1 libpve-access-control (7.1-8) bullseye; urgency=medium
3 * fix #3668: realm-sync: replace 'full' & 'purge' with 'remove-
6 -- Proxmox Support Team <support@proxmox.com> Thu, 28 Apr 2022 17:02:46 +0200
8 libpve-access-control (7.1-7) bullseye; urgency=medium
10 * userid-group check: distinguish create and update
12 * api: get user: declare token schema
14 -- Proxmox Support Team <support@proxmox.com> Mon, 21 Mar 2022 16:15:23 +0100
16 libpve-access-control (7.1-6) bullseye; urgency=medium
18 * fix #3768: warn on bad u2f or webauthn settings
20 * tfa: when modifying others, verify the current user's password
22 * tfa list: account for admin permissions
24 * fix realm sync permissions
26 * fix token permission display bug
28 * include SDN permissions in permission tree
30 -- Proxmox Support Team <support@proxmox.com> Fri, 21 Jan 2022 14:20:42 +0100
32 libpve-access-control (7.1-5) bullseye; urgency=medium
34 * openid: fix username-claim fallback
36 -- Proxmox Support Team <support@proxmox.com> Thu, 25 Nov 2021 07:57:38 +0100
38 libpve-access-control (7.1-4) bullseye; urgency=medium
40 * set current origin in the webauthn config if no fixed origin was
41 configured, to support webauthn via subdomains
43 -- Proxmox Support Team <support@proxmox.com> Mon, 22 Nov 2021 14:04:06 +0100
45 libpve-access-control (7.1-3) bullseye; urgency=medium
47 * openid: allow arbitrary username-claims
49 * openid: support configuring the prompt, scopes and ACR values
51 -- Proxmox Support Team <support@proxmox.com> Fri, 19 Nov 2021 08:11:52 +0100
53 libpve-access-control (7.1-2) bullseye; urgency=medium
55 * catch incompatible tfa entries with a nice error
57 -- Proxmox Support Team <support@proxmox.com> Wed, 17 Nov 2021 13:44:45 +0100
59 libpve-access-control (7.1-1) bullseye; urgency=medium
61 * tfa: map HTTP 404 error in get_tfa_entry correctly
63 -- Proxmox Support Team <support@proxmox.com> Mon, 15 Nov 2021 15:33:22 +0100
65 libpve-access-control (7.0-7) bullseye; urgency=medium
67 * fix #3513: pass configured proxy to OpenID
69 * use rust based parser for TFA config
71 * use PBS-like auth api call flow,
73 * merge old user.cfg keys to tfa config when adding entries
75 * implement version checks for new tfa config writer to ensure all
76 cluster nodes are ready to avoid login issues
78 * tickets: add tunnel ticket
80 -- Proxmox Support Team <support@proxmox.com> Thu, 11 Nov 2021 18:17:49 +0100
82 libpve-access-control (7.0-6) bullseye; urgency=medium
84 * fix regression in user deletion when realm does not enforce TFA
86 -- Proxmox Support Team <support@proxmox.com> Thu, 21 Oct 2021 12:28:52 +0200
88 libpve-access-control (7.0-5) bullseye; urgency=medium
90 * acl: check path: add /sdn/vnets/* path
92 * fix #2302: allow deletion of users when realm enforces TFA
94 * api: delete user: disable user first to avoid surprise on error during the
95 various cleanup action required for user deletion (e.g., TFA, ACL, group)
97 -- Proxmox Support Team <support@proxmox.com> Mon, 27 Sep 2021 15:50:47 +0200
99 libpve-access-control (7.0-4) bullseye; urgency=medium
101 * realm: add OpenID configuration
103 * api: implement OpenID related endpoints
105 * implement opt-in OpenID autocreate user feature
107 * api: user: add 'realm-type' to user list response
109 -- Proxmox Support Team <support@proxmox.com> Fri, 02 Jul 2021 13:45:46 +0200
111 libpve-access-control (7.0-3) bullseye; urgency=medium
113 * api: acl: add missing `/access/realm/<realm>`, `/access/group/<group>` and
114 `/sdn/zones/<zone>` to allowed ACL paths
116 -- Proxmox Support Team <support@proxmox.com> Mon, 21 Jun 2021 10:31:19 +0200
118 libpve-access-control (7.0-2) bullseye; urgency=medium
120 * fix #3402: add Pool.Audit privilege - custom roles containing
121 Pool.Allocate must be updated to include the new privilege.
123 -- Proxmox Support Team <support@proxmox.com> Tue, 1 Jun 2021 11:28:38 +0200
125 libpve-access-control (7.0-1) bullseye; urgency=medium
127 * re-build for Debian 11 Bullseye based releases
129 -- Proxmox Support Team <support@proxmox.com> Sun, 09 May 2021 18:18:23 +0200
131 libpve-access-control (6.4-1) pve; urgency=medium
133 * fix #1670: change PAM service name to project specific name
135 * fix #1500: permission path syntax check for access control
137 * pveum: add resource pool CLI commands
139 -- Proxmox Support Team <support@proxmox.com> Sat, 24 Apr 2021 19:48:21 +0200
141 libpve-access-control (6.1-3) pve; urgency=medium
143 * partially fix #2825: authkey: rotate if it was generated in the
146 * fix #2947: add an option to LDAP or AD realm to switch user lookup to case
149 -- Proxmox Support Team <support@proxmox.com> Tue, 29 Sep 2020 08:54:13 +0200
151 libpve-access-control (6.1-2) pve; urgency=medium
153 * also check SDN permission path when computing coarse permissions heuristic
156 * add SDN Permissions.Modify
158 * add VM.Config.Cloudinit
160 -- Proxmox Support Team <support@proxmox.com> Tue, 30 Jun 2020 13:06:56 +0200
162 libpve-access-control (6.1-1) pve; urgency=medium
164 * pveum: add tfa delete subcommand for deleting user-TFA
166 * LDAP: don't complain about missing credentials on realm removal
168 * LDAP: skip anonymous bind when client certificate and key is configured
170 -- Proxmox Support Team <support@proxmox.com> Fri, 08 May 2020 17:47:41 +0200
172 libpve-access-control (6.0-7) pve; urgency=medium
174 * fix #2575: die when trying to edit built-in roles
176 * add realm sub commands to pveum CLI tool
178 * api: domains: add user group sync API enpoint
180 * allow one to sync and import users and groups from LDAP/AD based realms
182 * realm: add default-sync-options to config for more convenient sync configuration
184 * api: token create: return also full token id for convenience
186 -- Proxmox Support Team <support@proxmox.com> Sat, 25 Apr 2020 19:35:17 +0200
188 libpve-access-control (6.0-6) pve; urgency=medium
190 * API: add group members to group index
192 * implement API token support and management
194 * pveum: add 'pveum user token add/update/remove/list'
196 * pveum: add permissions sub-commands
198 * API: add 'permissions' API endpoint
200 * user.cfg: skip inexisting roles when parsing ACLs
202 -- Proxmox Support Team <support@proxmox.com> Wed, 29 Jan 2020 10:17:27 +0100
204 libpve-access-control (6.0-5) pve; urgency=medium
206 * pveum: add list command for users, groups, ACLs and roles
208 * add initial permissions for experimental SDN integration
210 -- Proxmox Support Team <support@proxmox.com> Tue, 26 Nov 2019 17:56:37 +0100
212 libpve-access-control (6.0-4) pve; urgency=medium
214 * ticket: use clinfo to get cluster name
216 * ldaps: add sslversion configuration property to support TLS 1.1 to 1.3 as
219 -- Proxmox Support Team <support@proxmox.com> Mon, 18 Nov 2019 11:55:11 +0100
221 libpve-access-control (6.0-3) pve; urgency=medium
223 * fix #2433: increase possible TFA secret length
225 * parse user configuration: correctly parse group names in ACLs, for users
226 which begin their name with an @
228 * sort user.cfg entries alphabetically
230 -- Proxmox Support Team <support@proxmox.com> Tue, 29 Oct 2019 08:52:23 +0100
232 libpve-access-control (6.0-2) pve; urgency=medium
234 * improve CSRF verification compatibility with newer PVE
236 -- Proxmox Support Team <support@proxmox.com> Wed, 26 Jun 2019 20:24:35 +0200
238 libpve-access-control (6.0-1) pve; urgency=medium
240 * ticket: properly verify exactly 5 minute old tickets
242 * use hmac_sha256 instead of sha1 for CSRF token generation
244 -- Proxmox Support Team <support@proxmox.com> Mon, 24 Jun 2019 18:14:45 +0200
246 libpve-access-control (6.0-0+1) pve; urgency=medium
248 * bump for Debian buster
250 * fix #2079: add periodic auth key rotation
252 -- Proxmox Support Team <support@proxmox.com> Tue, 21 May 2019 21:31:15 +0200
254 libpve-access-control (5.1-10) unstable; urgency=medium
256 * add /access/user/{id}/tfa api call to get tfa types
258 -- Proxmox Support Team <support@proxmox.com> Wed, 15 May 2019 16:21:10 +0200
260 libpve-access-control (5.1-9) unstable; urgency=medium
262 * store the tfa type in user.cfg allowing to get it without proxying the call
263 to a higher priviledged daemon.
265 * tfa: realm required TFA should lock out users without TFA configured, as it
266 was done before Proxmox VE 5.4
268 -- Proxmox Support Team <support@proxmox.com> Tue, 30 Apr 2019 14:01:00 +0000
270 libpve-access-control (5.1-8) unstable; urgency=medium
272 * U2F: ensure we save correct public key on registration
274 -- Proxmox Support Team <support@proxmox.com> Tue, 09 Apr 2019 12:47:12 +0200
276 libpve-access-control (5.1-7) unstable; urgency=medium
278 * verify_ticket: allow general non-challenge tfa to be run as two step
281 -- Proxmox Support Team <support@proxmox.com> Mon, 08 Apr 2019 16:56:14 +0200
283 libpve-access-control (5.1-6) unstable; urgency=medium
285 * more general 2FA configuration via priv/tfa.cfg
287 * add u2f api endpoints
289 * delete TFA entries when deleting a user
291 * allow users to change their TOTP settings
293 -- Proxmox Support Team <support@proxmox.com> Wed, 03 Apr 2019 13:40:26 +0200
295 libpve-access-control (5.1-5) unstable; urgency=medium
297 * fix vnc ticket verification without authkey lifetime
299 -- Proxmox Support Team <support@proxmox.com> Mon, 18 Mar 2019 10:43:17 +0100
301 libpve-access-control (5.1-4) unstable; urgency=medium
303 * fix #1891: Add zsh command completion for pveum
305 * ground work to fix #2079: add periodic auth key rotation. Not yet enabled
306 to avoid issues on upgrade, will be enabled with 6.0
308 -- Proxmox Support Team <support@proxmox.com> Mon, 18 Mar 2019 09:12:05 +0100
310 libpve-access-control (5.1-3) unstable; urgency=medium
312 * api/ticket: move getting cluster name into an eval
314 -- Proxmox Support Team <support@proxmox.com> Thu, 29 Nov 2018 12:59:36 +0100
316 libpve-access-control (5.1-2) unstable; urgency=medium
318 * fix #1998: correct return properties for read_role
320 -- Proxmox Support Team <support@proxmox.com> Fri, 23 Nov 2018 14:22:40 +0100
322 libpve-access-control (5.1-1) unstable; urgency=medium
324 * pveum: introduce sub-commands
326 * register userid with completion
328 * fix #233: return cluster name on successful login
330 -- Proxmox Support Team <support@proxmox.com> Thu, 15 Nov 2018 09:34:47 +0100
332 libpve-access-control (5.0-8) unstable; urgency=medium
334 * fix #1612: ldap: make 2nd server work with bind domains again
336 * fix an error message where passing a bad pool id to an API function would
337 make it complain about a wrong group name instead
339 * fix the API-returned permission list so that the GUI knows to show the
340 'Permissions' tab for a storage to an administrator apart from root@pam
342 -- Proxmox Support Team <support@proxmox.com> Thu, 18 Jan 2018 13:34:50 +0100
344 libpve-access-control (5.0-7) unstable; urgency=medium
346 * VM.Snapshot.Rollback privilege added
348 * api: check for special roles before locking the usercfg
350 * fix #1501: pveum: die when deleting special role
352 * API/ticket: rework coarse grained permission computation
354 -- Proxmox Support Team <support@proxmox.com> Thu, 5 Oct 2017 11:27:48 +0200
356 libpve-access-control (5.0-6) unstable; urgency=medium
358 * Close #1470: Add server ceritifcate verification for AD and LDAP via the
359 'verify' option. For compatibility reasons this defaults to off for now,
360 but that might change with future updates.
362 * AD, LDAP: Add ability to specify a CA path or file, and a client
363 certificate via the 'capath', 'cert' and 'certkey' options.
365 -- Proxmox Support Team <support@proxmox.com> Tue, 08 Aug 2017 11:56:38 +0200
367 libpve-access-control (5.0-5) unstable; urgency=medium
369 * change from dpkg-deb to dpkg-buildpackage
371 -- Proxmox Support Team <support@proxmox.com> Thu, 22 Jun 2017 09:12:37 +0200
373 libpve-access-control (5.0-4) unstable; urgency=medium
375 * PVE/CLI/pveum.pm: call setup_default_cli_env()
377 * PVE/Auth/PVE.pm: encode uft8 password before calling crypt
379 * check_api2_permissions: avoid warning about uninitialized value
381 -- Proxmox Support Team <support@proxmox.com> Tue, 02 May 2017 11:58:15 +0200
383 libpve-access-control (5.0-3) unstable; urgency=medium
385 * use new PVE::OTP class from pve-common
387 * use new PVE::Tools::encrypt_pw from pve-common
389 -- Proxmox Support Team <support@proxmox.com> Thu, 30 Mar 2017 17:45:55 +0200
391 libpve-access-control (5.0-2) unstable; urgency=medium
393 * encrypt_pw: avoid '+' for crypt salt
395 -- Proxmox Support Team <support@proxmox.com> Thu, 30 Mar 2017 08:54:10 +0200
397 libpve-access-control (5.0-1) unstable; urgency=medium
399 * rebuild for PVE 5.0
401 -- Proxmox Support Team <support@proxmox.com> Mon, 6 Mar 2017 13:42:01 +0100
403 libpve-access-control (4.0-23) unstable; urgency=medium
405 * use new PVE::Ticket class
407 -- Proxmox Support Team <support@proxmox.com> Thu, 19 Jan 2017 13:42:06 +0100
409 libpve-access-control (4.0-22) unstable; urgency=medium
411 * RPCEnvironment: removed check_volume_access() to avoid cyclic dependency
412 (moved to PVE::Storage)
414 * PVE::PCEnvironment: use new PVE::RESTEnvironment as base class
416 -- Proxmox Support Team <support@proxmox.com> Thu, 19 Jan 2017 09:12:04 +0100
418 libpve-access-control (4.0-21) unstable; urgency=medium
420 * setup_default_cli_env: expect $class as first parameter
422 -- Proxmox Support Team <support@proxmox.com> Thu, 12 Jan 2017 13:54:27 +0100
424 libpve-access-control (4.0-20) unstable; urgency=medium
426 * PVE/RPCEnvironment.pm: new function setup_default_cli_env
428 * PVE/API2/Domains.pm: fix property description
430 * use new repoman for upload target
432 -- Proxmox Support Team <support@proxmox.com> Wed, 11 Jan 2017 12:13:26 +0100
434 libpve-access-control (4.0-19) unstable; urgency=medium
436 * Close #833: ldap: non-anonymous bind support
438 * don't import 'RFC' from MIME::Base32
440 -- Proxmox Support Team <support@proxmox.com> Fri, 05 Aug 2016 13:09:08 +0200
442 libpve-access-control (4.0-18) unstable; urgency=medium
444 * fix #1062: recognize base32 otp keys again
446 -- Proxmox Support Team <support@proxmox.com> Thu, 21 Jul 2016 08:43:18 +0200
448 libpve-access-control (4.0-17) unstable; urgency=medium
450 * drop oathtool and libdigest-hmac-perl dependencies
452 -- Proxmox Support Team <support@proxmox.com> Mon, 11 Jul 2016 12:03:22 +0200
454 libpve-access-control (4.0-16) unstable; urgency=medium
456 * use pve-doc-generator to generate man pages
458 -- Proxmox Support Team <support@proxmox.com> Fri, 08 Apr 2016 07:06:05 +0200
460 libpve-access-control (4.0-15) unstable; urgency=medium
462 * Fix uninitialized warning when shadow.cfg does not exist
464 -- Proxmox Support Team <support@proxmox.com> Fri, 01 Apr 2016 07:10:57 +0200
466 libpve-access-control (4.0-14) unstable; urgency=medium
468 * Add is_worker to RPCEnvironment
470 -- Proxmox Support Team <support@proxmox.com> Tue, 15 Mar 2016 16:47:34 +0100
472 libpve-access-control (4.0-13) unstable; urgency=medium
474 * fix #916: allow HTTPS to access custom yubico url
476 -- Proxmox Support Team <support@proxmox.com> Mon, 14 Mar 2016 11:39:23 +0100
478 libpve-access-control (4.0-12) unstable; urgency=medium
480 * Catch certificate errors instead of segfaulting
482 -- Proxmox Support Team <support@proxmox.com> Wed, 09 Mar 2016 14:41:01 +0100
484 libpve-access-control (4.0-11) unstable; urgency=medium
486 * Fix #861: use safer sprintf formatting
488 -- Proxmox Support Team <support@proxmox.com> Fri, 08 Jan 2016 12:52:39 +0100
490 libpve-access-control (4.0-10) unstable; urgency=medium
492 * Auth::LDAP, Auth::AD: ipv6 support
494 -- Proxmox Support Team <support@proxmox.com> Thu, 03 Dec 2015 12:09:32 +0100
496 libpve-access-control (4.0-9) unstable; urgency=medium
498 * pveum: implement bash completion
500 -- Proxmox Support Team <support@proxmox.com> Thu, 01 Oct 2015 17:22:52 +0200
502 libpve-access-control (4.0-8) unstable; urgency=medium
504 * remove_storage_access: cleanup of access permissions for removed storage
506 -- Proxmox Support Team <support@proxmox.com> Wed, 19 Aug 2015 15:39:15 +0200
508 libpve-access-control (4.0-7) unstable; urgency=medium
510 * new helper to remove access permissions for removed VMs
512 -- Proxmox Support Team <support@proxmox.com> Fri, 14 Aug 2015 07:57:02 +0200
514 libpve-access-control (4.0-6) unstable; urgency=medium
516 * improve parse_user_config, parse_shadow_config
518 -- Proxmox Support Team <support@proxmox.com> Mon, 27 Jul 2015 13:14:33 +0200
520 libpve-access-control (4.0-5) unstable; urgency=medium
522 * pveum: check for $cmd being defined
524 -- Proxmox Support Team <support@proxmox.com> Wed, 10 Jun 2015 10:40:15 +0200
526 libpve-access-control (4.0-4) unstable; urgency=medium
528 * use activate-noawait triggers
530 -- Proxmox Support Team <support@proxmox.com> Mon, 01 Jun 2015 12:25:31 +0200
532 libpve-access-control (4.0-3) unstable; urgency=medium
538 -- Proxmox Support Team <support@proxmox.com> Wed, 27 May 2015 11:15:44 +0200
540 libpve-access-control (4.0-2) unstable; urgency=medium
542 * trigger pve-api-updates event
544 -- Proxmox Support Team <support@proxmox.com> Tue, 05 May 2015 15:06:38 +0200
546 libpve-access-control (4.0-1) unstable; urgency=medium
548 * bump version for Debian Jessie
550 -- Proxmox Support Team <support@proxmox.com> Thu, 26 Feb 2015 11:22:01 +0100
552 libpve-access-control (3.0-16) unstable; urgency=low
554 * root@pam can now be disabled in GUI.
556 -- Proxmox Support Team <support@proxmox.com> Fri, 30 Jan 2015 06:20:22 +0100
558 libpve-access-control (3.0-15) unstable; urgency=low
560 * oath: add 'step' and 'digits' option
562 -- Proxmox Support Team <support@proxmox.com> Wed, 23 Jul 2014 06:59:52 +0200
564 libpve-access-control (3.0-14) unstable; urgency=low
566 * add oath two factor auth
568 * add oathkeygen binary to generate keys for oath
570 * add yubico two factor auth
574 * depend on libmime-base32-perl
576 * allow to write builtin auth domains config (comment/tfa/default)
578 -- Proxmox Support Team <support@proxmox.com> Thu, 17 Jul 2014 13:09:56 +0200
580 libpve-access-control (3.0-13) unstable; urgency=low
582 * use correct connection string for AD auth
584 -- Proxmox Support Team <support@proxmox.com> Thu, 22 May 2014 07:16:09 +0200
586 libpve-access-control (3.0-12) unstable; urgency=low
588 * add dummy API for GET /access/ticket (useful to generate login pages)
590 -- Proxmox Support Team <support@proxmox.com> Wed, 30 Apr 2014 14:47:56 +0200
592 libpve-access-control (3.0-11) unstable; urgency=low
594 * Sets common hot keys for spice client
596 -- Proxmox Support Team <support@proxmox.com> Fri, 31 Jan 2014 10:24:28 +0100
598 libpve-access-control (3.0-10) unstable; urgency=low
600 * implement helper to generate SPICE remote-viewer configuration
602 * depend on libnet-ssleay-perl
604 -- Proxmox Support Team <support@proxmox.com> Tue, 10 Dec 2013 10:45:08 +0100
606 libpve-access-control (3.0-9) unstable; urgency=low
608 * prevent user enumeration attacks
610 * allow dots in access paths
612 -- Proxmox Support Team <support@proxmox.com> Mon, 18 Nov 2013 09:06:38 +0100
614 libpve-access-control (3.0-8) unstable; urgency=low
616 * spice: use lowercase hostname in ticktet signature
618 -- Proxmox Support Team <support@proxmox.com> Mon, 28 Oct 2013 08:11:57 +0100
620 libpve-access-control (3.0-7) unstable; urgency=low
622 * check_volume_access : use parse_volname instead of path, and remove
625 * use warnings instead of global -w flag.
627 -- Proxmox Support Team <support@proxmox.com> Tue, 01 Oct 2013 12:35:53 +0200
629 libpve-access-control (3.0-6) unstable; urgency=low
631 * use shorter spiceproxy tickets
633 -- Proxmox Support Team <support@proxmox.com> Fri, 19 Jul 2013 12:39:09 +0200
635 libpve-access-control (3.0-5) unstable; urgency=low
637 * add code to generate tickets for SPICE
639 -- Proxmox Support Team <support@proxmox.com> Wed, 26 Jun 2013 13:08:32 +0200
641 libpve-access-control (3.0-4) unstable; urgency=low
643 * moved add_vm_to_pool/remove_vm_from_pool from qemu-server
645 -- Proxmox Support Team <support@proxmox.com> Tue, 14 May 2013 11:56:54 +0200
647 libpve-access-control (3.0-3) unstable; urgency=low
649 * Add new role PVETemplateUser (and VM.Clone priviledge)
651 -- Proxmox Support Team <support@proxmox.com> Mon, 29 Apr 2013 11:42:15 +0200
653 libpve-access-control (3.0-2) unstable; urgency=low
655 * remove CGI.pm related code (pveproxy does not need that)
657 -- Proxmox Support Team <support@proxmox.com> Mon, 15 Apr 2013 12:34:23 +0200
659 libpve-access-control (3.0-1) unstable; urgency=low
661 * bump version for wheezy release
663 -- Proxmox Support Team <support@proxmox.com> Fri, 15 Mar 2013 08:07:06 +0100
665 libpve-access-control (1.0-26) unstable; urgency=low
667 * check_volume_access: fix access permissions for backup files
669 -- Proxmox Support Team <support@proxmox.com> Thu, 28 Feb 2013 10:00:14 +0100
671 libpve-access-control (1.0-25) unstable; urgency=low
673 * add VM.Snapshot permission
675 -- Proxmox Support Team <support@proxmox.com> Mon, 10 Sep 2012 09:23:32 +0200
677 libpve-access-control (1.0-24) unstable; urgency=low
679 * untaint path (allow root to restore arbitrary paths)
681 -- Proxmox Support Team <support@proxmox.com> Wed, 06 Jun 2012 13:06:34 +0200
683 libpve-access-control (1.0-23) unstable; urgency=low
685 * correctly compute GUI capabilities (consider pools)
687 -- Proxmox Support Team <support@proxmox.com> Wed, 30 May 2012 08:47:23 +0200
689 libpve-access-control (1.0-22) unstable; urgency=low
691 * new plugin architecture for Auth modules, minor API change for Auth
692 domains (new 'delete' parameter)
694 -- Proxmox Support Team <support@proxmox.com> Wed, 16 May 2012 07:21:44 +0200
696 libpve-access-control (1.0-21) unstable; urgency=low
698 * do not allow user names including slash
700 -- Proxmox Support Team <support@proxmox.com> Tue, 24 Apr 2012 10:07:47 +0200
702 libpve-access-control (1.0-20) unstable; urgency=low
704 * add ability to fork cli workers in background
706 -- Proxmox Support Team <support@proxmox.com> Wed, 18 Apr 2012 08:28:20 +0200
708 libpve-access-control (1.0-19) unstable; urgency=low
710 * return set of privileges on login - can be used to adopt GUI
712 -- Proxmox Support Team <support@proxmox.com> Tue, 17 Apr 2012 10:25:10 +0200
714 libpve-access-control (1.0-18) unstable; urgency=low
716 * fix bug #151: corretly parse username inside ticket
718 * fix bug #152: allow user to change his own password
720 -- Proxmox Support Team <support@proxmox.com> Wed, 11 Apr 2012 09:40:15 +0200
722 libpve-access-control (1.0-17) unstable; urgency=low
724 * set propagate flag by default
726 -- Proxmox Support Team <support@proxmox.com> Thu, 01 Mar 2012 12:40:19 +0100
728 libpve-access-control (1.0-16) unstable; urgency=low
730 * add 'pveum passwd' method
732 -- Proxmox Support Team <support@proxmox.com> Thu, 23 Feb 2012 12:05:25 +0100
734 libpve-access-control (1.0-15) unstable; urgency=low
736 * Add VM.Config.CDROM privilege to PVEVMUser rule
738 -- Proxmox Support Team <support@proxmox.com> Wed, 22 Feb 2012 11:44:23 +0100
740 libpve-access-control (1.0-14) unstable; urgency=low
742 * fix buf in userid-param permission check
744 -- Proxmox Support Team <support@proxmox.com> Wed, 22 Feb 2012 10:52:35 +0100
746 libpve-access-control (1.0-13) unstable; urgency=low
748 * allow more characters in ldap base_dn attribute
750 -- Proxmox Support Team <support@proxmox.com> Wed, 22 Feb 2012 06:17:02 +0100
752 libpve-access-control (1.0-12) unstable; urgency=low
754 * allow more characters with realm IDs
756 -- Proxmox Support Team <support@proxmox.com> Mon, 20 Feb 2012 08:50:33 +0100
758 libpve-access-control (1.0-11) unstable; urgency=low
760 * fix bug in exec_api2_perm_check
762 -- Proxmox Support Team <support@proxmox.com> Wed, 15 Feb 2012 07:06:30 +0100
764 libpve-access-control (1.0-10) unstable; urgency=low
766 * fix ACL group name parser
768 * changed 'pveum aclmod' command line arguments
770 -- Proxmox Support Team <support@proxmox.com> Tue, 14 Feb 2012 12:08:02 +0100
772 libpve-access-control (1.0-9) unstable; urgency=low
774 * fix bug in check_volume_access (fixes vzrestore)
776 -- Proxmox Support Team <support@proxmox.com> Mon, 13 Feb 2012 09:56:37 +0100
778 libpve-access-control (1.0-8) unstable; urgency=low
780 * fix return value for empty ACL list.
782 -- Proxmox Support Team <support@proxmox.com> Fri, 10 Feb 2012 11:25:04 +0100
784 libpve-access-control (1.0-7) unstable; urgency=low
786 * fix bug #85: allow root@pam to generate tickets for other users
788 -- Proxmox Support Team <support@proxmox.com> Tue, 17 Jan 2012 06:40:18 +0100
790 libpve-access-control (1.0-6) unstable; urgency=low
792 * API change: allow to filter enabled/disabled users.
794 -- Proxmox Support Team <support@proxmox.com> Wed, 11 Jan 2012 12:30:37 +0100
796 libpve-access-control (1.0-5) unstable; urgency=low
798 * add a way to return file changes (diffs): set_result_changes()
800 -- Proxmox Support Team <support@proxmox.com> Tue, 20 Dec 2011 11:18:48 +0100
802 libpve-access-control (1.0-4) unstable; urgency=low
804 * new environment type for ha agents
806 -- Proxmox Support Team <support@proxmox.com> Tue, 13 Dec 2011 10:08:53 +0100
808 libpve-access-control (1.0-3) unstable; urgency=low
810 * add support for delayed parameter parsing - We need that to disable
811 file upload for normal API request (avoid DOS attacs)
813 -- Proxmox Support Team <support@proxmox.com> Fri, 02 Dec 2011 09:56:10 +0100
815 libpve-access-control (1.0-2) unstable; urgency=low
817 * fix bug in fork_worker
819 -- Proxmox Support Team <support@proxmox.com> Tue, 11 Oct 2011 08:37:05 +0200
821 libpve-access-control (1.0-1) unstable; urgency=low
823 * allow '-' in permission paths
825 * bump version to 1.0
827 -- Proxmox Support Team <support@proxmox.com> Mon, 27 Jun 2011 13:51:48 +0200
829 libpve-access-control (0.1) unstable; urgency=low
831 * first dummy package - no functionality
833 -- Proxmox Support Team <support@proxmox.com> Thu, 09 Jul 2009 16:03:00 +0200