM		 516
517 -- Proxmox Support Team <support@proxmox.com> Tue, 01 Oct 2013 12:35:53 +0200
518
fe7de5d0
DM		 519libpve-access-control (3.0-6) unstable; urgency=low
520
521 * use shorter spiceproxy tickets
522
523 -- Proxmox Support Team <support@proxmox.com> Fri, 19 Jul 2013 12:39:09 +0200
524
4cdd9507
DM		 525libpve-access-control (3.0-5) unstable; urgency=low
526
527 * add code to generate tickets for SPICE
528
529 -- Proxmox Support Team <support@proxmox.com> Wed, 26 Jun 2013 13:08:32 +0200
530
677f9ab0
DM		 531libpve-access-control (3.0-4) unstable; urgency=low
532
533 * moved add_vm_to_pool/remove_vm_from_pool from qemu-server
534
535 -- Proxmox Support Team <support@proxmox.com> Tue, 14 May 2013 11:56:54 +0200
536
139a8ecf
DM		 537libpve-access-control (3.0-3) unstable; urgency=low
538
7b395f99 539 * Add new role PVETemplateUser (and VM.Clone priviledge)
139a8ecf
DM		 540
541 -- Proxmox Support Team <support@proxmox.com> Mon, 29 Apr 2013 11:42:15 +0200
542
b78ce7c2
DM		 543libpve-access-control (3.0-2) unstable; urgency=low
544
545 * remove CGI.pm related code (pveproxy does not need that)
546
547 -- Proxmox Support Team <support@proxmox.com> Mon, 15 Apr 2013 12:34:23 +0200
548
786820f9
DM		 549libpve-access-control (3.0-1) unstable; urgency=low
550
551 * bump version for wheezy release
552
553 -- Proxmox Support Team <support@proxmox.com> Fri, 15 Mar 2013 08:07:06 +0100
554
e5ae5487
DM		 555libpve-access-control (1.0-26) unstable; urgency=low
556
557 * check_volume_access: fix access permissions for backup files
558
559 -- Proxmox Support Team <support@proxmox.com> Thu, 28 Feb 2013 10:00:14 +0100
560
e3e6510c
DM		 561libpve-access-control (1.0-25) unstable; urgency=low
562
563 * add VM.Snapshot permission
564
565 -- Proxmox Support Team <support@proxmox.com> Mon, 10 Sep 2012 09:23:32 +0200
566
1e15ebe7
DM		 567libpve-access-control (1.0-24) unstable; urgency=low
568
569 * untaint path (allow root to restore arbitrary paths)
570
571 -- Proxmox Support Team <support@proxmox.com> Wed, 06 Jun 2012 13:06:34 +0200
572
437be042
DM		 573libpve-access-control (1.0-23) unstable; urgency=low
574
575 * correctly compute GUI capabilities (consider pools)
576
577 -- Proxmox Support Team <support@proxmox.com> Wed, 30 May 2012 08:47:23 +0200
578
5bb4e06a
DM		 579libpve-access-control (1.0-22) unstable; urgency=low
580
581 * new plugin architecture for Auth modules, minor API change for Auth
582 domains (new 'delete' parameter)
583
584 -- Proxmox Support Team <support@proxmox.com> Wed, 16 May 2012 07:21:44 +0200
585
3030a176
DM		 586libpve-access-control (1.0-21) unstable; urgency=low
587
588 * do not allow user names including slash
589
590 -- Proxmox Support Team <support@proxmox.com> Tue, 24 Apr 2012 10:07:47 +0200
591
592libpve-access-control (1.0-20) unstable; urgency=low
593
594 * add ability to fork cli workers in background
595
596 -- Proxmox Support Team <support@proxmox.com> Wed, 18 Apr 2012 08:28:20 +0200
597
dd2cfee0
DM		 598libpve-access-control (1.0-19) unstable; urgency=low
599
600 * return set of privileges on login - can be used to adopt GUI
601
602 -- Proxmox Support Team <support@proxmox.com> Tue, 17 Apr 2012 10:25:10 +0200
603
1cf154b7
DM		 604libpve-access-control (1.0-18) unstable; urgency=low
605
533219a1
DM		 606 * fix bug #151: corretly parse username inside ticket
607
608 * fix bug #152: allow user to change his own password
1cf154b7
DM		 609
610 -- Proxmox Support Team <support@proxmox.com> Wed, 11 Apr 2012 09:40:15 +0200
611
2de14407
DM		 612libpve-access-control (1.0-17) unstable; urgency=low
613
614 * set propagate flag by default
615
616 -- Proxmox Support Team <support@proxmox.com> Thu, 01 Mar 2012 12:40:19 +0100
617
bdc61d7a
DM		 618libpve-access-control (1.0-16) unstable; urgency=low
619
620 * add 'pveum passwd' method
621
622 -- Proxmox Support Team <support@proxmox.com> Thu, 23 Feb 2012 12:05:25 +0100
623
cc7bdf33
DM		 624libpve-access-control (1.0-15) unstable; urgency=low
625
626 * Add VM.Config.CDROM privilege to PVEVMUser rule
627
628 -- Proxmox Support Team <support@proxmox.com> Wed, 22 Feb 2012 11:44:23 +0100
629
a69bbe2e
DM		 630libpve-access-control (1.0-14) unstable; urgency=low
631
632 * fix buf in userid-param permission check
633
634 -- Proxmox Support Team <support@proxmox.com> Wed, 22 Feb 2012 10:52:35 +0100
635
d9483d94
DM		 636libpve-access-control (1.0-13) unstable; urgency=low
637
638 * allow more characters in ldap base_dn attribute
639
640 -- Proxmox Support Team <support@proxmox.com> Wed, 22 Feb 2012 06:17:02 +0100
641
84619607
DM		 642libpve-access-control (1.0-12) unstable; urgency=low
643
644 * allow more characters with realm IDs
645
646 -- Proxmox Support Team <support@proxmox.com> Mon, 20 Feb 2012 08:50:33 +0100
647
09d27058
DM		 648libpve-access-control (1.0-11) unstable; urgency=low
649
650 * fix bug in exec_api2_perm_check
651
652 -- Proxmox Support Team <support@proxmox.com> Wed, 15 Feb 2012 07:06:30 +0100
653
7a4c849e
DM		 654libpve-access-control (1.0-10) unstable; urgency=low
655
656 * fix ACL group name parser
657
658 * changed 'pveum aclmod' command line arguments
659
660 -- Proxmox Support Team <support@proxmox.com> Tue, 14 Feb 2012 12:08:02 +0100
661
3eac4e35
DM		 662libpve-access-control (1.0-9) unstable; urgency=low
663
664 * fix bug in check_volume_access (fixes vzrestore)
665
666 -- Proxmox Support Team <support@proxmox.com> Mon, 13 Feb 2012 09:56:37 +0100
667
4384e19e
DM		 668libpve-access-control (1.0-8) unstable; urgency=low
669
670 * fix return value for empty ACL list.
671
672 -- Proxmox Support Team <support@proxmox.com> Fri, 10 Feb 2012 11:25:04 +0100
673
d8a56966
DM		 674libpve-access-control (1.0-7) unstable; urgency=low
675
676 * fix bug #85: allow root@pam to generate tickets for other users
677
678 -- Proxmox Support Team <support@proxmox.com> Tue, 17 Jan 2012 06:40:18 +0100
679
cb6f2f93
DM		 680libpve-access-control (1.0-6) unstable; urgency=low
681
682 * API change: allow to filter enabled/disabled users.
683
684 -- Proxmox Support Team <support@proxmox.com> Wed, 11 Jan 2012 12:30:37 +0100
685
272fe9ff
DM		 686libpve-access-control (1.0-5) unstable; urgency=low
687
688 * add a way to return file changes (diffs): set_result_changes()
689
690 -- Proxmox Support Team <support@proxmox.com> Tue, 20 Dec 2011 11:18:48 +0100
691
e42eedbc
DM		 692libpve-access-control (1.0-4) unstable; urgency=low
693
694 * new environment type for ha agents
695
696 -- Proxmox Support Team <support@proxmox.com> Tue, 13 Dec 2011 10:08:53 +0100
697
1fba27e0
DM		 698libpve-access-control (1.0-3) unstable; urgency=low
699
700 * add support for delayed parameter parsing - We need that to disable
701 file upload for normal API request (avoid DOS attacs)
702
703 -- Proxmox Support Team <support@proxmox.com> Fri, 02 Dec 2011 09:56:10 +0100
704
5bf71a96
DM		 705libpve-access-control (1.0-2) unstable; urgency=low
706
707 * fix bug in fork_worker
708
709 -- Proxmox Support Team <support@proxmox.com> Tue, 11 Oct 2011 08:37:05 +0200
710
2c3a6c0a
DM		 711libpve-access-control (1.0-1) unstable; urgency=low
712
713 * allow '-' in permission paths
714
715 * bump version to 1.0
716
717 -- Proxmox Support Team <support@proxmox.com> Mon, 27 Jun 2011 13:51:48 +0200
718
719libpve-access-control (0.1) unstable; urgency=low
720
721 * first dummy package - no functionality
722
723 -- Proxmox Support Team <support@proxmox.com> Thu, 09 Jul 2009 16:03:00 +0200
724
Access control framework