root
/
rabbitmq-server
mirror of https://github.com/rabbitmq/rabbitmq-server.git
1
0
Fork 0
Code Issues Actions 4 Packages Projects Releases Wiki Activity
49,431 Commits 177 Branches 546 Tags 272 MiB
Commit Graph

187 Commits

Author SHA1 Message Date
ash-lshift afb38b8747 use a pool of workers which cache connections 2015-03-06 17:41:05 +00:00
Simon MacMullen 07b93ff379 Merge branch 'stable' 
Conflicts:
	src/rabbit_auth_backend_ldap.erl
 2015-02-19 14:08:12 +00:00
Simon MacMullen 0e4b00fc80 If other_bind is not set to as_user, establish a new LDAP connection to perform tag queries against. 2015-02-19 13:31:01 +00:00
Simon MacMullen a748c62326 stable to default 2015-01-09 13:23:46 +00:00
Simon MacMullen 6989477b6e Oops 2015-01-09 13:23:21 +00:00
Simon MacMullen 3afc96688f stable to default 2015-01-09 13:14:23 +00:00
Simon MacMullen 20644f08d1 Fix fill escaping, plus a test. 2015-01-09 13:04:19 +00:00
Simon MacMullen 253f3a2f46 API changes. 2014-11-14 14:18:10 +00:00
Simon MacMullen 0013748edd API changes. 2014-11-13 16:14:20 +00:00
Simon MacMullen 0493972c89 Fix the SSL options for TLS too. Make sure we compare the unfixed version with [], since the fixed version will never be []. 2014-10-20 16:11:12 +01:00
Simon MacMullen 6896285abf Disable SSLv3. 2014-10-20 14:47:21 +01:00
Simon MacMullen c10afcca73 We do xref checks against R13B03, stop breaking them. 2014-07-02 16:01:44 +01:00
Simon MacMullen 6118a1598e Ooops 2014-07-01 17:05:26 +01:00
Simon MacMullen e62de3b49a StartTLS support 2014-07-01 17:02:23 +01:00
Simon MacMullen 843a9bc76c ensure_ssl/0 if we need to, and move a comment to where it should be. 2014-05-19 17:41:44 +01:00
Simon MacMullen 09d4acdc82 Update copyright for 2014 2014-03-17 17:25:20 +00:00
Simon MacMullen e97a0d3b08 stable to default 2014-03-05 14:20:10 +00:00
Simon MacMullen f99e437af3 Ban unauthenticated logins. 2014-03-05 13:06:55 +00:00
Simon MacMullen 4d18d982c1 Support connection timeout. 2014-02-19 11:08:41 +00:00
Simon MacMullen d49de1519a Continue on our quest towards the world's most verbose logging. 2014-01-29 11:14:42 +00:00
Simon MacMullen f586ddd335 dn_lookup_bind option, and rather more tests for the login phase. 2014-01-28 17:56:25 +00:00
Simon MacMullen a4f581e9ed Not sure of the value of this warning, but let's unbreak it anyway. 2014-01-20 15:16:15 +00:00
Simon MacMullen 3a2986929a stable to default 2014-01-14 16:08:34 +00:00
Simon MacMullen cc3f9c6b68 OpenLDAP is not guaranteed to return the DN as an attribute. AFAICS the object_name field should always be filled though, and always be the DN (RFC 4511, 4.5.2). 2014-01-14 16:08:10 +00:00
Simon MacMullen 9cf92dbe3e stable to default 2013-11-13 11:19:42 +00:00
Simon MacMullen e52bc903ac Re-add the app module to do the backend check 2013-11-13 11:19:02 +00:00
Simon MacMullen fcfa83154a stable to default (not like normal, many conflicts...) 2013-11-12 17:44:12 +00:00
Simon MacMullen c87a2e4d85 Merge in default. 2013-11-12 09:54:54 +00:00
Simon MacMullen de1c0d3c88 Merge in default. 2013-11-04 17:50:52 +00:00
Simon MacMullen c3ba7f6bc1 Correct version check. 2013-11-04 13:06:16 +00:00
Simon MacMullen f7f2d4661a Oops, forgot to remove these. 2013-11-04 12:09:20 +00:00
Simon MacMullen dac1e06d12 Remove gen_server, just make LDAP calls direct from the channel. 2013-11-04 12:04:31 +00:00
Simon MacMullen 053f8ad87d Permit use of SSL options for LDAP client connections. 2013-10-24 14:49:10 +01:00
Simon MacMullen ff92510386 Don't attempt to define a default LDAP server that will likely be confusing. 2013-08-22 11:00:25 +01:00
Simon MacMullen 927b32b191 Remove 3-tuple variants of 'and' and 'or'. 2013-08-13 11:19:01 +01:00
Simon MacMullen 2cd07a3c07 Boolean logic, and some other small enhancements: an {equals, A, B} query which just compares strings for equality, and a shortcut ability to use a string constant "foo" instead of {string, "foo"}. 2013-08-07 17:02:12 +01:00
Simon MacMullen e9bfbe5b04 Cope better with missing attributes. 2013-08-07 16:58:54 +01:00
Simon MacMullen 8f70cf3ff5 s/VMware/GoPivotal/g 2013-07-01 10:49:10 +01:00
Simon MacMullen 2cb55fd1c7 Better error message than 'as_user_no_password'. 2013-05-22 17:47:26 +01:00
Matthias Radestock 9dae0ebe9b cosmetic 2013-04-09 13:00:43 +01:00
Matthias Radestock b36c04540e simplify 2013-04-09 13:00:20 +01:00
Matthias Radestock dbf909cb53 make macros referentially transparent 2013-04-09 12:19:55 +01:00
Matthias Radestock e0af90e920 cosmetic 2013-04-09 12:10:49 +01:00
Emile Joubert a918b9ec5a Update copyright 2013 2013-01-23 11:24:23 +00:00
Simon MacMullen 874b2f3c45 Merge default 2012-09-24 11:49:05 +01:00
Simon MacMullen 25a1617924 Clarity 2012-09-21 14:39:31 +01:00
Simon MacMullen 77444d8787 Log as if your life depended on it. 2012-09-21 14:20:06 +01:00
Simon MacMullen 9b63193228 Warn if we're started but not in auth_backends - probably a misconfiguration. 2012-09-21 12:00:12 +01:00
Simon MacMullen 7863d08fe3 Add a version of in_group which allows you to specify the attribute name. 2012-09-19 16:20:48 +01:00
Francesco Mazzoli 504cc4f65d Removed behaviour .hrl 2012-04-12 11:14:43 +01:00
Emile Joubert a8603736e9 Update copyright 2012 2012-02-02 17:21:48 +00:00
Simon MacMullen bdcb12bac4 Small optimisation noticed while testing this: some queries (like in_group) can return a huge amount of data which we ignore. 2012-01-09 13:03:27 +00:00
Simon MacMullen ed7f53d448 This is probably a more sensible default. 2012-01-09 12:19:28 +00:00
Simon MacMullen ae289ab26d dn_lookup_attribute / dn_lookup_base 2012-01-09 12:16:21 +00:00
Simon MacMullen b5ae6199a9 Merge in bug24663 2012-01-09 11:27:10 +00:00
Simon MacMullen 316434f570 Simplify 2012-01-09 11:01:02 +00:00
Simon MacMullen f002a31e24 as_user mode 2012-01-06 18:00:00 +00:00
Simon MacMullen 0b62fcde34 More error reporting. 2012-01-06 17:00:05 +00:00
Simon MacMullen d8a9e1a10a Improve error reporting. 2012-01-06 16:41:07 +00:00
Simon MacMullen cb72ea619e Don't require a groupOfNames objectClass, other objectClasses (e.g. group) are available and may even be more popular in the Real World (or at least that part of it which installs Microsoft Active Directory 2012 Server Enterprise Edition™®). 2011-12-05 18:36:36 +00:00
Simon MacMullen f755a224b4 Let's make the query language more complicated (and featureful!) 
This so needs better documentation...
 2011-10-27 18:27:56 +01:00
Simon MacMullen 8b6ab83b18 Disgraceful that we didn't have automated tests for so long! These are still pretty simple, but will have to do. 2011-10-27 16:52:58 +01:00
Alexandru Scvortov 42cb140807 auth_backend_ldap needs eldap 2011-09-27 11:12:18 +01:00
Alexandru Scvortov 7b54511464 merge default into bug24186 2011-08-16 14:02:38 +01:00
Alexandru Scvortov 4acceb7985 update .app.src from default 2011-08-16 13:59:47 +01:00
David Wragg 483ffeb7c6 The base .app file now lives in src/*.app.src 2011-06-17 14:43:47 +01:00
Simon MacMullen eb9d63981f Multiple tag queries, so we can actually decide on tags via LDAP. 2011-06-09 17:54:06 +01:00
Simon MacMullen 6258a349b9 Can't leave well enough alone 2011-06-09 17:36:10 +01:00
Simon MacMullen 47be41bc10 That crept in, but it's kinda useful since the underlying library won't log anything until the connection is up. Make it look right though. 2011-06-09 17:33:49 +01:00
Simon MacMullen 6a380a5bfb The simplest change to the ldap backend. It's hard to define tags via LDAP with this though. 2011-06-09 17:31:56 +01:00
Simon MacMullen 367ebd1659 refused response is a 3 tuple now 2011-01-06 12:39:19 +00:00
Simon MacMullen e60c025fdc Allow anonymous bind. 2010-12-03 14:11:56 +00:00
Simon MacMullen 5c2e7b6522 Support login without password (for SASL EXTERNAL). 2010-12-03 13:36:24 +00:00
Simon MacMullen 973d00ca4a in_group query. 2010-12-03 13:05:48 +00:00
Simon MacMullen a989ddecc9 ${user_dn} 2010-12-03 12:38:47 +00:00
Simon MacMullen faa8360b2a Do authz queries with an admin account. 2010-12-03 12:35:17 +00:00
Simon MacMullen 82f6b241e7 Allow queries to be different for different kinds of thing. TODO: explain what I'm on about. 2010-11-24 18:13:17 +00:00
Simon MacMullen 9731096168 Simplify init/1. 2010-11-24 17:44:08 +00:00
Simon MacMullen 69979e810c Only use one microlanguage for variable substitution. 2010-11-24 16:56:52 +00:00
Simon MacMullen d5006b3a81 Use the new spec 2010-11-24 11:42:42 +00:00
Simon MacMullen 6a8f5cf9e4 Rather more documentation. 2010-11-23 17:52:05 +00:00
Simon MacMullen 1e1d79fc0a Support a simple LDAP query. We can now control authorisation via LDAP. 2010-11-23 17:12:13 +00:00
Simon MacMullen f4cdf95d5b Start of queries, only trivial ones for now. 2010-11-23 13:13:20 +00:00
Simon MacMullen f89d220ac6 Close the connection when done, does wonders for your number of file descriptors. 2010-11-22 17:18:03 +00:00
Simon MacMullen a3e8822019 Add more configuration. 2010-11-22 17:02:52 +00:00
Simon MacMullen 3ad0564714 Compatibility. 2010-11-22 16:05:19 +00:00
Simon MacMullen d302c633b1 The simplest thing that could possibly work. You can authenticate as an LDAP user, but there are plenty of limitations. 2010-11-22 14:15:00 +00:00