]>
Commit | Line | Data |
---|---|---|
1 | libpve-access-control (6.4-1) pve; urgency=medium | |
2 | ||
3 | * fix #1670: change PAM service name to project specific name | |
4 | ||
5 | * fix #1500: permission path syntax check for access control | |
6 | ||
7 | * pveum: add resource pool CLI commands | |
8 | ||
9 | -- Proxmox Support Team <support@proxmox.com> Sat, 24 Apr 2021 19:48:21 +0200 | |
10 | ||
11 | libpve-access-control (6.1-3) pve; urgency=medium | |
12 | ||
13 | * partially fix #2825: authkey: rotate if it was generated in the | |
14 | future | |
15 | ||
16 | * fix #2947: add an option to LDAP or AD realm to switch user lookup to case | |
17 | insensitive | |
18 | ||
19 | -- Proxmox Support Team <support@proxmox.com> Tue, 29 Sep 2020 08:54:13 +0200 | |
20 | ||
21 | libpve-access-control (6.1-2) pve; urgency=medium | |
22 | ||
23 | * also check SDN permission path when computing coarse permissions heuristic | |
24 | for UIs | |
25 | ||
26 | * add SDN Permissions.Modify | |
27 | ||
28 | * add VM.Config.Cloudinit | |
29 | ||
30 | -- Proxmox Support Team <support@proxmox.com> Tue, 30 Jun 2020 13:06:56 +0200 | |
31 | ||
32 | libpve-access-control (6.1-1) pve; urgency=medium | |
33 | ||
34 | * pveum: add tfa delete subcommand for deleting user-TFA | |
35 | ||
36 | * LDAP: don't complain about missing credentials on realm removal | |
37 | ||
38 | * LDAP: skip anonymous bind when client certificate and key is configured | |
39 | ||
40 | -- Proxmox Support Team <support@proxmox.com> Fri, 08 May 2020 17:47:41 +0200 | |
41 | ||
42 | libpve-access-control (6.0-7) pve; urgency=medium | |
43 | ||
44 | * fix #2575: die when trying to edit built-in roles | |
45 | ||
46 | * add realm sub commands to pveum CLI tool | |
47 | ||
48 | * api: domains: add user group sync API enpoint | |
49 | ||
50 | * allow one to sync and import users and groups from LDAP/AD based realms | |
51 | ||
52 | * realm: add default-sync-options to config for more convenient sync configuration | |
53 | ||
54 | * api: token create: return also full token id for convenience | |
55 | ||
56 | -- Proxmox Support Team <support@proxmox.com> Sat, 25 Apr 2020 19:35:17 +0200 | |
57 | ||
58 | libpve-access-control (6.0-6) pve; urgency=medium | |
59 | ||
60 | * API: add group members to group index | |
61 | ||
62 | * implement API token support and management | |
63 | ||
64 | * pveum: add 'pveum user token add/update/remove/list' | |
65 | ||
66 | * pveum: add permissions sub-commands | |
67 | ||
68 | * API: add 'permissions' API endpoint | |
69 | ||
70 | * user.cfg: skip inexisting roles when parsing ACLs | |
71 | ||
72 | -- Proxmox Support Team <support@proxmox.com> Wed, 29 Jan 2020 10:17:27 +0100 | |
73 | ||
74 | libpve-access-control (6.0-5) pve; urgency=medium | |
75 | ||
76 | * pveum: add list command for users, groups, ACLs and roles | |
77 | ||
78 | * add initial permissions for experimental SDN integration | |
79 | ||
80 | -- Proxmox Support Team <support@proxmox.com> Tue, 26 Nov 2019 17:56:37 +0100 | |
81 | ||
82 | libpve-access-control (6.0-4) pve; urgency=medium | |
83 | ||
84 | * ticket: use clinfo to get cluster name | |
85 | ||
86 | * ldaps: add sslversion configuration property to support TLS 1.1 to 1.3 as | |
87 | SSL version | |
88 | ||
89 | -- Proxmox Support Team <support@proxmox.com> Mon, 18 Nov 2019 11:55:11 +0100 | |
90 | ||
91 | libpve-access-control (6.0-3) pve; urgency=medium | |
92 | ||
93 | * fix #2433: increase possible TFA secret length | |
94 | ||
95 | * parse user configuration: correctly parse group names in ACLs, for users | |
96 | which begin their name with an @ | |
97 | ||
98 | * sort user.cfg entries alphabetically | |
99 | ||
100 | -- Proxmox Support Team <support@proxmox.com> Tue, 29 Oct 2019 08:52:23 +0100 | |
101 | ||
102 | libpve-access-control (6.0-2) pve; urgency=medium | |
103 | ||
104 | * improve CSRF verification compatibility with newer PVE | |
105 | ||
106 | -- Proxmox Support Team <support@proxmox.com> Wed, 26 Jun 2019 20:24:35 +0200 | |
107 | ||
108 | libpve-access-control (6.0-1) pve; urgency=medium | |
109 | ||
110 | * ticket: properly verify exactly 5 minute old tickets | |
111 | ||
112 | * use hmac_sha256 instead of sha1 for CSRF token generation | |
113 | ||
114 | -- Proxmox Support Team <support@proxmox.com> Mon, 24 Jun 2019 18:14:45 +0200 | |
115 | ||
116 | libpve-access-control (6.0-0+1) pve; urgency=medium | |
117 | ||
118 | * bump for Debian buster | |
119 | ||
120 | * fix #2079: add periodic auth key rotation | |
121 | ||
122 | -- Proxmox Support Team <support@proxmox.com> Tue, 21 May 2019 21:31:15 +0200 | |
123 | ||
124 | libpve-access-control (5.1-10) unstable; urgency=medium | |
125 | ||
126 | * add /access/user/{id}/tfa api call to get tfa types | |
127 | ||
128 | -- Proxmox Support Team <support@proxmox.com> Wed, 15 May 2019 16:21:10 +0200 | |
129 | ||
130 | libpve-access-control (5.1-9) unstable; urgency=medium | |
131 | ||
132 | * store the tfa type in user.cfg allowing to get it without proxying the call | |
133 | to a higher priviledged daemon. | |
134 | ||
135 | * tfa: realm required TFA should lock out users without TFA configured, as it | |
136 | was done before Proxmox VE 5.4 | |
137 | ||
138 | -- Proxmox Support Team <support@proxmox.com> Tue, 30 Apr 2019 14:01:00 +0000 | |
139 | ||
140 | libpve-access-control (5.1-8) unstable; urgency=medium | |
141 | ||
142 | * U2F: ensure we save correct public key on registration | |
143 | ||
144 | -- Proxmox Support Team <support@proxmox.com> Tue, 09 Apr 2019 12:47:12 +0200 | |
145 | ||
146 | libpve-access-control (5.1-7) unstable; urgency=medium | |
147 | ||
148 | * verify_ticket: allow general non-challenge tfa to be run as two step | |
149 | call | |
150 | ||
151 | -- Proxmox Support Team <support@proxmox.com> Mon, 08 Apr 2019 16:56:14 +0200 | |
152 | ||
153 | libpve-access-control (5.1-6) unstable; urgency=medium | |
154 | ||
155 | * more general 2FA configuration via priv/tfa.cfg | |
156 | ||
157 | * add u2f api endpoints | |
158 | ||
159 | * delete TFA entries when deleting a user | |
160 | ||
161 | * allow users to change their TOTP settings | |
162 | ||
163 | -- Proxmox Support Team <support@proxmox.com> Wed, 03 Apr 2019 13:40:26 +0200 | |
164 | ||
165 | libpve-access-control (5.1-5) unstable; urgency=medium | |
166 | ||
167 | * fix vnc ticket verification without authkey lifetime | |
168 | ||
169 | -- Proxmox Support Team <support@proxmox.com> Mon, 18 Mar 2019 10:43:17 +0100 | |
170 | ||
171 | libpve-access-control (5.1-4) unstable; urgency=medium | |
172 | ||
173 | * fix #1891: Add zsh command completion for pveum | |
174 | ||
175 | * ground work to fix #2079: add periodic auth key rotation. Not yet enabled | |
176 | to avoid issues on upgrade, will be enabled with 6.0 | |
177 | ||
178 | -- Proxmox Support Team <support@proxmox.com> Mon, 18 Mar 2019 09:12:05 +0100 | |
179 | ||
180 | libpve-access-control (5.1-3) unstable; urgency=medium | |
181 | ||
182 | * api/ticket: move getting cluster name into an eval | |
183 | ||
184 | -- Proxmox Support Team <support@proxmox.com> Thu, 29 Nov 2018 12:59:36 +0100 | |
185 | ||
186 | libpve-access-control (5.1-2) unstable; urgency=medium | |
187 | ||
188 | * fix #1998: correct return properties for read_role | |
189 | ||
190 | -- Proxmox Support Team <support@proxmox.com> Fri, 23 Nov 2018 14:22:40 +0100 | |
191 | ||
192 | libpve-access-control (5.1-1) unstable; urgency=medium | |
193 | ||
194 | * pveum: introduce sub-commands | |
195 | ||
196 | * register userid with completion | |
197 | ||
198 | * fix #233: return cluster name on successful login | |
199 | ||
200 | -- Proxmox Support Team <support@proxmox.com> Thu, 15 Nov 2018 09:34:47 +0100 | |
201 | ||
202 | libpve-access-control (5.0-8) unstable; urgency=medium | |
203 | ||
204 | * fix #1612: ldap: make 2nd server work with bind domains again | |
205 | ||
206 | * fix an error message where passing a bad pool id to an API function would | |
207 | make it complain about a wrong group name instead | |
208 | ||
209 | * fix the API-returned permission list so that the GUI knows to show the | |
210 | 'Permissions' tab for a storage to an administrator apart from root@pam | |
211 | ||
212 | -- Proxmox Support Team <support@proxmox.com> Thu, 18 Jan 2018 13:34:50 +0100 | |
213 | ||
214 | libpve-access-control (5.0-7) unstable; urgency=medium | |
215 | ||
216 | * VM.Snapshot.Rollback privilege added | |
217 | ||
218 | * api: check for special roles before locking the usercfg | |
219 | ||
220 | * fix #1501: pveum: die when deleting special role | |
221 | ||
222 | * API/ticket: rework coarse grained permission computation | |
223 | ||
224 | -- Proxmox Support Team <support@proxmox.com> Thu, 5 Oct 2017 11:27:48 +0200 | |
225 | ||
226 | libpve-access-control (5.0-6) unstable; urgency=medium | |
227 | ||
228 | * Close #1470: Add server ceritifcate verification for AD and LDAP via the | |
229 | 'verify' option. For compatibility reasons this defaults to off for now, | |
230 | but that might change with future updates. | |
231 | ||
232 | * AD, LDAP: Add ability to specify a CA path or file, and a client | |
233 | certificate via the 'capath', 'cert' and 'certkey' options. | |
234 | ||
235 | -- Proxmox Support Team <support@proxmox.com> Tue, 08 Aug 2017 11:56:38 +0200 | |
236 | ||
237 | libpve-access-control (5.0-5) unstable; urgency=medium | |
238 | ||
239 | * change from dpkg-deb to dpkg-buildpackage | |
240 | ||
241 | -- Proxmox Support Team <support@proxmox.com> Thu, 22 Jun 2017 09:12:37 +0200 | |
242 | ||
243 | libpve-access-control (5.0-4) unstable; urgency=medium | |
244 | ||
245 | * PVE/CLI/pveum.pm: call setup_default_cli_env() | |
246 | ||
247 | * PVE/Auth/PVE.pm: encode uft8 password before calling crypt | |
248 | ||
249 | * check_api2_permissions: avoid warning about uninitialized value | |
250 | ||
251 | -- Proxmox Support Team <support@proxmox.com> Tue, 02 May 2017 11:58:15 +0200 | |
252 | ||
253 | libpve-access-control (5.0-3) unstable; urgency=medium | |
254 | ||
255 | * use new PVE::OTP class from pve-common | |
256 | ||
257 | * use new PVE::Tools::encrypt_pw from pve-common | |
258 | ||
259 | -- Proxmox Support Team <support@proxmox.com> Thu, 30 Mar 2017 17:45:55 +0200 | |
260 | ||
261 | libpve-access-control (5.0-2) unstable; urgency=medium | |
262 | ||
263 | * encrypt_pw: avoid '+' for crypt salt | |
264 | ||
265 | -- Proxmox Support Team <support@proxmox.com> Thu, 30 Mar 2017 08:54:10 +0200 | |
266 | ||
267 | libpve-access-control (5.0-1) unstable; urgency=medium | |
268 | ||
269 | * rebuild for PVE 5.0 | |
270 | ||
271 | -- Proxmox Support Team <support@proxmox.com> Mon, 6 Mar 2017 13:42:01 +0100 | |
272 | ||
273 | libpve-access-control (4.0-23) unstable; urgency=medium | |
274 | ||
275 | * use new PVE::Ticket class | |
276 | ||
277 | -- Proxmox Support Team <support@proxmox.com> Thu, 19 Jan 2017 13:42:06 +0100 | |
278 | ||
279 | libpve-access-control (4.0-22) unstable; urgency=medium | |
280 | ||
281 | * RPCEnvironment: removed check_volume_access() to avoid cyclic dependency | |
282 | (moved to PVE::Storage) | |
283 | ||
284 | * PVE::PCEnvironment: use new PVE::RESTEnvironment as base class | |
285 | ||
286 | -- Proxmox Support Team <support@proxmox.com> Thu, 19 Jan 2017 09:12:04 +0100 | |
287 | ||
288 | libpve-access-control (4.0-21) unstable; urgency=medium | |
289 | ||
290 | * setup_default_cli_env: expect $class as first parameter | |
291 | ||
292 | -- Proxmox Support Team <support@proxmox.com> Thu, 12 Jan 2017 13:54:27 +0100 | |
293 | ||
294 | libpve-access-control (4.0-20) unstable; urgency=medium | |
295 | ||
296 | * PVE/RPCEnvironment.pm: new function setup_default_cli_env | |
297 | ||
298 | * PVE/API2/Domains.pm: fix property description | |
299 | ||
300 | * use new repoman for upload target | |
301 | ||
302 | -- Proxmox Support Team <support@proxmox.com> Wed, 11 Jan 2017 12:13:26 +0100 | |
303 | ||
304 | libpve-access-control (4.0-19) unstable; urgency=medium | |
305 | ||
306 | * Close #833: ldap: non-anonymous bind support | |
307 | ||
308 | * don't import 'RFC' from MIME::Base32 | |
309 | ||
310 | -- Proxmox Support Team <support@proxmox.com> Fri, 05 Aug 2016 13:09:08 +0200 | |
311 | ||
312 | libpve-access-control (4.0-18) unstable; urgency=medium | |
313 | ||
314 | * fix #1062: recognize base32 otp keys again | |
315 | ||
316 | -- Proxmox Support Team <support@proxmox.com> Thu, 21 Jul 2016 08:43:18 +0200 | |
317 | ||
318 | libpve-access-control (4.0-17) unstable; urgency=medium | |
319 | ||
320 | * drop oathtool and libdigest-hmac-perl dependencies | |
321 | ||
322 | -- Proxmox Support Team <support@proxmox.com> Mon, 11 Jul 2016 12:03:22 +0200 | |
323 | ||
324 | libpve-access-control (4.0-16) unstable; urgency=medium | |
325 | ||
326 | * use pve-doc-generator to generate man pages | |
327 | ||
328 | -- Proxmox Support Team <support@proxmox.com> Fri, 08 Apr 2016 07:06:05 +0200 | |
329 | ||
330 | libpve-access-control (4.0-15) unstable; urgency=medium | |
331 | ||
332 | * Fix uninitialized warning when shadow.cfg does not exist | |
333 | ||
334 | -- Proxmox Support Team <support@proxmox.com> Fri, 01 Apr 2016 07:10:57 +0200 | |
335 | ||
336 | libpve-access-control (4.0-14) unstable; urgency=medium | |
337 | ||
338 | * Add is_worker to RPCEnvironment | |
339 | ||
340 | -- Proxmox Support Team <support@proxmox.com> Tue, 15 Mar 2016 16:47:34 +0100 | |
341 | ||
342 | libpve-access-control (4.0-13) unstable; urgency=medium | |
343 | ||
344 | * fix #916: allow HTTPS to access custom yubico url | |
345 | ||
346 | -- Proxmox Support Team <support@proxmox.com> Mon, 14 Mar 2016 11:39:23 +0100 | |
347 | ||
348 | libpve-access-control (4.0-12) unstable; urgency=medium | |
349 | ||
350 | * Catch certificate errors instead of segfaulting | |
351 | ||
352 | -- Proxmox Support Team <support@proxmox.com> Wed, 09 Mar 2016 14:41:01 +0100 | |
353 | ||
354 | libpve-access-control (4.0-11) unstable; urgency=medium | |
355 | ||
356 | * Fix #861: use safer sprintf formatting | |
357 | ||
358 | -- Proxmox Support Team <support@proxmox.com> Fri, 08 Jan 2016 12:52:39 +0100 | |
359 | ||
360 | libpve-access-control (4.0-10) unstable; urgency=medium | |
361 | ||
362 | * Auth::LDAP, Auth::AD: ipv6 support | |
363 | ||
364 | -- Proxmox Support Team <support@proxmox.com> Thu, 03 Dec 2015 12:09:32 +0100 | |
365 | ||
366 | libpve-access-control (4.0-9) unstable; urgency=medium | |
367 | ||
368 | * pveum: implement bash completion | |
369 | ||
370 | -- Proxmox Support Team <support@proxmox.com> Thu, 01 Oct 2015 17:22:52 +0200 | |
371 | ||
372 | libpve-access-control (4.0-8) unstable; urgency=medium | |
373 | ||
374 | * remove_storage_access: cleanup of access permissions for removed storage | |
375 | ||
376 | -- Proxmox Support Team <support@proxmox.com> Wed, 19 Aug 2015 15:39:15 +0200 | |
377 | ||
378 | libpve-access-control (4.0-7) unstable; urgency=medium | |
379 | ||
380 | * new helper to remove access permissions for removed VMs | |
381 | ||
382 | -- Proxmox Support Team <support@proxmox.com> Fri, 14 Aug 2015 07:57:02 +0200 | |
383 | ||
384 | libpve-access-control (4.0-6) unstable; urgency=medium | |
385 | ||
386 | * improve parse_user_config, parse_shadow_config | |
387 | ||
388 | -- Proxmox Support Team <support@proxmox.com> Mon, 27 Jul 2015 13:14:33 +0200 | |
389 | ||
390 | libpve-access-control (4.0-5) unstable; urgency=medium | |
391 | ||
392 | * pveum: check for $cmd being defined | |
393 | ||
394 | -- Proxmox Support Team <support@proxmox.com> Wed, 10 Jun 2015 10:40:15 +0200 | |
395 | ||
396 | libpve-access-control (4.0-4) unstable; urgency=medium | |
397 | ||
398 | * use activate-noawait triggers | |
399 | ||
400 | -- Proxmox Support Team <support@proxmox.com> Mon, 01 Jun 2015 12:25:31 +0200 | |
401 | ||
402 | libpve-access-control (4.0-3) unstable; urgency=medium | |
403 | ||
404 | * IPv6 fixes | |
405 | ||
406 | * non-root buildfix | |
407 | ||
408 | -- Proxmox Support Team <support@proxmox.com> Wed, 27 May 2015 11:15:44 +0200 | |
409 | ||
410 | libpve-access-control (4.0-2) unstable; urgency=medium | |
411 | ||
412 | * trigger pve-api-updates event | |
413 | ||
414 | -- Proxmox Support Team <support@proxmox.com> Tue, 05 May 2015 15:06:38 +0200 | |
415 | ||
416 | libpve-access-control (4.0-1) unstable; urgency=medium | |
417 | ||
418 | * bump version for Debian Jessie | |
419 | ||
420 | -- Proxmox Support Team <support@proxmox.com> Thu, 26 Feb 2015 11:22:01 +0100 | |
421 | ||
422 | libpve-access-control (3.0-16) unstable; urgency=low | |
423 | ||
424 | * root@pam can now be disabled in GUI. | |
425 | ||
426 | -- Proxmox Support Team <support@proxmox.com> Fri, 30 Jan 2015 06:20:22 +0100 | |
427 | ||
428 | libpve-access-control (3.0-15) unstable; urgency=low | |
429 | ||
430 | * oath: add 'step' and 'digits' option | |
431 | ||
432 | -- Proxmox Support Team <support@proxmox.com> Wed, 23 Jul 2014 06:59:52 +0200 | |
433 | ||
434 | libpve-access-control (3.0-14) unstable; urgency=low | |
435 | ||
436 | * add oath two factor auth | |
437 | ||
438 | * add oathkeygen binary to generate keys for oath | |
439 | ||
440 | * add yubico two factor auth | |
441 | ||
442 | * dedend on oathtool | |
443 | ||
444 | * depend on libmime-base32-perl | |
445 | ||
446 | * allow to write builtin auth domains config (comment/tfa/default) | |
447 | ||
448 | -- Proxmox Support Team <support@proxmox.com> Thu, 17 Jul 2014 13:09:56 +0200 | |
449 | ||
450 | libpve-access-control (3.0-13) unstable; urgency=low | |
451 | ||
452 | * use correct connection string for AD auth | |
453 | ||
454 | -- Proxmox Support Team <support@proxmox.com> Thu, 22 May 2014 07:16:09 +0200 | |
455 | ||
456 | libpve-access-control (3.0-12) unstable; urgency=low | |
457 | ||
458 | * add dummy API for GET /access/ticket (useful to generate login pages) | |
459 | ||
460 | -- Proxmox Support Team <support@proxmox.com> Wed, 30 Apr 2014 14:47:56 +0200 | |
461 | ||
462 | libpve-access-control (3.0-11) unstable; urgency=low | |
463 | ||
464 | * Sets common hot keys for spice client | |
465 | ||
466 | -- Proxmox Support Team <support@proxmox.com> Fri, 31 Jan 2014 10:24:28 +0100 | |
467 | ||
468 | libpve-access-control (3.0-10) unstable; urgency=low | |
469 | ||
470 | * implement helper to generate SPICE remote-viewer configuration | |
471 | ||
472 | * depend on libnet-ssleay-perl | |
473 | ||
474 | -- Proxmox Support Team <support@proxmox.com> Tue, 10 Dec 2013 10:45:08 +0100 | |
475 | ||
476 | libpve-access-control (3.0-9) unstable; urgency=low | |
477 | ||
478 | * prevent user enumeration attacks | |
479 | ||
480 | * allow dots in access paths | |
481 | ||
482 | -- Proxmox Support Team <support@proxmox.com> Mon, 18 Nov 2013 09:06:38 +0100 | |
483 | ||
484 | libpve-access-control (3.0-8) unstable; urgency=low | |
485 | ||
486 | * spice: use lowercase hostname in ticktet signature | |
487 | ||
488 | -- Proxmox Support Team <support@proxmox.com> Mon, 28 Oct 2013 08:11:57 +0100 | |
489 | ||
490 | libpve-access-control (3.0-7) unstable; urgency=low | |
491 | ||
492 | * check_volume_access : use parse_volname instead of path, and remove | |
493 | path related code. | |
494 | ||
495 | * use warnings instead of global -w flag. | |
496 | ||
497 | -- Proxmox Support Team <support@proxmox.com> Tue, 01 Oct 2013 12:35:53 +0200 | |
498 | ||
499 | libpve-access-control (3.0-6) unstable; urgency=low | |
500 | ||
501 | * use shorter spiceproxy tickets | |
502 | ||
503 | -- Proxmox Support Team <support@proxmox.com> Fri, 19 Jul 2013 12:39:09 +0200 | |
504 | ||
505 | libpve-access-control (3.0-5) unstable; urgency=low | |
506 | ||
507 | * add code to generate tickets for SPICE | |
508 | ||
509 | -- Proxmox Support Team <support@proxmox.com> Wed, 26 Jun 2013 13:08:32 +0200 | |
510 | ||
511 | libpve-access-control (3.0-4) unstable; urgency=low | |
512 | ||
513 | * moved add_vm_to_pool/remove_vm_from_pool from qemu-server | |
514 | ||
515 | -- Proxmox Support Team <support@proxmox.com> Tue, 14 May 2013 11:56:54 +0200 | |
516 | ||
517 | libpve-access-control (3.0-3) unstable; urgency=low | |
518 | ||
519 | * Add new role PVETemplateUser (and VM.Clone priviledge) | |
520 | ||
521 | -- Proxmox Support Team <support@proxmox.com> Mon, 29 Apr 2013 11:42:15 +0200 | |
522 | ||
523 | libpve-access-control (3.0-2) unstable; urgency=low | |
524 | ||
525 | * remove CGI.pm related code (pveproxy does not need that) | |
526 | ||
527 | -- Proxmox Support Team <support@proxmox.com> Mon, 15 Apr 2013 12:34:23 +0200 | |
528 | ||
529 | libpve-access-control (3.0-1) unstable; urgency=low | |
530 | ||
531 | * bump version for wheezy release | |
532 | ||
533 | -- Proxmox Support Team <support@proxmox.com> Fri, 15 Mar 2013 08:07:06 +0100 | |
534 | ||
535 | libpve-access-control (1.0-26) unstable; urgency=low | |
536 | ||
537 | * check_volume_access: fix access permissions for backup files | |
538 | ||
539 | -- Proxmox Support Team <support@proxmox.com> Thu, 28 Feb 2013 10:00:14 +0100 | |
540 | ||
541 | libpve-access-control (1.0-25) unstable; urgency=low | |
542 | ||
543 | * add VM.Snapshot permission | |
544 | ||
545 | -- Proxmox Support Team <support@proxmox.com> Mon, 10 Sep 2012 09:23:32 +0200 | |
546 | ||
547 | libpve-access-control (1.0-24) unstable; urgency=low | |
548 | ||
549 | * untaint path (allow root to restore arbitrary paths) | |
550 | ||
551 | -- Proxmox Support Team <support@proxmox.com> Wed, 06 Jun 2012 13:06:34 +0200 | |
552 | ||
553 | libpve-access-control (1.0-23) unstable; urgency=low | |
554 | ||
555 | * correctly compute GUI capabilities (consider pools) | |
556 | ||
557 | -- Proxmox Support Team <support@proxmox.com> Wed, 30 May 2012 08:47:23 +0200 | |
558 | ||
559 | libpve-access-control (1.0-22) unstable; urgency=low | |
560 | ||
561 | * new plugin architecture for Auth modules, minor API change for Auth | |
562 | domains (new 'delete' parameter) | |
563 | ||
564 | -- Proxmox Support Team <support@proxmox.com> Wed, 16 May 2012 07:21:44 +0200 | |
565 | ||
566 | libpve-access-control (1.0-21) unstable; urgency=low | |
567 | ||
568 | * do not allow user names including slash | |
569 | ||
570 | -- Proxmox Support Team <support@proxmox.com> Tue, 24 Apr 2012 10:07:47 +0200 | |
571 | ||
572 | libpve-access-control (1.0-20) unstable; urgency=low | |
573 | ||
574 | * add ability to fork cli workers in background | |
575 | ||
576 | -- Proxmox Support Team <support@proxmox.com> Wed, 18 Apr 2012 08:28:20 +0200 | |
577 | ||
578 | libpve-access-control (1.0-19) unstable; urgency=low | |
579 | ||
580 | * return set of privileges on login - can be used to adopt GUI | |
581 | ||
582 | -- Proxmox Support Team <support@proxmox.com> Tue, 17 Apr 2012 10:25:10 +0200 | |
583 | ||
584 | libpve-access-control (1.0-18) unstable; urgency=low | |
585 | ||
586 | * fix bug #151: corretly parse username inside ticket | |
587 | ||
588 | * fix bug #152: allow user to change his own password | |
589 | ||
590 | -- Proxmox Support Team <support@proxmox.com> Wed, 11 Apr 2012 09:40:15 +0200 | |
591 | ||
592 | libpve-access-control (1.0-17) unstable; urgency=low | |
593 | ||
594 | * set propagate flag by default | |
595 | ||
596 | -- Proxmox Support Team <support@proxmox.com> Thu, 01 Mar 2012 12:40:19 +0100 | |
597 | ||
598 | libpve-access-control (1.0-16) unstable; urgency=low | |
599 | ||
600 | * add 'pveum passwd' method | |
601 | ||
602 | -- Proxmox Support Team <support@proxmox.com> Thu, 23 Feb 2012 12:05:25 +0100 | |
603 | ||
604 | libpve-access-control (1.0-15) unstable; urgency=low | |
605 | ||
606 | * Add VM.Config.CDROM privilege to PVEVMUser rule | |
607 | ||
608 | -- Proxmox Support Team <support@proxmox.com> Wed, 22 Feb 2012 11:44:23 +0100 | |
609 | ||
610 | libpve-access-control (1.0-14) unstable; urgency=low | |
611 | ||
612 | * fix buf in userid-param permission check | |
613 | ||
614 | -- Proxmox Support Team <support@proxmox.com> Wed, 22 Feb 2012 10:52:35 +0100 | |
615 | ||
616 | libpve-access-control (1.0-13) unstable; urgency=low | |
617 | ||
618 | * allow more characters in ldap base_dn attribute | |
619 | ||
620 | -- Proxmox Support Team <support@proxmox.com> Wed, 22 Feb 2012 06:17:02 +0100 | |
621 | ||
622 | libpve-access-control (1.0-12) unstable; urgency=low | |
623 | ||
624 | * allow more characters with realm IDs | |
625 | ||
626 | -- Proxmox Support Team <support@proxmox.com> Mon, 20 Feb 2012 08:50:33 +0100 | |
627 | ||
628 | libpve-access-control (1.0-11) unstable; urgency=low | |
629 | ||
630 | * fix bug in exec_api2_perm_check | |
631 | ||
632 | -- Proxmox Support Team <support@proxmox.com> Wed, 15 Feb 2012 07:06:30 +0100 | |
633 | ||
634 | libpve-access-control (1.0-10) unstable; urgency=low | |
635 | ||
636 | * fix ACL group name parser | |
637 | ||
638 | * changed 'pveum aclmod' command line arguments | |
639 | ||
640 | -- Proxmox Support Team <support@proxmox.com> Tue, 14 Feb 2012 12:08:02 +0100 | |
641 | ||
642 | libpve-access-control (1.0-9) unstable; urgency=low | |
643 | ||
644 | * fix bug in check_volume_access (fixes vzrestore) | |
645 | ||
646 | -- Proxmox Support Team <support@proxmox.com> Mon, 13 Feb 2012 09:56:37 +0100 | |
647 | ||
648 | libpve-access-control (1.0-8) unstable; urgency=low | |
649 | ||
650 | * fix return value for empty ACL list. | |
651 | ||
652 | -- Proxmox Support Team <support@proxmox.com> Fri, 10 Feb 2012 11:25:04 +0100 | |
653 | ||
654 | libpve-access-control (1.0-7) unstable; urgency=low | |
655 | ||
656 | * fix bug #85: allow root@pam to generate tickets for other users | |
657 | ||
658 | -- Proxmox Support Team <support@proxmox.com> Tue, 17 Jan 2012 06:40:18 +0100 | |
659 | ||
660 | libpve-access-control (1.0-6) unstable; urgency=low | |
661 | ||
662 | * API change: allow to filter enabled/disabled users. | |
663 | ||
664 | -- Proxmox Support Team <support@proxmox.com> Wed, 11 Jan 2012 12:30:37 +0100 | |
665 | ||
666 | libpve-access-control (1.0-5) unstable; urgency=low | |
667 | ||
668 | * add a way to return file changes (diffs): set_result_changes() | |
669 | ||
670 | -- Proxmox Support Team <support@proxmox.com> Tue, 20 Dec 2011 11:18:48 +0100 | |
671 | ||
672 | libpve-access-control (1.0-4) unstable; urgency=low | |
673 | ||
674 | * new environment type for ha agents | |
675 | ||
676 | -- Proxmox Support Team <support@proxmox.com> Tue, 13 Dec 2011 10:08:53 +0100 | |
677 | ||
678 | libpve-access-control (1.0-3) unstable; urgency=low | |
679 | ||
680 | * add support for delayed parameter parsing - We need that to disable | |
681 | file upload for normal API request (avoid DOS attacs) | |
682 | ||
683 | -- Proxmox Support Team <support@proxmox.com> Fri, 02 Dec 2011 09:56:10 +0100 | |
684 | ||
685 | libpve-access-control (1.0-2) unstable; urgency=low | |
686 | ||
687 | * fix bug in fork_worker | |
688 | ||
689 | -- Proxmox Support Team <support@proxmox.com> Tue, 11 Oct 2011 08:37:05 +0200 | |
690 | ||
691 | libpve-access-control (1.0-1) unstable; urgency=low | |
692 | ||
693 | * allow '-' in permission paths | |
694 | ||
695 | * bump version to 1.0 | |
696 | ||
697 | -- Proxmox Support Team <support@proxmox.com> Mon, 27 Jun 2011 13:51:48 +0200 | |
698 | ||
699 | libpve-access-control (0.1) unstable; urgency=low | |
700 | ||
701 | * first dummy package - no functionality | |
702 | ||
703 | -- Proxmox Support Team <support@proxmox.com> Thu, 09 Jul 2009 16:03:00 +0200 | |
704 |