summaryrefslogtreecommitdiffstats
path: root/etc/inc/priv.inc
Commit message (Collapse)AuthorAgeFilesLines
* remove old DISABLE_PHP_LINT_CHECKING, which dates way back to the CVS days ↵Chris Buechler2014-11-041-1/+0
| | | | and hasn't been relevant in years.
* fix permissions check to xml package files and show only menus user has ↵marcelloc2012-06-121-13/+5
| | | | access to
* Fix missing $ on variable.jim-p2011-08-111-1/+1
|
* Sort user privileges so dashboard/index.php come first, so if a user has ↵jim-p2011-08-111-0/+9
| | | | those permissions, they get redirected there first and not to another page.
* Fix privilege matching so that it respects wildcards better, especially when ↵jim-p2011-08-111-2/+4
| | | | leading.
* Remove trailing carriage returnScott Ullrich2010-11-101-1/+1
|
* Get user pages as well as group pages. Fixes #735jim-p2010-07-131-0/+1
|
* Overhaul the user login system to use the Servers tab as its base.Ermal Luçi2010-03-031-18/+14
| | | | Fix quite a few problems down the way.
* Add priv.defs.inc to authgui.incsullrich2009-12-031-9/+15
|
* Load pkg privs from /usr/local/pkg/priv if it existssullrich2009-12-031-3/+4
|
* Roll custom run_plugins routinesullrich2009-12-031-1/+26
|
* Make item a globalsullrich2009-12-031-3/+0
|
* Require util.inc for run_pluginssullrich2009-12-031-0/+2
|
* Rename isAllowedPageUser() to isAllowed(). Add and move user priv items to ↵sullrich2009-12-031-29/+3
| | | | /etc/inc/user.priv.inc. New privs can be added to this /etc/inc/priv/ directory and they will be automatically processed (packages, etc).
* Revert isAllowedUser commit and duplicate function to isAllowedPageUser()sullrich2009-12-021-3/+24
|
* Set 2nd parameter for isAllowedPage. Will be required for #34, 33, 32sullrich2009-12-021-1/+1
|
* fix errorsullrich2009-12-021-1/+4
|
* Allow a username. Default to _SESSION['Username']sullrich2009-12-021-3/+14
|
* Rework includes/require. This saves about 4 megabytes.Scott Ullrich2009-11-211-2/+0
| | | | Simplify get_memory(). Tested on mips/i386
* Add pfSense_BUILDER_BINARIES: and pfSense_MODULE: additionsScott Ullrich2009-09-121-0/+4
|
* * Move functions that output html to guiconfig.incErmal Luci2009-06-181-282/+249
| | | | | | | | | * Remove some recursive dependency on some includes * Remove ^M or \r from files * Remove some entries from functions.inc to avoid including them twice * Remove some unneccessary includes from some files NOTE: There is some more work to be done for pkg-utils.inc to be removed from backend as a dependency.
* Moves the protocol and certificate options out of the general config pageMatthew Grooms2008-09-091-16/+0
| | | | | | | | | | | | | to the Advanced admin access tab. The thought is that they should be next to each other. The certificate management has also been modified to use the centralized certificate manager. I took the liberty of removing the default certificate/key definitions from the web server configuration function as it is now trivial to create these locally. The global SSH authorized keys have also been removed. Any existing key data will be migrated to the admin account. I also added some new checks to ensure the sshd process is only restarted when its configuration has actually changed.
* Remove the page locking privileges after discussion with Scott on IRC. TheMatthew Grooms2008-09-031-12/+0
| | | | | | | feature was confusing and offered little utility that I could see. If we really need to provide serialized access to sections of the webui, IMO it should be a global lock option and enabled or disabled manually and not a privilege that is on all the time.
* Correct a regression in the privilege system where pages were not beingMatthew Grooms2008-09-031-6/+9
| | | | matched correctly. Reported by Seth.
* Cleanup authentication code. The basic auth method, the passwd, htpasswdMatthew Grooms2008-08-031-3/+3
| | | | | | | | | | | | | and pam backing functions have been removed. The basic auth method was legacy code and the backing functions were redundant with no added value that I could see. A simplified replacement backing function named local_backed has been added that authenticates to the local configuration info which should be identical to system pwdb credentials. Since the htpassword file is no longer required, sync_webgui_passwords and its wrapper function system_password_configure have been removed. The local account management functions were renamed for consistency. A few minor bugs related to setting local passwords have also been corrected.
* Rewrite the pfsense privilege system with the following goals in mind ...Matthew Grooms2008-08-011-0/+307
1) Redefine page privileges to not use static urls 2) Accurate generation of privilege definitions from source 3) Merging the user and group privileges into a single set 4) Allow any privilege to be added to users or groups w/ inheritance 5) Cleaning up the related WebUI pages
OpenPOWER on IntegriCloud