| Commit message (Collapse) | Author | Age | Files | Lines |
|
|
|
| |
doesn't have an ldap backend. Also, fix a typo.
|
| |
|
|
|
|
| |
a message when they click it for other backends.
|
| |
|
| |
|
| |
|
| |
|
|\
| |
| |
| |
| |
| |
| | |
Resolved conflicts:
usr/local/www/system_advanced_firewall.php
usr/local/www/system_routes.php
usr/local/www/system_routes_edit.php
|
| | |
|
|/ |
|
| |
|
| |
|
| |
|
|
|
|
| |
instead of required once so produced errors or redefinitions of functions. These includes are now included on authgui.inc.
|
| |
|
| |
|
|
|
|
| |
Fix quite a few problems down the way.
|
| |
|
| |
|
|
|
|
| |
$username to <username> so php does not try to do clever stuff.
|
| |
|
| |
|
| |
|
|
|
|
| |
limit of < 999 and other invalid/unnecessary input validation. Use product_name
|
| |
|
| |
|
| |
|
|
|
|
| |
include 2009 on files that I have asserted (C) on
|
| |
|
|
|
|
|
|
|
|
|
|
| |
not use the pkg system and the configuration has been migrated to an
openvpn prefix. The centralized user and certificate manager is now used
to support the openvpn configurations. Most of the files removed in this
commit were not being referenced.
This commit also splits out the certificate management components into a
new system menu item.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
to centrally manage this data. There are no consumers at this time. This
interface allow for the following ...
Certificate Authority Manager:
- List certificates authorities
- Import existing certificate authority
- Create internal certificate authority
Certificate Manager:
- List certificates
- Import existing certificate
- Create internal certificate using an internal CA
- Generate certificate signing request for external CAs
- Process certificate signing response from external CAs
Certificate revocation is not currently implemented. The user system will
also be extended to allow for user specific certificate management in a
follow-up commit.
|
|
|
|
| |
supported currently are LDAP and Radius.
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
and pam backing functions have been removed. The basic auth method was
legacy code and the backing functions were redundant with no added value
that I could see. A simplified replacement backing function named
local_backed has been added that authenticates to the local configuration
info which should be identical to system pwdb credentials. Since the
htpassword file is no longer required, sync_webgui_passwords and its
wrapper function system_password_configure have been removed.
The local account management functions were renamed for consistency. A few
minor bugs related to setting local passwords have also been corrected.
|
|
|
|
|
|
|
|
| |
1) Redefine page privileges to not use static urls
2) Accurate generation of privilege definitions from source
3) Merging the user and group privileges into a single set
4) Allow any privilege to be added to users or groups w/ inheritance
5) Cleaning up the related WebUI pages
|
| |
|
| |
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| |
"Active Directory"
hide:
LDAP Filter (use default: (samaccountname=$username))
LDAP Naming Attribute (use default: samaccountname)
Group Membership Attribute Name (use default: memberOf)
"eDirectory"
hide:
LDAP Filter (use default: (cn=$username))
LDAP Naming Attribute (use default: CN)
Group Membership Attribute Name (use default: groupMembership)
|
|
|
|
| |
Thanks again for him helping us with this project!
|
| |
|
|
|
|
|
| |
* Remove session timeout graphic
* Allow session timeout to remain blank
|
|
|
|
|
|
|
| |
anywhere in the LDAP tree and will use the groups to deterimine the access
privs.
Work sponsored-by: Centipede Networks
|
|
|
|
|
|
| |
* Specify that LDAP is Active Directory compatible
Work sponsored-by: Centipede Networks
|
|
|
|
| |
Work sponsored-by: Centipede Networks
|
|
|
|
|
|
|
|
| |
can be specified to authenticate against. Final item will be a graphical
browser that can help the operator populate this box if they are feeling
lazy or do not understand LDAP completely.
Work sponsored-by: Centipede Networks <http://centipedenetworks.com/>
|
|
|
|
| |
Work sponsored-by: Centipede Networks
|
|
|
|
| |
Return the OU's and show to the user after test completion.
|
|
|
|
|
|
|
|
|
| |
it pretty clear until I finish the fancy LDAP tree viewer control.
I should also note that as of this commit the LDAP auth functions are now
working beautifully against a Windows 2000 Server Active Directory!
Work sponsored-by: Centipede Networks <www.centipedenetworks.com>
|
|
|
|
|
|
| |
* Cross reference Active Directory user groups with pfSense groups, apply
groups where names match
* Clarify some of the settings items and give examples
|
|
|
|
|
|
| |
* Use correct variable name
Work sponsored-by: Centipede Networks
|