summaryrefslogtreecommitdiffstats
path: root/etc/inc/auth.inc
Commit message (Collapse)AuthorAgeFilesLines
* Rewrite the pfsense privilege system with the following goals in mind ...Matthew Grooms2008-08-011-195/+60
| | | | | | | | 1) Redefine page privileges to not use static urls 2) Accurate generation of privilege definitions from source 3) Merging the user and group privileges into a single set 4) Allow any privilege to be added to users or groups w/ inheritance 5) Cleaning up the related WebUI pages
* Rewrite portions of the user manager to ensure data is properly synced toMatthew Grooms2008-07-251-230/+278
| | | | | | | | | | | the system password and group databases. This is to provide better support for centralized user management when local account administration is preferred. I also took this opportunity to do some housekeeping. A lot of funtions that were only being used in one place or not at all were removed. The user page privelege checks were also simplified in preperation for future work in this area.
* General whitespace and style cleanup of the auth.inc file. I was having aMatthew Grooms2008-07-211-704/+721
| | | | | hard time following some of the code logic due to poor formatting. There should be no functional change.
* Remove debug messages that gave away info on why the login failedBill Marquette2008-04-071-10/+19
| | | | add failed and successful login messages to syslog
* Remove dead code.Scott Ullrich2008-02-201-21/+0
|
* Latest LDAP round from Mark BatchelorScott Ullrich2008-02-111-23/+31
| | | | VS: ----------------------------------------------------------------------
* Latest version of auth.inc from Mark Batchelor fixing a few miscScott Ullrich2008-02-101-28/+48
| | | | LDAP auth issues + local auth issues.
* Latest LDAP changes from Mark BatchelorScott Ullrich2008-02-031-76/+153
|
* * Remove trailing blank lineScott Ullrich2008-02-031-5/+7
| | | | * Make sure $info has data before operating on it
* * Remove trailing blank lineScott Ullrich2008-02-031-6/+6
| | | | * Make sure $search has data before operating on it
* Latest eDir / Active Directory tweaks from Mark Batchelor.Scott Ullrich2008-01-311-963/+1008
| | | | Thanks again for him helping us with this project!
* Changes to allow Novell eDir to authenticate via LDAP.Scott Ullrich2008-01-281-11/+16
| | | | Thanks to Mark Batchelor for all of his help with these changes.
* Conditional checks use ==, not = !Scott Ullrich2008-01-161-2/+2
|
* Check that ldap_connect() exists before calling. For some reason onScott Ullrich2008-01-131-2/+17
| | | | bootup the function does not exist but the module is loaded?
* * Missing =Scott Ullrich2008-01-011-10/+32
| | | | * Allow user manager to adhere to admins group
* Only check item if it is an array.Scott Ullrich2007-12-311-2/+3
|
* Correctly return no groups when the user is not a member of a local group.Scott Ullrich2007-12-311-2/+2
|
* Modify isSystemAdmin() to check LDAP for a "admins" group.Scott Ullrich2007-12-311-0/+6
|
* Remove the need to define authetnication containers. Now a user can loginScott Ullrich2007-12-311-7/+22
| | | | | | | anywhere in the LDAP tree and will use the groups to deterimine the access privs. Work sponsored-by: Centipede Networks
* Only iterate items if it is an array.Scott Ullrich2007-12-311-12/+14
| | | | Work sponsored-by: Centipede Networks
* * Return OU=Users which is built-in to active directoryScott Ullrich2007-12-311-0/+2
| | | | | | * Specify that LDAP is Active Directory compatible Work sponsored-by: Centipede Networks
* Correct variable check.Scott Ullrich2007-12-311-1/+1
|
* Adding LDAP Authentication container picker.Scott Ullrich2007-12-311-0/+2
| | | | Work sponsored-by: Centipede Networks
* Add Users containers setting where a ; seperated list of LDAP containersScott Ullrich2007-12-311-2/+17
| | | | | | | | can be specified to authenticate against. Final item will be a graphical browser that can help the operator populate this box if they are feeling lazy or do not understand LDAP completely. Work sponsored-by: Centipede Networks <http://centipedenetworks.com/>
* Add LDAP test functions to verify that the LDAP settings are correct.Scott Ullrich2007-12-301-3/+43
| | | | Return the OU's and show to the user after test completion.
* Add ldap_get_user_ous() which will return an array of containers that holdScott Ullrich2007-12-291-0/+43
| | | | | | | user objects. This will be used by the ldap settings manager to allow the operator to specify which containers they would like to authenticate from. Work sponsored-by: Centipede Networks <http://centipedenetworks.com/>
* Ignore ldap items for locally defined users.Scott Ullrich2007-12-291-13/+18
| | | | Work sponsored-by: Centipede Networks <http://centipedenetworks.com/>
* * Allow LDAP users to login to pfSense.Scott Ullrich2007-12-291-23/+53
| | | | | | * Cross reference Active Directory user groups with pfSense groups, apply groups where names match * Clarify some of the settings items and give examples
* * Refactor code a bit, split out user property search functionScott Ullrich2007-12-281-6/+45
| | | | | | * Bring back filter code Work sponsored-by: Centipede Networks
* Allow multiple groups to be assigned per user.Scott Ullrich2007-12-281-0/+21
| | | | Work sponsored-by: Centipede Networks
* * Hide search baseScott Ullrich2007-12-281-1/+1
| | | | | | * Use correct variable name Work sponsored-by: Centipede Networks
* Adding LDAP backend glue.Scott Ullrich2007-12-271-0/+38
| | | | Work sponsored-by: Centipede Networks <http://centipedenetworks.com/>
* * Correctly report invalid passwordScott Ullrich2007-11-181-0/+8
| | | | | * Correctly report invalid username * Correctly report 401 errors
* Correctly show 401 errors.Scott Ullrich2007-11-181-0/+18
|
* Remove trailing space / crScott Ullrich2007-05-271-1/+1
|
* Backport usermanager code from HEAD so I can get it in the snaps andBill Marquette2007-04-131-99/+603
| | | | | start testing it properly There's still some CSS/HTML fixes needed but the code seems to work
* * Minior tab alignmentsScott Ullrich2006-04-081-5/+6
| | | | * We're in 2006, toto
* * Eliminate dead codeScott Ullrich2006-01-151-1/+3
| | | | * Fix warnings and errors found by eclipse
* restore 1.10Scott Ullrich2005-10-111-32/+7
| | | | Ticket #598
* use admin user when using a special usernameScott Ullrich2005-10-101-2/+2
|
* Correct commentScott Ullrich2005-10-091-1/+1
|
* Terminate comment correctlyScott Ullrich2005-10-091-1/+1
| | | | Pointy-hat-to: GeekGod
* Duplicate logic to htpasswd_backed_basic_auth()Scott Ullrich2005-10-081-4/+16
|
* honour custom username set in webConfigurator pageScott Ullrich2005-10-081-1/+2
|
* honour custom username set in webConfigurator pageScott Ullrich2005-10-081-2/+14
|
* If there's a PHP_AUTH_* copy it over to AUTH_* (mini sets AUTH_*, lighttpd ↵Bill Marquette2005-09-171-1/+9
| | | | sets PHP_AUTH_*)
* Change realm to .Scott Ullrich2005-08-131-1/+1
| | | | Ticket #337
* Remove trailing spaceScott Ullrich2005-06-261-1/+1
|
* Better regexpBill Marquette2005-05-181-4/+4
| | | | Courtesy-of: strgout
* better regexpBill Marquette2005-05-181-2/+2
|
OpenPOWER on IntegriCloud