]> git.proxmox.com Git - pve-access-control.git/blame - debian/changelog
projects / pve-access-control.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
api: delete user: better communicate partial deletion
[pve-access-control.git] / debian / changelog
CommitLineData
543d646c
TL		 1libpve-access-control (7.0-4) bullseye; urgency=medium
2
3 * realm: add OpenID configuration
4
5 * api: implement OpenID related endpoints
6
7 * implement opt-in OpenID autocreate user feature
8
9 * api: user: add 'realm-type' to user list response
10
11 -- Proxmox Support Team <support@proxmox.com> Fri, 02 Jul 2021 13:45:46 +0200
12
7a4c4fd8
TL		 13libpve-access-control (7.0-3) bullseye; urgency=medium
14
15 * api: acl: add missing `/access/realm/<realm>`, `/access/group/<group>` and
16 `/sdn/zones/<zone>` to allowed ACL paths
17
18 -- Proxmox Support Team <support@proxmox.com> Mon, 21 Jun 2021 10:31:19 +0200
19
0902a936
FG		 20libpve-access-control (7.0-2) bullseye; urgency=medium
21
22 * fix #3402: add Pool.Audit privilege - custom roles containing
23 Pool.Allocate must be updated to include the new privilege.
24
25 -- Proxmox Support Team <support@proxmox.com> Tue, 1 Jun 2021 11:28:38 +0200
26
67febb69
TL		 27libpve-access-control (7.0-1) bullseye; urgency=medium
28
29 * re-build for Debian 11 Bullseye based releases
30
31 -- Proxmox Support Team <support@proxmox.com> Sun, 09 May 2021 18:18:23 +0200
32
2942ba41
TL		 33libpve-access-control (6.4-1) pve; urgency=medium
34
35 * fix #1670: change PAM service name to project specific name
36
37 * fix #1500: permission path syntax check for access control
38
39 * pveum: add resource pool CLI commands
40
41 -- Proxmox Support Team <support@proxmox.com> Sat, 24 Apr 2021 19:48:21 +0200
42
54d312f3
TL		 43libpve-access-control (6.1-3) pve; urgency=medium
44
45 * partially fix #2825: authkey: rotate if it was generated in the
46 future
47
48 * fix #2947: add an option to LDAP or AD realm to switch user lookup to case
49 insensitive
50
51 -- Proxmox Support Team <support@proxmox.com> Tue, 29 Sep 2020 08:54:13 +0200
52
6a9be12f
TL		 53libpve-access-control (6.1-2) pve; urgency=medium
54
55 * also check SDN permission path when computing coarse permissions heuristic
56 for UIs
57
58 * add SDN Permissions.Modify
59
60 * add VM.Config.Cloudinit
61
62 -- Proxmox Support Team <support@proxmox.com> Tue, 30 Jun 2020 13:06:56 +0200
63
e6624f50
TL		 64libpve-access-control (6.1-1) pve; urgency=medium
65
66 * pveum: add tfa delete subcommand for deleting user-TFA
67
68 * LDAP: don't complain about missing credentials on realm removal
69
70 * LDAP: skip anonymous bind when client certificate and key is configured
71
72 -- Proxmox Support Team <support@proxmox.com> Fri, 08 May 2020 17:47:41 +0200
73
8f4a522f
TL		 74libpve-access-control (6.0-7) pve; urgency=medium
75
76 * fix #2575: die when trying to edit built-in roles
77
78 * add realm sub commands to pveum CLI tool
79
80 * api: domains: add user group sync API enpoint
81
82 * allow one to sync and import users and groups from LDAP/AD based realms
83
84 * realm: add default-sync-options to config for more convenient sync configuration
85
86 * api: token create: return also full token id for convenience
87
88 -- Proxmox Support Team <support@proxmox.com> Sat, 25 Apr 2020 19:35:17 +0200
89
23059f35
TL		 90libpve-access-control (6.0-6) pve; urgency=medium
91
92 * API: add group members to group index
93
94 * implement API token support and management
95
96 * pveum: add 'pveum user token add/update/remove/list'
97
98 * pveum: add permissions sub-commands
99
100 * API: add 'permissions' API endpoint
101
102 * user.cfg: skip inexisting roles when parsing ACLs
103
104 -- Proxmox Support Team <support@proxmox.com> Wed, 29 Jan 2020 10:17:27 +0100
105
3dd692e9
TL		 106libpve-access-control (6.0-5) pve; urgency=medium
107
108 * pveum: add list command for users, groups, ACLs and roles
109
110 * add initial permissions for experimental SDN integration
111
112 -- Proxmox Support Team <support@proxmox.com> Tue, 26 Nov 2019 17:56:37 +0100
113
4ef92d0d
FG		 114libpve-access-control (6.0-4) pve; urgency=medium
115
116 * ticket: use clinfo to get cluster name
117
118 * ldaps: add sslversion configuration property to support TLS 1.1 to 1.3 as
119 SSL version
120
121 -- Proxmox Support Team <support@proxmox.com> Mon, 18 Nov 2019 11:55:11 +0100
122
6e5bbca4
TL		 123libpve-access-control (6.0-3) pve; urgency=medium
124
125 * fix #2433: increase possible TFA secret length
126
127 * parse user configuration: correctly parse group names in ACLs, for users
128 which begin their name with an @
129
130 * sort user.cfg entries alphabetically
131
132 -- Proxmox Support Team <support@proxmox.com> Tue, 29 Oct 2019 08:52:23 +0100
133
e073493c
TL		 134libpve-access-control (6.0-2) pve; urgency=medium
135
136 * improve CSRF verification compatibility with newer PVE
137
138 -- Proxmox Support Team <support@proxmox.com> Wed, 26 Jun 2019 20:24:35 +0200
139
a237dc2e
TL		 140libpve-access-control (6.0-1) pve; urgency=medium
141
142 * ticket: properly verify exactly 5 minute old tickets
143
144 * use hmac_sha256 instead of sha1 for CSRF token generation
145
146 -- Proxmox Support Team <support@proxmox.com> Mon, 24 Jun 2019 18:14:45 +0200
147
f1531f22
TL		 148libpve-access-control (6.0-0+1) pve; urgency=medium
149
150 * bump for Debian buster
151
152 * fix #2079: add periodic auth key rotation
153
154 -- Proxmox Support Team <support@proxmox.com> Tue, 21 May 2019 21:31:15 +0200
155
ef761f51
TL		 156libpve-access-control (5.1-10) unstable; urgency=medium
157
158 * add /access/user/{id}/tfa api call to get tfa types
159
160 -- Proxmox Support Team <support@proxmox.com> Wed, 15 May 2019 16:21:10 +0200
161
860ddcba
TL		 162libpve-access-control (5.1-9) unstable; urgency=medium
163
164 * store the tfa type in user.cfg allowing to get it without proxying the call
165 to a higher priviledged daemon.
166
167 * tfa: realm required TFA should lock out users without TFA configured, as it
168 was done before Proxmox VE 5.4
169
170 -- Proxmox Support Team <support@proxmox.com> Tue, 30 Apr 2019 14:01:00 +0000
171
9fbad012
TL		 172libpve-access-control (5.1-8) unstable; urgency=medium
173
174 * U2F: ensure we save correct public key on registration
175
176 -- Proxmox Support Team <support@proxmox.com> Tue, 09 Apr 2019 12:47:12 +0200
177
4473c96c
TL		 178libpve-access-control (5.1-7) unstable; urgency=medium
179
180 * verify_ticket: allow general non-challenge tfa to be run as two step
181 call
182
183 -- Proxmox Support Team <support@proxmox.com> Mon, 08 Apr 2019 16:56:14 +0200
184
a270d4e1
TL		 185libpve-access-control (5.1-6) unstable; urgency=medium
186
187 * more general 2FA configuration via priv/tfa.cfg
188
189 * add u2f api endpoints
190
191 * delete TFA entries when deleting a user
192
193 * allow users to change their TOTP settings
194
195 -- Proxmox Support Team <support@proxmox.com> Wed, 03 Apr 2019 13:40:26 +0200
196
374647e8
TL		 197libpve-access-control (5.1-5) unstable; urgency=medium
198
199 * fix vnc ticket verification without authkey lifetime
200
201 -- Proxmox Support Team <support@proxmox.com> Mon, 18 Mar 2019 10:43:17 +0100
202
7fb70c94
TL		 203libpve-access-control (5.1-4) unstable; urgency=medium
204
205 * fix #1891: Add zsh command completion for pveum
206
207 * ground work to fix #2079: add periodic auth key rotation. Not yet enabled
208 to avoid issues on upgrade, will be enabled with 6.0
209
210 -- Proxmox Support Team <support@proxmox.com> Mon, 18 Mar 2019 09:12:05 +0100
211
6e010cde
TL		 212libpve-access-control (5.1-3) unstable; urgency=medium
213
214 * api/ticket: move getting cluster name into an eval
215
216 -- Proxmox Support Team <support@proxmox.com> Thu, 29 Nov 2018 12:59:36 +0100
217
f5a9380a
TL		 218libpve-access-control (5.1-2) unstable; urgency=medium
219
220 * fix #1998: correct return properties for read_role
221
222 -- Proxmox Support Team <support@proxmox.com> Fri, 23 Nov 2018 14:22:40 +0100
223
b54b7474
TL		 224libpve-access-control (5.1-1) unstable; urgency=medium
225
226 * pveum: introduce sub-commands
227
228 * register userid with completion
229
230 * fix #233: return cluster name on successful login
231
232 -- Proxmox Support Team <support@proxmox.com> Thu, 15 Nov 2018 09:34:47 +0100
233
52192dd4
WB		 234libpve-access-control (5.0-8) unstable; urgency=medium
235
236 * fix #1612: ldap: make 2nd server work with bind domains again
237
238 * fix an error message where passing a bad pool id to an API function would
239 make it complain about a wrong group name instead
240
241 * fix the API-returned permission list so that the GUI knows to show the
242 'Permissions' tab for a storage to an administrator apart from root@pam
243
244 -- Proxmox Support Team <support@proxmox.com> Thu, 18 Jan 2018 13:34:50 +0100
245
3dadf8cf
FG		 246libpve-access-control (5.0-7) unstable; urgency=medium
247
248 * VM.Snapshot.Rollback privilege added
249
250 * api: check for special roles before locking the usercfg
251
252 * fix #1501: pveum: die when deleting special role
253
254 * API/ticket: rework coarse grained permission computation
255
256 -- Proxmox Support Team <support@proxmox.com> Thu, 5 Oct 2017 11:27:48 +0200
257
ec4141f4
WB		 258libpve-access-control (5.0-6) unstable; urgency=medium
259
260 * Close #1470: Add server ceritifcate verification for AD and LDAP via the
261 'verify' option. For compatibility reasons this defaults to off for now,
262 but that might change with future updates.
263
264 * AD, LDAP: Add ability to specify a CA path or file, and a client
265 certificate via the 'capath', 'cert' and 'certkey' options.
266
267 -- Proxmox Support Team <support@proxmox.com> Tue, 08 Aug 2017 11:56:38 +0200
268
63134bd4
DM		 269libpve-access-control (5.0-5) unstable; urgency=medium
270
271 * change from dpkg-deb to dpkg-buildpackage
272
273 -- Proxmox Support Team <support@proxmox.com> Thu, 22 Jun 2017 09:12:37 +0200
274
868fb1ea
DM		 275libpve-access-control (5.0-4) unstable; urgency=medium
276
277 * PVE/CLI/pveum.pm: call setup_default_cli_env()
278
279 * PVE/Auth/PVE.pm: encode uft8 password before calling crypt
280
281 * check_api2_permissions: avoid warning about uninitialized value
282
283 -- Proxmox Support Team <support@proxmox.com> Tue, 02 May 2017 11:58:15 +0200
284
63358f40
DM		 285libpve-access-control (5.0-3) unstable; urgency=medium
286
287 * use new PVE::OTP class from pve-common
288
289 * use new PVE::Tools::encrypt_pw from pve-common
290
291 -- Proxmox Support Team <support@proxmox.com> Thu, 30 Mar 2017 17:45:55 +0200
292
05fd50af
DM		 293libpve-access-control (5.0-2) unstable; urgency=medium
294
295 * encrypt_pw: avoid '+' for crypt salt
296
297 -- Proxmox Support Team <support@proxmox.com> Thu, 30 Mar 2017 08:54:10 +0200
298
0835385b
FG		 299libpve-access-control (5.0-1) unstable; urgency=medium
300
301 * rebuild for PVE 5.0
302
303 -- Proxmox Support Team <support@proxmox.com> Mon, 6 Mar 2017 13:42:01 +0100
304
730f8863
DM		 305libpve-access-control (4.0-23) unstable; urgency=medium
306
307 * use new PVE::Ticket class
308
309 -- Proxmox Support Team <support@proxmox.com> Thu, 19 Jan 2017 13:42:06 +0100
310
1f1c4593
DM		 311libpve-access-control (4.0-22) unstable; urgency=medium
312
313 * RPCEnvironment: removed check_volume_access() to avoid cyclic dependency
314 (moved to PVE::Storage)
315
316 * PVE::PCEnvironment: use new PVE::RESTEnvironment as base class
317
318 -- Proxmox Support Team <support@proxmox.com> Thu, 19 Jan 2017 09:12:04 +0100
319
f9105063
DM		 320libpve-access-control (4.0-21) unstable; urgency=medium
321
322 * setup_default_cli_env: expect $class as first parameter
323
324 -- Proxmox Support Team <support@proxmox.com> Thu, 12 Jan 2017 13:54:27 +0100
325
9595066e
DM		 326libpve-access-control (4.0-20) unstable; urgency=medium
327
328 * PVE/RPCEnvironment.pm: new function setup_default_cli_env
329
330 * PVE/API2/Domains.pm: fix property description
331
332 * use new repoman for upload target
333
334 -- Proxmox Support Team <support@proxmox.com> Wed, 11 Jan 2017 12:13:26 +0100
335
2af5a793
DM		 336libpve-access-control (4.0-19) unstable; urgency=medium
337
338 * Close #833: ldap: non-anonymous bind support
339
340 * don't import 'RFC' from MIME::Base32
341
342 -- Proxmox Support Team <support@proxmox.com> Fri, 05 Aug 2016 13:09:08 +0200
343
5d87bb77
WB		 344libpve-access-control (4.0-18) unstable; urgency=medium
345
346 * fix #1062: recognize base32 otp keys again
347
348 -- Proxmox Support Team <support@proxmox.com> Thu, 21 Jul 2016 08:43:18 +0200
349
28ddf48b
WB		 350libpve-access-control (4.0-17) unstable; urgency=medium
351
352 * drop oathtool and libdigest-hmac-perl dependencies
353
354 -- Proxmox Support Team <support@proxmox.com> Mon, 11 Jul 2016 12:03:22 +0200
355
15cebb28
DM		 356libpve-access-control (4.0-16) unstable; urgency=medium
357
358 * use pve-doc-generator to generate man pages
359
360 -- Proxmox Support Team <support@proxmox.com> Fri, 08 Apr 2016 07:06:05 +0200
361
678df887
DM		 362libpve-access-control (4.0-15) unstable; urgency=medium
363
364 * Fix uninitialized warning when shadow.cfg does not exist
365
366 -- Proxmox Support Team <support@proxmox.com> Fri, 01 Apr 2016 07:10:57 +0200
367
cca9761a
DM		 368libpve-access-control (4.0-14) unstable; urgency=medium
369
370 * Add is_worker to RPCEnvironment
371
372 -- Proxmox Support Team <support@proxmox.com> Tue, 15 Mar 2016 16:47:34 +0100
373
8643c99d
DM		 374libpve-access-control (4.0-13) unstable; urgency=medium
375
376 * fix #916: allow HTTPS to access custom yubico url
377
378 -- Proxmox Support Team <support@proxmox.com> Mon, 14 Mar 2016 11:39:23 +0100
379
ae2a6bf9
DM		 380libpve-access-control (4.0-12) unstable; urgency=medium
381
382 * Catch certificate errors instead of segfaulting
383
384 -- Proxmox Support Team <support@proxmox.com> Wed, 09 Mar 2016 14:41:01 +0100
385
4836db5f
DM		 386libpve-access-control (4.0-11) unstable; urgency=medium
387
388 * Fix #861: use safer sprintf formatting
389
390 -- Proxmox Support Team <support@proxmox.com> Fri, 08 Jan 2016 12:52:39 +0100
391
ccbe23dc
DM		 392libpve-access-control (4.0-10) unstable; urgency=medium
393
394 * Auth::LDAP, Auth::AD: ipv6 support
395
396 -- Proxmox Support Team <support@proxmox.com> Thu, 03 Dec 2015 12:09:32 +0100
397
90399ca4
DM		 398libpve-access-control (4.0-9) unstable; urgency=medium
399
400 * pveum: implement bash completion
401
402 -- Proxmox Support Team <support@proxmox.com> Thu, 01 Oct 2015 17:22:52 +0200
403
364ffc13
DM		 404libpve-access-control (4.0-8) unstable; urgency=medium
405
406 * remove_storage_access: cleanup of access permissions for removed storage
407
408 -- Proxmox Support Team <support@proxmox.com> Wed, 19 Aug 2015 15:39:15 +0200
409
7c26cb4a
DM		 410libpve-access-control (4.0-7) unstable; urgency=medium
411
412 * new helper to remove access permissions for removed VMs
413
414 -- Proxmox Support Team <support@proxmox.com> Fri, 14 Aug 2015 07:57:02 +0200
415
296afbd1
DM		 416libpve-access-control (4.0-6) unstable; urgency=medium
417
418 * improve parse_user_config, parse_shadow_config
419
420 -- Proxmox Support Team <support@proxmox.com> Mon, 27 Jul 2015 13:14:33 +0200
421
7d2df2ef
DM		 422libpve-access-control (4.0-5) unstable; urgency=medium
423
424 * pveum: check for $cmd being defined
425
426 -- Proxmox Support Team <support@proxmox.com> Wed, 10 Jun 2015 10:40:15 +0200
427
98a34e3f
DM		 428libpve-access-control (4.0-4) unstable; urgency=medium
429
430 * use activate-noawait triggers
431
432 -- Proxmox Support Team <support@proxmox.com> Mon, 01 Jun 2015 12:25:31 +0200
433
15462727
DM		 434libpve-access-control (4.0-3) unstable; urgency=medium
435
436 * IPv6 fixes
437
438 * non-root buildfix
439
440 -- Proxmox Support Team <support@proxmox.com> Wed, 27 May 2015 11:15:44 +0200
441
bbf4cc9a
DM		 442libpve-access-control (4.0-2) unstable; urgency=medium
443
444 * trigger pve-api-updates event
445
446 -- Proxmox Support Team <support@proxmox.com> Tue, 05 May 2015 15:06:38 +0200
447
dfbcf6d3
DM		 448libpve-access-control (4.0-1) unstable; urgency=medium
449
450 * bump version for Debian Jessie
451
452 -- Proxmox Support Team <support@proxmox.com> Thu, 26 Feb 2015 11:22:01 +0100
453
94971b3a
DM		 454libpve-access-control (3.0-16) unstable; urgency=low
455
456 * root@pam can now be disabled in GUI.
457
458 -- Proxmox Support Team <support@proxmox.com> Fri, 30 Jan 2015 06:20:22 +0100
459
7b17c7cb
DM		 460libpve-access-control (3.0-15) unstable; urgency=low
461
462 * oath: add 'step' and 'digits' option
463
464 -- Proxmox Support Team <support@proxmox.com> Wed, 23 Jul 2014 06:59:52 +0200
465
1abc2c0a
DM		 466libpve-access-control (3.0-14) unstable; urgency=low
467
468 * add oath two factor auth
469
470 * add oathkeygen binary to generate keys for oath
471
472 * add yubico two factor auth
473
474 * dedend on oathtool
475
476 * depend on libmime-base32-perl
30be0de9
DM		 477
478 * allow to write builtin auth domains config (comment/tfa/default)
1abc2c0a
DM		 479
480 -- Proxmox Support Team <support@proxmox.com> Thu, 17 Jul 2014 13:09:56 +0200
481
298450ab
DM		 482libpve-access-control (3.0-13) unstable; urgency=low
483
484 * use correct connection string for AD auth
485
486 -- Proxmox Support Team <support@proxmox.com> Thu, 22 May 2014 07:16:09 +0200
487
396034e4
DM		 488libpve-access-control (3.0-12) unstable; urgency=low
489
490 * add dummy API for GET /access/ticket (useful to generate login pages)
491
492 -- Proxmox Support Team <support@proxmox.com> Wed, 30 Apr 2014 14:47:56 +0200
493
26361123
DM		 494libpve-access-control (3.0-11) unstable; urgency=low
495
496 * Sets common hot keys for spice client
497
498 -- Proxmox Support Team <support@proxmox.com> Fri, 31 Jan 2014 10:24:28 +0100
499
3643383d
DM		 500libpve-access-control (3.0-10) unstable; urgency=low
501
502 * implement helper to generate SPICE remote-viewer configuration
503
504 * depend on libnet-ssleay-perl
505
506 -- Proxmox Support Team <support@proxmox.com> Tue, 10 Dec 2013 10:45:08 +0100
507
0baedcf7
DM		 508libpve-access-control (3.0-9) unstable; urgency=low
509
510 * prevent user enumeration attacks
e4f8fc2e
DM		 511
512 * allow dots in access paths
0baedcf7
DM		 513
514 -- Proxmox Support Team <support@proxmox.com> Mon, 18 Nov 2013 09:06:38 +0100
515
d4b63eae
DM		 516libpve-access-control (3.0-8) unstable; urgency=low
517
518 * spice: use lowercase hostname in ticktet signature
519
520 -- Proxmox Support Team <support@proxmox.com> Mon, 28 Oct 2013 08:11:57 +0100
521
49594944
DM		 522libpve-access-control (3.0-7) unstable; urgency=low
523
524 * check_volume_access : use parse_volname instead of path, and remove
525 path related code.
7c410d63
DM		 526
527 * use warnings instead of global -w flag.
49594944
DM		 528
529 -- Proxmox Support Team <support@proxmox.com> Tue, 01 Oct 2013 12:35:53 +0200
530
fe7de5d0
DM		 531libpve-access-control (3.0-6) unstable; urgency=low
532
533 * use shorter spiceproxy tickets
534
535 -- Proxmox Support Team <support@proxmox.com> Fri, 19 Jul 2013 12:39:09 +0200
536
4cdd9507
DM		 537libpve-access-control (3.0-5) unstable; urgency=low
538
539 * add code to generate tickets for SPICE
540
541 -- Proxmox Support Team <support@proxmox.com> Wed, 26 Jun 2013 13:08:32 +0200
542
677f9ab0
DM		 543libpve-access-control (3.0-4) unstable; urgency=low
544
545 * moved add_vm_to_pool/remove_vm_from_pool from qemu-server
546
547 -- Proxmox Support Team <support@proxmox.com> Tue, 14 May 2013 11:56:54 +0200
548
139a8ecf
DM		 549libpve-access-control (3.0-3) unstable; urgency=low
550
7b395f99 551 * Add new role PVETemplateUser (and VM.Clone priviledge)
139a8ecf
DM		 552
553 -- Proxmox Support Team <support@proxmox.com> Mon, 29 Apr 2013 11:42:15 +0200
554
b78ce7c2
DM		 555libpve-access-control (3.0-2) unstable; urgency=low
556
557 * remove CGI.pm related code (pveproxy does not need that)
558
559 -- Proxmox Support Team <support@proxmox.com> Mon, 15 Apr 2013 12:34:23 +0200
560
786820f9
DM		 561libpve-access-control (3.0-1) unstable; urgency=low
562
563 * bump version for wheezy release
564
565 -- Proxmox Support Team <support@proxmox.com> Fri, 15 Mar 2013 08:07:06 +0100
566
e5ae5487
DM		 567libpve-access-control (1.0-26) unstable; urgency=low
568
569 * check_volume_access: fix access permissions for backup files
570
571 -- Proxmox Support Team <support@proxmox.com> Thu, 28 Feb 2013 10:00:14 +0100
572
e3e6510c
DM		 573libpve-access-control (1.0-25) unstable; urgency=low
574
575 * add VM.Snapshot permission
576
577 -- Proxmox Support Team <support@proxmox.com> Mon, 10 Sep 2012 09:23:32 +0200
578
1e15ebe7
DM		 579libpve-access-control (1.0-24) unstable; urgency=low
580
581 * untaint path (allow root to restore arbitrary paths)
582
583 -- Proxmox Support Team <support@proxmox.com> Wed, 06 Jun 2012 13:06:34 +0200
584
437be042
DM		 585libpve-access-control (1.0-23) unstable; urgency=low
586
587 * correctly compute GUI capabilities (consider pools)
588
589 -- Proxmox Support Team <support@proxmox.com> Wed, 30 May 2012 08:47:23 +0200
590
5bb4e06a
DM		 591libpve-access-control (1.0-22) unstable; urgency=low
592
593 * new plugin architecture for Auth modules, minor API change for Auth
594 domains (new 'delete' parameter)
595
596 -- Proxmox Support Team <support@proxmox.com> Wed, 16 May 2012 07:21:44 +0200
597
3030a176
DM		 598libpve-access-control (1.0-21) unstable; urgency=low
599
600 * do not allow user names including slash
601
602 -- Proxmox Support Team <support@proxmox.com> Tue, 24 Apr 2012 10:07:47 +0200
603
604libpve-access-control (1.0-20) unstable; urgency=low
605
606 * add ability to fork cli workers in background
607
608 -- Proxmox Support Team <support@proxmox.com> Wed, 18 Apr 2012 08:28:20 +0200
609
dd2cfee0
DM		 610libpve-access-control (1.0-19) unstable; urgency=low
611
612 * return set of privileges on login - can be used to adopt GUI
613
614 -- Proxmox Support Team <support@proxmox.com> Tue, 17 Apr 2012 10:25:10 +0200
615
1cf154b7
DM		 616libpve-access-control (1.0-18) unstable; urgency=low
617
533219a1
DM		 618 * fix bug #151: corretly parse username inside ticket
619
620 * fix bug #152: allow user to change his own password
1cf154b7
DM		 621
622 -- Proxmox Support Team <support@proxmox.com> Wed, 11 Apr 2012 09:40:15 +0200
623
2de14407
DM		 624libpve-access-control (1.0-17) unstable; urgency=low
625
626 * set propagate flag by default
627
628 -- Proxmox Support Team <support@proxmox.com> Thu, 01 Mar 2012 12:40:19 +0100
629
bdc61d7a
DM		 630libpve-access-control (1.0-16) unstable; urgency=low
631
632 * add 'pveum passwd' method
633
634 -- Proxmox Support Team <support@proxmox.com> Thu, 23 Feb 2012 12:05:25 +0100
635
cc7bdf33
DM		 636libpve-access-control (1.0-15) unstable; urgency=low
637
638 * Add VM.Config.CDROM privilege to PVEVMUser rule
639
640 -- Proxmox Support Team <support@proxmox.com> Wed, 22 Feb 2012 11:44:23 +0100
641
a69bbe2e
DM		 642libpve-access-control (1.0-14) unstable; urgency=low
643
644 * fix buf in userid-param permission check
645
646 -- Proxmox Support Team <support@proxmox.com> Wed, 22 Feb 2012 10:52:35 +0100
647
d9483d94
DM		 648libpve-access-control (1.0-13) unstable; urgency=low
649
650 * allow more characters in ldap base_dn attribute
651
652 -- Proxmox Support Team <support@proxmox.com> Wed, 22 Feb 2012 06:17:02 +0100
653
84619607
DM		 654libpve-access-control (1.0-12) unstable; urgency=low
655
656 * allow more characters with realm IDs
657
658 -- Proxmox Support Team <support@proxmox.com> Mon, 20 Feb 2012 08:50:33 +0100
659
09d27058
DM		 660libpve-access-control (1.0-11) unstable; urgency=low
661
662 * fix bug in exec_api2_perm_check
663
664 -- Proxmox Support Team <support@proxmox.com> Wed, 15 Feb 2012 07:06:30 +0100
665
7a4c849e
DM		 666libpve-access-control (1.0-10) unstable; urgency=low
667
668 * fix ACL group name parser
669
670 * changed 'pveum aclmod' command line arguments
671
672 -- Proxmox Support Team <support@proxmox.com> Tue, 14 Feb 2012 12:08:02 +0100
673
3eac4e35
DM		 674libpve-access-control (1.0-9) unstable; urgency=low
675
676 * fix bug in check_volume_access (fixes vzrestore)
677
678 -- Proxmox Support Team <support@proxmox.com> Mon, 13 Feb 2012 09:56:37 +0100
679
4384e19e
DM		 680libpve-access-control (1.0-8) unstable; urgency=low
681
682 * fix return value for empty ACL list.
683
684 -- Proxmox Support Team <support@proxmox.com> Fri, 10 Feb 2012 11:25:04 +0100
685
d8a56966
DM		 686libpve-access-control (1.0-7) unstable; urgency=low
687
688 * fix bug #85: allow root@pam to generate tickets for other users
689
690 -- Proxmox Support Team <support@proxmox.com> Tue, 17 Jan 2012 06:40:18 +0100
691
cb6f2f93
DM		 692libpve-access-control (1.0-6) unstable; urgency=low
693
694 * API change: allow to filter enabled/disabled users.
695
696 -- Proxmox Support Team <support@proxmox.com> Wed, 11 Jan 2012 12:30:37 +0100
697
272fe9ff
DM		 698libpve-access-control (1.0-5) unstable; urgency=low
699
700 * add a way to return file changes (diffs): set_result_changes()
701
702 -- Proxmox Support Team <support@proxmox.com> Tue, 20 Dec 2011 11:18:48 +0100
703
e42eedbc
DM		 704libpve-access-control (1.0-4) unstable; urgency=low
705
706 * new environment type for ha agents
707
708 -- Proxmox Support Team <support@proxmox.com> Tue, 13 Dec 2011 10:08:53 +0100
709
1fba27e0
DM		 710libpve-access-control (1.0-3) unstable; urgency=low
711
712 * add support for delayed parameter parsing - We need that to disable
713 file upload for normal API request (avoid DOS attacs)
714
715 -- Proxmox Support Team <support@proxmox.com> Fri, 02 Dec 2011 09:56:10 +0100
716
5bf71a96
DM		 717libpve-access-control (1.0-2) unstable; urgency=low
718
719 * fix bug in fork_worker
720
721 -- Proxmox Support Team <support@proxmox.com> Tue, 11 Oct 2011 08:37:05 +0200
722
2c3a6c0a
DM		 723libpve-access-control (1.0-1) unstable; urgency=low
724
725 * allow '-' in permission paths
726
727 * bump version to 1.0
728
729 -- Proxmox Support Team <support@proxmox.com> Mon, 27 Jun 2011 13:51:48 +0200
730
731libpve-access-control (0.1) unstable; urgency=low
732
733 * first dummy package - no functionality
734
735 -- Proxmox Support Team <support@proxmox.com> Thu, 09 Jul 2009 16:03:00 +0200
736
Access control framework