]> git.proxmox.com Git - pve-access-control.git/blame - debian/changelog
projects / pve-access-control.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
buildsys: clean more
[pve-access-control.git] / debian / changelog
CommitLineData
0902a936
FG		 1libpve-access-control (7.0-2) bullseye; urgency=medium
2
3 * fix #3402: add Pool.Audit privilege - custom roles containing
4 Pool.Allocate must be updated to include the new privilege.
5
6 -- Proxmox Support Team <support@proxmox.com> Tue, 1 Jun 2021 11:28:38 +0200
7
67febb69
TL		 8libpve-access-control (7.0-1) bullseye; urgency=medium
9
10 * re-build for Debian 11 Bullseye based releases
11
12 -- Proxmox Support Team <support@proxmox.com> Sun, 09 May 2021 18:18:23 +0200
13
2942ba41
TL		 14libpve-access-control (6.4-1) pve; urgency=medium
15
16 * fix #1670: change PAM service name to project specific name
17
18 * fix #1500: permission path syntax check for access control
19
20 * pveum: add resource pool CLI commands
21
22 -- Proxmox Support Team <support@proxmox.com> Sat, 24 Apr 2021 19:48:21 +0200
23
54d312f3
TL		 24libpve-access-control (6.1-3) pve; urgency=medium
25
26 * partially fix #2825: authkey: rotate if it was generated in the
27 future
28
29 * fix #2947: add an option to LDAP or AD realm to switch user lookup to case
30 insensitive
31
32 -- Proxmox Support Team <support@proxmox.com> Tue, 29 Sep 2020 08:54:13 +0200
33
6a9be12f
TL		 34libpve-access-control (6.1-2) pve; urgency=medium
35
36 * also check SDN permission path when computing coarse permissions heuristic
37 for UIs
38
39 * add SDN Permissions.Modify
40
41 * add VM.Config.Cloudinit
42
43 -- Proxmox Support Team <support@proxmox.com> Tue, 30 Jun 2020 13:06:56 +0200
44
e6624f50
TL		 45libpve-access-control (6.1-1) pve; urgency=medium
46
47 * pveum: add tfa delete subcommand for deleting user-TFA
48
49 * LDAP: don't complain about missing credentials on realm removal
50
51 * LDAP: skip anonymous bind when client certificate and key is configured
52
53 -- Proxmox Support Team <support@proxmox.com> Fri, 08 May 2020 17:47:41 +0200
54
8f4a522f
TL		 55libpve-access-control (6.0-7) pve; urgency=medium
56
57 * fix #2575: die when trying to edit built-in roles
58
59 * add realm sub commands to pveum CLI tool
60
61 * api: domains: add user group sync API enpoint
62
63 * allow one to sync and import users and groups from LDAP/AD based realms
64
65 * realm: add default-sync-options to config for more convenient sync configuration
66
67 * api: token create: return also full token id for convenience
68
69 -- Proxmox Support Team <support@proxmox.com> Sat, 25 Apr 2020 19:35:17 +0200
70
23059f35
TL		 71libpve-access-control (6.0-6) pve; urgency=medium
72
73 * API: add group members to group index
74
75 * implement API token support and management
76
77 * pveum: add 'pveum user token add/update/remove/list'
78
79 * pveum: add permissions sub-commands
80
81 * API: add 'permissions' API endpoint
82
83 * user.cfg: skip inexisting roles when parsing ACLs
84
85 -- Proxmox Support Team <support@proxmox.com> Wed, 29 Jan 2020 10:17:27 +0100
86
3dd692e9
TL		 87libpve-access-control (6.0-5) pve; urgency=medium
88
89 * pveum: add list command for users, groups, ACLs and roles
90
91 * add initial permissions for experimental SDN integration
92
93 -- Proxmox Support Team <support@proxmox.com> Tue, 26 Nov 2019 17:56:37 +0100
94
4ef92d0d
FG		 95libpve-access-control (6.0-4) pve; urgency=medium
96
97 * ticket: use clinfo to get cluster name
98
99 * ldaps: add sslversion configuration property to support TLS 1.1 to 1.3 as
100 SSL version
101
102 -- Proxmox Support Team <support@proxmox.com> Mon, 18 Nov 2019 11:55:11 +0100
103
6e5bbca4
TL		 104libpve-access-control (6.0-3) pve; urgency=medium
105
106 * fix #2433: increase possible TFA secret length
107
108 * parse user configuration: correctly parse group names in ACLs, for users
109 which begin their name with an @
110
111 * sort user.cfg entries alphabetically
112
113 -- Proxmox Support Team <support@proxmox.com> Tue, 29 Oct 2019 08:52:23 +0100
114
e073493c
TL		 115libpve-access-control (6.0-2) pve; urgency=medium
116
117 * improve CSRF verification compatibility with newer PVE
118
119 -- Proxmox Support Team <support@proxmox.com> Wed, 26 Jun 2019 20:24:35 +0200
120
a237dc2e
TL		 121libpve-access-control (6.0-1) pve; urgency=medium
122
123 * ticket: properly verify exactly 5 minute old tickets
124
125 * use hmac_sha256 instead of sha1 for CSRF token generation
126
127 -- Proxmox Support Team <support@proxmox.com> Mon, 24 Jun 2019 18:14:45 +0200
128
f1531f22
TL		 129libpve-access-control (6.0-0+1) pve; urgency=medium
130
131 * bump for Debian buster
132
133 * fix #2079: add periodic auth key rotation
134
135 -- Proxmox Support Team <support@proxmox.com> Tue, 21 May 2019 21:31:15 +0200
136
ef761f51
TL		 137libpve-access-control (5.1-10) unstable; urgency=medium
138
139 * add /access/user/{id}/tfa api call to get tfa types
140
141 -- Proxmox Support Team <support@proxmox.com> Wed, 15 May 2019 16:21:10 +0200
142
860ddcba
TL		 143libpve-access-control (5.1-9) unstable; urgency=medium
144
145 * store the tfa type in user.cfg allowing to get it without proxying the call
146 to a higher priviledged daemon.
147
148 * tfa: realm required TFA should lock out users without TFA configured, as it
149 was done before Proxmox VE 5.4
150
151 -- Proxmox Support Team <support@proxmox.com> Tue, 30 Apr 2019 14:01:00 +0000
152
9fbad012
TL		 153libpve-access-control (5.1-8) unstable; urgency=medium
154
155 * U2F: ensure we save correct public key on registration
156
157 -- Proxmox Support Team <support@proxmox.com> Tue, 09 Apr 2019 12:47:12 +0200
158
4473c96c
TL		 159libpve-access-control (5.1-7) unstable; urgency=medium
160
161 * verify_ticket: allow general non-challenge tfa to be run as two step
162 call
163
164 -- Proxmox Support Team <support@proxmox.com> Mon, 08 Apr 2019 16:56:14 +0200
165
a270d4e1
TL		 166libpve-access-control (5.1-6) unstable; urgency=medium
167
168 * more general 2FA configuration via priv/tfa.cfg
169
170 * add u2f api endpoints
171
172 * delete TFA entries when deleting a user
173
174 * allow users to change their TOTP settings
175
176 -- Proxmox Support Team <support@proxmox.com> Wed, 03 Apr 2019 13:40:26 +0200
177
374647e8
TL		 178libpve-access-control (5.1-5) unstable; urgency=medium
179
180 * fix vnc ticket verification without authkey lifetime
181
182 -- Proxmox Support Team <support@proxmox.com> Mon, 18 Mar 2019 10:43:17 +0100
183
7fb70c94
TL		 184libpve-access-control (5.1-4) unstable; urgency=medium
185
186 * fix #1891: Add zsh command completion for pveum
187
188 * ground work to fix #2079: add periodic auth key rotation. Not yet enabled
189 to avoid issues on upgrade, will be enabled with 6.0
190
191 -- Proxmox Support Team <support@proxmox.com> Mon, 18 Mar 2019 09:12:05 +0100
192
6e010cde
TL		 193libpve-access-control (5.1-3) unstable; urgency=medium
194
195 * api/ticket: move getting cluster name into an eval
196
197 -- Proxmox Support Team <support@proxmox.com> Thu, 29 Nov 2018 12:59:36 +0100
198
f5a9380a
TL		 199libpve-access-control (5.1-2) unstable; urgency=medium
200
201 * fix #1998: correct return properties for read_role
202
203 -- Proxmox Support Team <support@proxmox.com> Fri, 23 Nov 2018 14:22:40 +0100
204
b54b7474
TL		 205libpve-access-control (5.1-1) unstable; urgency=medium
206
207 * pveum: introduce sub-commands
208
209 * register userid with completion
210
211 * fix #233: return cluster name on successful login
212
213 -- Proxmox Support Team <support@proxmox.com> Thu, 15 Nov 2018 09:34:47 +0100
214
52192dd4
WB		 215libpve-access-control (5.0-8) unstable; urgency=medium
216
217 * fix #1612: ldap: make 2nd server work with bind domains again
218
219 * fix an error message where passing a bad pool id to an API function would
220 make it complain about a wrong group name instead
221
222 * fix the API-returned permission list so that the GUI knows to show the
223 'Permissions' tab for a storage to an administrator apart from root@pam
224
225 -- Proxmox Support Team <support@proxmox.com> Thu, 18 Jan 2018 13:34:50 +0100
226
3dadf8cf
FG		 227libpve-access-control (5.0-7) unstable; urgency=medium
228
229 * VM.Snapshot.Rollback privilege added
230
231 * api: check for special roles before locking the usercfg
232
233 * fix #1501: pveum: die when deleting special role
234
235 * API/ticket: rework coarse grained permission computation
236
237 -- Proxmox Support Team <support@proxmox.com> Thu, 5 Oct 2017 11:27:48 +0200
238
ec4141f4
WB		 239libpve-access-control (5.0-6) unstable; urgency=medium
240
241 * Close #1470: Add server ceritifcate verification for AD and LDAP via the
242 'verify' option. For compatibility reasons this defaults to off for now,
243 but that might change with future updates.
244
245 * AD, LDAP: Add ability to specify a CA path or file, and a client
246 certificate via the 'capath', 'cert' and 'certkey' options.
247
248 -- Proxmox Support Team <support@proxmox.com> Tue, 08 Aug 2017 11:56:38 +0200
249
63134bd4
DM		 250libpve-access-control (5.0-5) unstable; urgency=medium
251
252 * change from dpkg-deb to dpkg-buildpackage
253
254 -- Proxmox Support Team <support@proxmox.com> Thu, 22 Jun 2017 09:12:37 +0200
255
868fb1ea
DM		 256libpve-access-control (5.0-4) unstable; urgency=medium
257
258 * PVE/CLI/pveum.pm: call setup_default_cli_env()
259
260 * PVE/Auth/PVE.pm: encode uft8 password before calling crypt
261
262 * check_api2_permissions: avoid warning about uninitialized value
263
264 -- Proxmox Support Team <support@proxmox.com> Tue, 02 May 2017 11:58:15 +0200
265
63358f40
DM		 266libpve-access-control (5.0-3) unstable; urgency=medium
267
268 * use new PVE::OTP class from pve-common
269
270 * use new PVE::Tools::encrypt_pw from pve-common
271
272 -- Proxmox Support Team <support@proxmox.com> Thu, 30 Mar 2017 17:45:55 +0200
273
05fd50af
DM		 274libpve-access-control (5.0-2) unstable; urgency=medium
275
276 * encrypt_pw: avoid '+' for crypt salt
277
278 -- Proxmox Support Team <support@proxmox.com> Thu, 30 Mar 2017 08:54:10 +0200
279
0835385b
FG		 280libpve-access-control (5.0-1) unstable; urgency=medium
281
282 * rebuild for PVE 5.0
283
284 -- Proxmox Support Team <support@proxmox.com> Mon, 6 Mar 2017 13:42:01 +0100
285
730f8863
DM		 286libpve-access-control (4.0-23) unstable; urgency=medium
287
288 * use new PVE::Ticket class
289
290 -- Proxmox Support Team <support@proxmox.com> Thu, 19 Jan 2017 13:42:06 +0100
291
1f1c4593
DM		 292libpve-access-control (4.0-22) unstable; urgency=medium
293
294 * RPCEnvironment: removed check_volume_access() to avoid cyclic dependency
295 (moved to PVE::Storage)
296
297 * PVE::PCEnvironment: use new PVE::RESTEnvironment as base class
298
299 -- Proxmox Support Team <support@proxmox.com> Thu, 19 Jan 2017 09:12:04 +0100
300
f9105063
DM		 301libpve-access-control (4.0-21) unstable; urgency=medium
302
303 * setup_default_cli_env: expect $class as first parameter
304
305 -- Proxmox Support Team <support@proxmox.com> Thu, 12 Jan 2017 13:54:27 +0100
306
9595066e
DM		 307libpve-access-control (4.0-20) unstable; urgency=medium
308
309 * PVE/RPCEnvironment.pm: new function setup_default_cli_env
310
311 * PVE/API2/Domains.pm: fix property description
312
313 * use new repoman for upload target
314
315 -- Proxmox Support Team <support@proxmox.com> Wed, 11 Jan 2017 12:13:26 +0100
316
2af5a793
DM		 317libpve-access-control (4.0-19) unstable; urgency=medium
318
319 * Close #833: ldap: non-anonymous bind support
320
321 * don't import 'RFC' from MIME::Base32
322
323 -- Proxmox Support Team <support@proxmox.com> Fri, 05 Aug 2016 13:09:08 +0200
324
5d87bb77
WB		 325libpve-access-control (4.0-18) unstable; urgency=medium
326
327 * fix #1062: recognize base32 otp keys again
328
329 -- Proxmox Support Team <support@proxmox.com> Thu, 21 Jul 2016 08:43:18 +0200
330
28ddf48b
WB		 331libpve-access-control (4.0-17) unstable; urgency=medium
332
333 * drop oathtool and libdigest-hmac-perl dependencies
334
335 -- Proxmox Support Team <support@proxmox.com> Mon, 11 Jul 2016 12:03:22 +0200
336
15cebb28
DM		 337libpve-access-control (4.0-16) unstable; urgency=medium
338
339 * use pve-doc-generator to generate man pages
340
341 -- Proxmox Support Team <support@proxmox.com> Fri, 08 Apr 2016 07:06:05 +0200
342
678df887
DM		 343libpve-access-control (4.0-15) unstable; urgency=medium
344
345 * Fix uninitialized warning when shadow.cfg does not exist
346
347 -- Proxmox Support Team <support@proxmox.com> Fri, 01 Apr 2016 07:10:57 +0200
348
cca9761a
DM		 349libpve-access-control (4.0-14) unstable; urgency=medium
350
351 * Add is_worker to RPCEnvironment
352
353 -- Proxmox Support Team <support@proxmox.com> Tue, 15 Mar 2016 16:47:34 +0100
354
8643c99d
DM		 355libpve-access-control (4.0-13) unstable; urgency=medium
356
357 * fix #916: allow HTTPS to access custom yubico url
358
359 -- Proxmox Support Team <support@proxmox.com> Mon, 14 Mar 2016 11:39:23 +0100
360
ae2a6bf9
DM		 361libpve-access-control (4.0-12) unstable; urgency=medium
362
363 * Catch certificate errors instead of segfaulting
364
365 -- Proxmox Support Team <support@proxmox.com> Wed, 09 Mar 2016 14:41:01 +0100
366
4836db5f
DM		 367libpve-access-control (4.0-11) unstable; urgency=medium
368
369 * Fix #861: use safer sprintf formatting
370
371 -- Proxmox Support Team <support@proxmox.com> Fri, 08 Jan 2016 12:52:39 +0100
372
ccbe23dc
DM		 373libpve-access-control (4.0-10) unstable; urgency=medium
374
375 * Auth::LDAP, Auth::AD: ipv6 support
376
377 -- Proxmox Support Team <support@proxmox.com> Thu, 03 Dec 2015 12:09:32 +0100
378
90399ca4
DM		 379libpve-access-control (4.0-9) unstable; urgency=medium
380
381 * pveum: implement bash completion
382
383 -- Proxmox Support Team <support@proxmox.com> Thu, 01 Oct 2015 17:22:52 +0200
384
364ffc13
DM		 385libpve-access-control (4.0-8) unstable; urgency=medium
386
387 * remove_storage_access: cleanup of access permissions for removed storage
388
389 -- Proxmox Support Team <support@proxmox.com> Wed, 19 Aug 2015 15:39:15 +0200
390
7c26cb4a
DM		 391libpve-access-control (4.0-7) unstable; urgency=medium
392
393 * new helper to remove access permissions for removed VMs
394
395 -- Proxmox Support Team <support@proxmox.com> Fri, 14 Aug 2015 07:57:02 +0200
396
296afbd1
DM		 397libpve-access-control (4.0-6) unstable; urgency=medium
398
399 * improve parse_user_config, parse_shadow_config
400
401 -- Proxmox Support Team <support@proxmox.com> Mon, 27 Jul 2015 13:14:33 +0200
402
7d2df2ef
DM		 403libpve-access-control (4.0-5) unstable; urgency=medium
404
405 * pveum: check for $cmd being defined
406
407 -- Proxmox Support Team <support@proxmox.com> Wed, 10 Jun 2015 10:40:15 +0200
408
98a34e3f
DM		 409libpve-access-control (4.0-4) unstable; urgency=medium
410
411 * use activate-noawait triggers
412
413 -- Proxmox Support Team <support@proxmox.com> Mon, 01 Jun 2015 12:25:31 +0200
414
15462727
DM		 415libpve-access-control (4.0-3) unstable; urgency=medium
416
417 * IPv6 fixes
418
419 * non-root buildfix
420
421 -- Proxmox Support Team <support@proxmox.com> Wed, 27 May 2015 11:15:44 +0200
422
bbf4cc9a
DM		 423libpve-access-control (4.0-2) unstable; urgency=medium
424
425 * trigger pve-api-updates event
426
427 -- Proxmox Support Team <support@proxmox.com> Tue, 05 May 2015 15:06:38 +0200
428
dfbcf6d3
DM		 429libpve-access-control (4.0-1) unstable; urgency=medium
430
431 * bump version for Debian Jessie
432
433 -- Proxmox Support Team <support@proxmox.com> Thu, 26 Feb 2015 11:22:01 +0100
434
94971b3a
DM		 435libpve-access-control (3.0-16) unstable; urgency=low
436
437 * root@pam can now be disabled in GUI.
438
439 -- Proxmox Support Team <support@proxmox.com> Fri, 30 Jan 2015 06:20:22 +0100
440
7b17c7cb
DM		 441libpve-access-control (3.0-15) unstable; urgency=low
442
443 * oath: add 'step' and 'digits' option
444
445 -- Proxmox Support Team <support@proxmox.com> Wed, 23 Jul 2014 06:59:52 +0200
446
1abc2c0a
DM		 447libpve-access-control (3.0-14) unstable; urgency=low
448
449 * add oath two factor auth
450
451 * add oathkeygen binary to generate keys for oath
452
453 * add yubico two factor auth
454
455 * dedend on oathtool
456
457 * depend on libmime-base32-perl
30be0de9
DM		 458
459 * allow to write builtin auth domains config (comment/tfa/default)
1abc2c0a
DM		 460
461 -- Proxmox Support Team <support@proxmox.com> Thu, 17 Jul 2014 13:09:56 +0200
462
298450ab
DM		 463libpve-access-control (3.0-13) unstable; urgency=low
464
465 * use correct connection string for AD auth
466
467 -- Proxmox Support Team <support@proxmox.com> Thu, 22 May 2014 07:16:09 +0200
468
396034e4
DM		 469libpve-access-control (3.0-12) unstable; urgency=low
470
471 * add dummy API for GET /access/ticket (useful to generate login pages)
472
473 -- Proxmox Support Team <support@proxmox.com> Wed, 30 Apr 2014 14:47:56 +0200
474
26361123
DM		 475libpve-access-control (3.0-11) unstable; urgency=low
476
477 * Sets common hot keys for spice client
478
479 -- Proxmox Support Team <support@proxmox.com> Fri, 31 Jan 2014 10:24:28 +0100
480
3643383d
DM		 481libpve-access-control (3.0-10) unstable; urgency=low
482
483 * implement helper to generate SPICE remote-viewer configuration
484
485 * depend on libnet-ssleay-perl
486
487 -- Proxmox Support Team <support@proxmox.com> Tue, 10 Dec 2013 10:45:08 +0100
488
0baedcf7
DM		 489libpve-access-control (3.0-9) unstable; urgency=low
490
491 * prevent user enumeration attacks
e4f8fc2e
DM		 492
493 * allow dots in access paths
0baedcf7
DM		 494
495 -- Proxmox Support Team <support@proxmox.com> Mon, 18 Nov 2013 09:06:38 +0100
496
d4b63eae
DM		 497libpve-access-control (3.0-8) unstable; urgency=low
498
499 * spice: use lowercase hostname in ticktet signature
500
501 -- Proxmox Support Team <support@proxmox.com> Mon, 28 Oct 2013 08:11:57 +0100
502
49594944
DM		 503libpve-access-control (3.0-7) unstable; urgency=low
504
505 * check_volume_access : use parse_volname instead of path, and remove
506 path related code.
7c410d63
DM		 507
508 * use warnings instead of global -w flag.
49594944
DM		 509
510 -- Proxmox Support Team <support@proxmox.com> Tue, 01 Oct 2013 12:35:53 +0200
511
fe7de5d0
DM		 512libpve-access-control (3.0-6) unstable; urgency=low
513
514 * use shorter spiceproxy tickets
515
516 -- Proxmox Support Team <support@proxmox.com> Fri, 19 Jul 2013 12:39:09 +0200
517
4cdd9507
DM		 518libpve-access-control (3.0-5) unstable; urgency=low
519
520 * add code to generate tickets for SPICE
521
522 -- Proxmox Support Team <support@proxmox.com> Wed, 26 Jun 2013 13:08:32 +0200
523
677f9ab0
DM		 524libpve-access-control (3.0-4) unstable; urgency=low
525
526 * moved add_vm_to_pool/remove_vm_from_pool from qemu-server
527
528 -- Proxmox Support Team <support@proxmox.com> Tue, 14 May 2013 11:56:54 +0200
529
139a8ecf
DM		 530libpve-access-control (3.0-3) unstable; urgency=low
531
7b395f99 532 * Add new role PVETemplateUser (and VM.Clone priviledge)
139a8ecf
DM		 533
534 -- Proxmox Support Team <support@proxmox.com> Mon, 29 Apr 2013 11:42:15 +0200
535
b78ce7c2
DM		 536libpve-access-control (3.0-2) unstable; urgency=low
537
538 * remove CGI.pm related code (pveproxy does not need that)
539
540 -- Proxmox Support Team <support@proxmox.com> Mon, 15 Apr 2013 12:34:23 +0200
541
786820f9
DM		 542libpve-access-control (3.0-1) unstable; urgency=low
543
544 * bump version for wheezy release
545
546 -- Proxmox Support Team <support@proxmox.com> Fri, 15 Mar 2013 08:07:06 +0100
547
e5ae5487
DM		 548libpve-access-control (1.0-26) unstable; urgency=low
549
550 * check_volume_access: fix access permissions for backup files
551
552 -- Proxmox Support Team <support@proxmox.com> Thu, 28 Feb 2013 10:00:14 +0100
553
e3e6510c
DM		 554libpve-access-control (1.0-25) unstable; urgency=low
555
556 * add VM.Snapshot permission
557
558 -- Proxmox Support Team <support@proxmox.com> Mon, 10 Sep 2012 09:23:32 +0200
559
1e15ebe7
DM		 560libpve-access-control (1.0-24) unstable; urgency=low
561
562 * untaint path (allow root to restore arbitrary paths)
563
564 -- Proxmox Support Team <support@proxmox.com> Wed, 06 Jun 2012 13:06:34 +0200
565
437be042
DM		 566libpve-access-control (1.0-23) unstable; urgency=low
567
568 * correctly compute GUI capabilities (consider pools)
569
570 -- Proxmox Support Team <support@proxmox.com> Wed, 30 May 2012 08:47:23 +0200
571
5bb4e06a
DM		 572libpve-access-control (1.0-22) unstable; urgency=low
573
574 * new plugin architecture for Auth modules, minor API change for Auth
575 domains (new 'delete' parameter)
576
577 -- Proxmox Support Team <support@proxmox.com> Wed, 16 May 2012 07:21:44 +0200
578
3030a176
DM		 579libpve-access-control (1.0-21) unstable; urgency=low
580
581 * do not allow user names including slash
582
583 -- Proxmox Support Team <support@proxmox.com> Tue, 24 Apr 2012 10:07:47 +0200
584
585libpve-access-control (1.0-20) unstable; urgency=low
586
587 * add ability to fork cli workers in background
588
589 -- Proxmox Support Team <support@proxmox.com> Wed, 18 Apr 2012 08:28:20 +0200
590
dd2cfee0
DM		 591libpve-access-control (1.0-19) unstable; urgency=low
592
593 * return set of privileges on login - can be used to adopt GUI
594
595 -- Proxmox Support Team <support@proxmox.com> Tue, 17 Apr 2012 10:25:10 +0200
596
1cf154b7
DM		 597libpve-access-control (1.0-18) unstable; urgency=low
598
533219a1
DM		 599 * fix bug #151: corretly parse username inside ticket
600
601 * fix bug #152: allow user to change his own password
1cf154b7
DM		 602
603 -- Proxmox Support Team <support@proxmox.com> Wed, 11 Apr 2012 09:40:15 +0200
604
2de14407
DM		 605libpve-access-control (1.0-17) unstable; urgency=low
606
607 * set propagate flag by default
608
609 -- Proxmox Support Team <support@proxmox.com> Thu, 01 Mar 2012 12:40:19 +0100
610
bdc61d7a
DM		 611libpve-access-control (1.0-16) unstable; urgency=low
612
613 * add 'pveum passwd' method
614
615 -- Proxmox Support Team <support@proxmox.com> Thu, 23 Feb 2012 12:05:25 +0100
616
cc7bdf33
DM		 617libpve-access-control (1.0-15) unstable; urgency=low
618
619 * Add VM.Config.CDROM privilege to PVEVMUser rule
620
621 -- Proxmox Support Team <support@proxmox.com> Wed, 22 Feb 2012 11:44:23 +0100
622
a69bbe2e
DM		 623libpve-access-control (1.0-14) unstable; urgency=low
624
625 * fix buf in userid-param permission check
626
627 -- Proxmox Support Team <support@proxmox.com> Wed, 22 Feb 2012 10:52:35 +0100
628
d9483d94
DM		 629libpve-access-control (1.0-13) unstable; urgency=low
630
631 * allow more characters in ldap base_dn attribute
632
633 -- Proxmox Support Team <support@proxmox.com> Wed, 22 Feb 2012 06:17:02 +0100
634
84619607
DM		 635libpve-access-control (1.0-12) unstable; urgency=low
636
637 * allow more characters with realm IDs
638
639 -- Proxmox Support Team <support@proxmox.com> Mon, 20 Feb 2012 08:50:33 +0100
640
09d27058
DM		 641libpve-access-control (1.0-11) unstable; urgency=low
642
643 * fix bug in exec_api2_perm_check
644
645 -- Proxmox Support Team <support@proxmox.com> Wed, 15 Feb 2012 07:06:30 +0100
646
7a4c849e
DM		 647libpve-access-control (1.0-10) unstable; urgency=low
648
649 * fix ACL group name parser
650
651 * changed 'pveum aclmod' command line arguments
652
653 -- Proxmox Support Team <support@proxmox.com> Tue, 14 Feb 2012 12:08:02 +0100
654
3eac4e35
DM		 655libpve-access-control (1.0-9) unstable; urgency=low
656
657 * fix bug in check_volume_access (fixes vzrestore)
658
659 -- Proxmox Support Team <support@proxmox.com> Mon, 13 Feb 2012 09:56:37 +0100
660
4384e19e
DM		 661libpve-access-control (1.0-8) unstable; urgency=low
662
663 * fix return value for empty ACL list.
664
665 -- Proxmox Support Team <support@proxmox.com> Fri, 10 Feb 2012 11:25:04 +0100
666
d8a56966
DM		 667libpve-access-control (1.0-7) unstable; urgency=low
668
669 * fix bug #85: allow root@pam to generate tickets for other users
670
671 -- Proxmox Support Team <support@proxmox.com> Tue, 17 Jan 2012 06:40:18 +0100
672
cb6f2f93
DM		 673libpve-access-control (1.0-6) unstable; urgency=low
674
675 * API change: allow to filter enabled/disabled users.
676
677 -- Proxmox Support Team <support@proxmox.com> Wed, 11 Jan 2012 12:30:37 +0100
678
272fe9ff
DM		 679libpve-access-control (1.0-5) unstable; urgency=low
680
681 * add a way to return file changes (diffs): set_result_changes()
682
683 -- Proxmox Support Team <support@proxmox.com> Tue, 20 Dec 2011 11:18:48 +0100
684
e42eedbc
DM		 685libpve-access-control (1.0-4) unstable; urgency=low
686
687 * new environment type for ha agents
688
689 -- Proxmox Support Team <support@proxmox.com> Tue, 13 Dec 2011 10:08:53 +0100
690
1fba27e0
DM		 691libpve-access-control (1.0-3) unstable; urgency=low
692
693 * add support for delayed parameter parsing - We need that to disable
694 file upload for normal API request (avoid DOS attacs)
695
696 -- Proxmox Support Team <support@proxmox.com> Fri, 02 Dec 2011 09:56:10 +0100
697
5bf71a96
DM		 698libpve-access-control (1.0-2) unstable; urgency=low
699
700 * fix bug in fork_worker
701
702 -- Proxmox Support Team <support@proxmox.com> Tue, 11 Oct 2011 08:37:05 +0200
703
2c3a6c0a
DM		 704libpve-access-control (1.0-1) unstable; urgency=low
705
706 * allow '-' in permission paths
707
708 * bump version to 1.0
709
710 -- Proxmox Support Team <support@proxmox.com> Mon, 27 Jun 2011 13:51:48 +0200
711
712libpve-access-control (0.1) unstable; urgency=low
713
714 * first dummy package - no functionality
715
716 -- Proxmox Support Team <support@proxmox.com> Thu, 09 Jul 2009 16:03:00 +0200
717
Access control framework