2299ff77a2
Update rabbitmq-components.mk
2019-03-15 05:32:46 +03:00
40a82dc8ea
Update rabbitmq-components.mk
2019-03-15 05:05:37 +03:00
78ea5109b1
Update rabbitmq-components.mk
2019-02-12 23:23:47 +03:00
2dc4442a73
Drive by change: use a Bionic VM to run OpenLDAP for tests
2019-02-08 03:43:05 +03:00
52d7cba41d
Drive by change: Lager adds a trailing new line
2019-02-08 03:42:16 +03:00
866f50790f
replace rabbit_log by rabbit_log_ldap
2019-02-08 01:48:10 +03:00
ebe0e0271c
.travis.yml: use 21.2 as 21.2.2 builds are no available
2019-01-14 01:20:17 +03:00
a9625cac82
.travis.yml: sync Erlang and Elixir versions, require Erlang/OTP 21.2
2019-01-13 05:49:56 +03:00
4f8decdc24
Update rabbitmq-components.mk
2019-01-09 12:54:54 -08:00
ac28c24f41
Update rabbitmq-components.mk
2019-01-08 11:58:23 -08:00
1c493191d9
Update rabbitmq-components.mk
2018-12-06 18:28:39 +03:00
2046b6e8cf
Update rabbitmq-components.mk
2018-12-06 03:15:05 +03:00
0437bdfcec
Update rabbitmq-components.mk
2018-11-30 14:56:45 +01:00
555f64f0f4
Update rabbitmq-components.mk
2018-11-22 09:19:30 +01:00
dab0ccc006
Rather than crash return error if search results in referrals
...
Fixes #97
The case of a referral being returned has only been brought up once. For now, return an error. If this turns out to be a more common case, the referral URL should be parsed and chased.
2018-11-02 15:44:20 -07:00
51e1a16a93
Add failing test for rabbitmq/rabbitmq-auth-backend-ldap#100
2018-11-02 11:59:25 -07:00
f8fd4393e1
Fix LDAP evaluation resulting in list of strings.
...
The previous code tries to do weird things by exchanging the arguments being put in to re:run(). Bidirectional match might seem to work when the regular expression is just a couple of plaintexts, but is actually really wrong and also causes confusing log messages when your RE-expression end up in the string matching.
Secondly it seemed to handle multi-valued LDAP results by concatenating them into strings like "First_item;second_item" which makes for very interesting results when you try to match against R.Es like ^read$
This change guards against cases when the LDAP query evaluates to a list and fallbacks to regular do_match when the arguments aren't lists of strings.
2018-11-02 11:59:10 -07:00
fbb9aa1dd8
Add user_bind_pattern to schema
...
See #102
2018-10-30 19:34:23 -07:00
85dcb36ce6
Add user_bind_pattern
...
This allows using a different pattern during the "simple bind" phase. If `user_bind_pattern` is defined, it is used, otherwise fall back to `user_dn_pattern`
Related to #98 and #99
(cherry picked from commit 7f32abde3b
2018-10-31 02:43:38 +03:00
3089f803b5
Update rabbitmq-components.mk
2018-10-29 12:43:14 +00:00
300004dfc6
Add unit test for ad_domain / ad_user
2018-10-26 12:55:20 -07:00
d2452b6cc4
Tokenize NetBIOS logins on the backslash character
...
Fixes #98
This allows `Domain\User` to be used in templates via `${ad_domain}` and `{$ad_user}`
See the following discussion: https://groups.google.com/d/topic/rabbitmq-users/mK87YcRy4vQ/discussion
2018-10-26 12:41:16 -07:00
d71cb07f37
Update rabbitmq-components.mk
2018-09-19 10:38:10 +02:00
fad05a5eae
Update rabbitmq-components.mk
2018-09-11 14:22:24 +02:00
371fb402d1
Update git-commit-msgs link
2018-08-28 16:18:41 -07:00
c6dc023f24
Update rabbitmq-components.mk
2018-08-09 17:44:10 +02:00
fed0001328
Update rabbitmq-components.mk
2018-08-09 12:16:56 +02:00
4888a008cf
Accept authentication context in user_login_authorization/2
...
Part of rabbitmq/rabbitmq-server#1633.
[#158805410 ]
2018-07-03 23:30:23 +03:00
e0dda13ef6
Allow auth_ldap.dn_lookup_bind to be set to anon in rabbitmq.conf, closes #94
...
[#158471902 ]
2018-06-19 21:45:30 +03:00
0ef23f21f6
Update rabbitmq-components.mk
2018-06-07 11:31:31 +02:00
c4b32a9961
Log message wording
...
[#157966354 ]
2018-05-31 01:58:20 +03:00
cdd7deeb6e
Purge defunct connections in more cases
...
Fixes #92
This PR will purge defunct connections in a few more cases than before.
2018-05-30 15:02:02 -07:00
f3b7a33379
Update erlang.mk
2018-04-11 10:52:38 +02:00
e8138bb72a
Update rabbitmq-components.mk
2018-04-11 10:51:16 +02:00
5f6e9d1837
Update rabbitmq-components.mk
2018-04-11 10:09:58 +02:00
a584c291f6
Travis CI: Update config from rabbitmq-common
2018-04-10 12:55:49 +02:00
3ffc1255b1
Log this as a warning
2018-03-28 18:44:52 +03:00
e9e9d7ea2a
Extract a constant
2018-03-28 00:20:45 +03:00
4eb46af59d
Handle gen_tcp errors here, too
2018-03-28 00:12:28 +03:00
62b259873c
Retry LDAP operations on eldap reported connection errors
...
* This will retry up to 10 times when eldap reports a connection
or gen_tcp error.
Closes #90 , references #82 .
[#156324176 ]
2018-03-27 23:21:32 +03:00
88f5728649
Make it possible to configure TLS options via auth_ldap.ssl_options
...
Much like we do for the server.
Closes #88 .
[#156159684 ]
2018-03-22 01:18:58 +03:00
229a64f5c2
Make it possible to configure group_lookup_base via new style config file
...
See #85 for justification. Closes #85 .
[#156122704 ]
2018-03-20 14:56:06 +03:00
3ee2352a93
Ninja fix for #86
...
Closes #86 .
[#156123202 ]
2018-03-20 14:38:09 +03:00
8f30e77ace
Merge pull request #83 from rabbitmq/rabbitmq-auth-backend-ldap-81
...
Change idle_timeout default to 300 seconds
2018-03-14 19:33:19 +03:00
1518216c30
Timeouts are in milliseconds
2018-03-14 07:07:35 -07:00
2cbbc4ff31
Merge pull request #84 from rabbitmq/rabbitmq-auth-backend-ldap-82
...
Recreate LDAP connection and retry on all TCP socket errors
2018-03-14 05:46:21 +03:00
72864e84fb
Recreate LDAP connection and retry on all TCP socket errors
...
Not just 'closed'. Per discussion with @hairyhum, @lukebakken and @kjnilsson.
Closes #82 .
[#155865547 ]
2018-03-13 18:51:27 +03:00
70f2c2e43a
Explain how to override LDAP server port for running tests locally
2018-03-13 08:35:00 -07:00
8a5b769569
Correct target directory path in Vagrantfile
...
Since copying to ~ and ~/ are not the same thing.
2018-03-13 18:27:15 +03:00
93321e17cd
A more sensible TESTING.md
2018-03-13 18:24:30 +03:00
c10223cd6a
README-tests.md => TESTING.md
2018-03-13 08:13:20 -07:00
cd2193a273
Change idle_timeout default to 300 seconds
...
Closes #81 .
[#155865492 ]
2018-03-12 22:26:49 +03:00
7eae4190ce
Update erlang.mk
2018-03-02 19:03:58 +01:00
edda7e8421
Update rabbitmq-components.mk
2018-01-30 15:23:29 +01:00
e58c152143
Update rabbitmq-components.mk
2018-01-29 16:22:09 -08:00
73b01de911
Update rabbitmq-components.mk
2018-01-23 17:21:21 +01:00
52b59aa969
Update rabbitmq-components.mk
2018-01-23 15:31:10 +01:00
462f71b46d
Update rabbitmq-components.mk
2018-01-22 22:13:18 +00:00
6e6bba80d6
Merge branch 'master' into rabbitmq-auth-backend-ldap-78
2018-01-15 23:15:58 +03:00
682735669c
Add missing [single value] LDAP config properties to Cuttlefish schema
...
Plus tests for some keys that haven't had any.
Fixes #78 .
[#154330703 ]
2018-01-15 23:11:46 +03:00
05e262ab1c
Travis CI: Update config from rabbitmq-common
2017-12-15 15:10:46 +01:00
99c1553de7
Travis CI: Update config from rabbitmq-common
2017-12-15 14:50:45 +01:00
9c956234ee
Update rabbitmq-components.mk
2017-12-01 15:16:17 +01:00
1351465937
Update rabbitmq-components.mk
2017-12-01 11:06:14 +01:00
1ad2d6fc03
Update rabbitmq-components.mk
2017-11-28 14:00:37 +01:00
8c9854c703
Update rabbitmq-components.mk
2017-11-28 13:26:07 +01:00
e4d0e0a7c7
Travis CI: Update config from rabbitmq-common
2017-11-07 17:51:27 +01:00
ba914d16e3
Travis CI: Update config from rabbitmq-common
2017-11-07 17:31:40 +01:00
8664f8d4ec
Merge branch 'stable'
2017-11-07 17:31:36 +01:00
63d4e7e70f
Travis CI: Only compile-test
...
The testsuite requires an LDAP server. Until then, we can't run it.
[#152509619 ]
2017-11-07 16:56:07 +01:00
abe6cd0aed
Travis CI: Update config from rabbitmq-common
2017-11-07 16:49:05 +01:00
97a608e21a
Add GitHub templates and contributing doc
2017-10-13 15:52:11 -07:00
7ed4e1318c
Merge branch 'stable'
2017-10-13 15:05:01 +02:00
bd453c8d7a
Update rabbitmq-components.mk
2017-10-13 14:33:04 +02:00
aa9f1a63a8
Update rabbitmq-components.mk
2017-10-13 14:12:56 +02:00
6a0ea2dc02
Update rabbitmq-components.mk
2017-10-13 12:15:40 +02:00
d9d8f0baf5
Update rabbitmq-components.mk
2017-09-13 17:54:06 -04:00
130c80efd2
Update rabbitmq-components.mk
2017-09-13 17:45:24 -04:00
c45c9084df
Update rabbitmq-components.mk
2017-09-12 19:52:59 -04:00
a606758cd2
Update rabbitmq-components.mk
2017-09-12 12:41:45 -04:00
f993cffae3
Merge branch 'stable'
2017-08-30 19:20:16 +01:00
a78eab92e1
Update erlang.mk
2017-08-30 18:46:43 +01:00
ff059a6d35
Erlang/OTP 19.2 is now the minimum supported version.
...
Part of rabbitmq/rabbitmq-server#1305.
[#149563549 ]
2017-07-26 19:02:38 +03:00
cd71951c27
Update rabbitmq-components.mk
2017-07-26 03:48:16 +03:00
5464a06e19
Update rabbitmq-components.mk
2017-07-26 02:27:00 +03:00
344aba30d5
Handle map when in template arguments
...
An Erlang map is turned into several arguments. E.g.
{variable_map, #{username => guest, vhost = some-vhost}} is converted
into 2 arguments: variable_map.username=guest and variable_map.vhost=some-vhost.
Fixes #71
2017-06-30 16:38:50 +02:00
58178bf8ec
Update rabbitmq-components.mk
2017-06-12 20:12:48 +03:00
7447d8325d
Update rabbitmq-components.mk
2017-06-12 18:35:34 +03:00
89518b1f02
Merge branch 'stable'
2017-06-02 18:09:34 +03:00
190796dfd0
Update rabbitmq-components.mk
2017-06-02 17:51:22 +03:00
dbe766dfab
Update rabbitmq-components.mk
2017-06-02 00:43:17 +03:00
1885f4469f
Update rabbitmq-components.mk
2017-06-01 18:01:29 +03:00
37d4790125
Merge branch 'stable'
2017-05-16 18:01:08 +02:00
8a20cc579a
Makefile: Load the new `rabbitmq-early-plugin.mk` early-stage plugin
...
See the corresponding commit in rabbitmq-common for an explanation.
[#144697185 ]
2017-05-16 17:28:55 +02:00
8893f05399
Update erlang.mk
2017-05-16 17:28:49 +02:00
f20f4c0193
Merge branch 'stable'
2017-05-10 21:54:53 +03:00
e8a79c06bd
Add option to enable anonymous authentication
...
This will allow the user to enable the anon_auth flag in eldap in order
to be able to do a dn lookup by using anonymous authentication instead
of using a dedicated bind user.
2017-05-10 17:05:01 +00:00
6f487f5f5b
Replace dicts with maps for internal structures
2017-04-24 13:49:07 +01:00
32d566f362
Merge branch 'stable'
2017-04-22 01:10:06 +02:00
6bfa455084
Compile in non-test environment
...
Otherwise we are getting an unused function warning that's treated
as an error.
2017-04-22 01:05:34 +02:00
aa9a2a40aa
Remove a debug trace
2017-04-22 01:04:04 +02:00
4f4ff6c13e
Fix badmatch exception when purging connections
...
The exception stops timed out connections from
reconnecting successfully.
[#144015233 ]
2017-04-20 14:12:24 +01:00
f2515a6594
Merge branch 'stable'
2017-04-19 12:41:25 +02:00
03efafa318
Update erlang.mk
2017-04-19 12:00:27 +02:00
2d0afdcf8e
Merge branch 'stable'
2017-04-02 21:55:36 +03:00
33d51d0a8d
(c) year
2017-04-02 21:47:12 +03:00
4ce8acf5a2
Ignore test/config_schema_SUITE_data/schema/
2017-03-20 19:11:04 +03:00
cff8652d32
Config schema test for plugin
...
Part of [#141481501 ]
Moved from rabbitmq-server
2017-03-17 10:59:03 +00:00
627d472cb8
Default LDAP server port should be 389
...
See https://github.com/rabbitmq/rabbitmq-auth-backend-ldap/issues/63#issuecomment-284680951 .
It was changed to 3890 in 2461f04795Fixes #64 .
2017-03-10 15:45:33 +03:00
27d3ca81a9
Default LDAP server port should be 389
...
See https://github.com/rabbitmq/rabbitmq-auth-backend-ldap/issues/63#issuecomment-284680951 .
It was changed to 3890 in 2461f04795Fixes #64 .
2017-03-07 13:53:49 +03:00
07a50e7dcf
system_SUITE: Use os:getenv/1 instead of os:getenv/2
...
Only the former is available on Erlang R16B03. We handle the fallback to
a default value manually.
[#140575489 ]
2017-02-27 17:45:18 +01:00
f3c75f6b2e
Revert "Wording"
...
This reverts commit 1a554a3530
2017-02-20 15:03:53 +03:00
1a554a3530
Wording
2017-02-20 14:49:51 +03:00
aa4088a118
Hide LDAP error from clients
...
LDAP errors are logged to LDAP log,
so we can replace errors with generic messages like
`ldap_connect_error` to be reported to clients.
2017-02-20 11:11:56 +00:00
26933af449
Mention auth_backend_cache
2017-02-16 16:08:43 +03:00
45083bc69f
Update rabbitmq-components.mk
2017-02-11 23:29:20 +03:00
472c3b094f
Update rabbitmq-components.mk
2017-02-10 11:16:20 +03:00
19059563f8
Update rabbitmq-components.mk
2017-02-10 03:06:13 +03:00
f34c76f80f
Use auth_ldap for configuration prefix
2017-02-09 10:40:49 +00:00
fe214a0503
Shorter prefix for LDAP plugin conf keys
2017-02-08 18:13:14 +00:00
2712ee9768
merge branch 'stable'
2017-02-08 16:52:46 +03:00
abf7a27a29
Update rabbitmq-components.mk
2017-02-08 16:38:10 +03:00
b7f906e11f
merge branch 'stable'
2017-02-06 19:49:49 +03:00
de83ccd1ed
Update rabbitmq-components.mk
2017-02-06 19:23:48 +03:00
1284d3d662
Merge pull request #58 from rabbitmq/rabbitmq-server-1085
...
Add tests for topic authorisation consumption
2017-02-06 01:22:27 +03:00
7155eb0293
Update rabbitmq-components.mk
2017-02-02 17:16:51 +01:00
38f2f3b1d8
Merge branch 'master' into rabbitmq-server-1085
2017-01-31 17:30:18 +01:00
003c7921de
merge branch 'stable'
2017-01-31 18:17:55 +03:00
f4f1f2ab29
Update rabbitmq-components.mk
2017-01-31 18:06:22 +03:00
590c738639
Add tests for topic authorisation consumption
...
Part of rabbitmq/rabbitmq-server#1085
2017-01-20 13:37:51 +01:00
7d28a27966
Merge branch 'stable'
...
Conflicts:
test/system_SUITE.erl
2017-01-13 13:29:10 +01:00
65fa7d6c74
Handle plain string cases in match query
...
Fixes #56
2017-01-13 10:04:20 +01:00
71643a8aab
Merge branch 'master' into rabbitmq-server-505
2017-01-12 12:58:24 +03:00
b7c2fe7f24
Do not always match bidirectionnaly
...
Fixes #56
2017-01-12 10:39:20 +01:00
ac0a3fb65a
Merge branch 'stable'
2017-01-10 11:06:26 +01:00
fad730f714
Add default value for idle_timeout option
...
References #7
2017-01-10 11:05:01 +01:00
d77496c9e2
Formatting
2017-01-03 15:17:52 +08:00
aa1bf987c8
Implement check_topic_access callback
...
References rabbitmq/rabbitmq-server#505
2016-12-29 08:55:58 +01:00
c087a5419e
Merge branch 'master' into rabbitmq-server-505
2016-12-27 17:25:55 +01:00
b035ef104d
Use ^$ instead of '' in permission regex
...
'' is now failing (after removal of rabbit_control_main).
2016-12-27 17:24:00 +01:00
a256f447a0
Merge branch 'master' into rabbitmq-server-505
2016-12-27 17:07:36 +01:00
f13e6ac834
Destructure resource kind in function head
2016-12-26 15:32:15 +01:00
ea72800353
Support topic authorisation
...
Add all the resource options in the candidate variables for string substitutions.
This includes the routing key when publishing to an exchange topic. Let pass
when there is no match in the for clause for a topic resource (for backward
compatibility). This a best effort as some queries could fail when publishing
to a topic exchange, but we cannot know whether it's an omission of
the topic case in the query or the query actually blocks the topic.
Part of rabbitmq/rabbitmq-server#505
2016-12-26 11:28:29 +01:00
9edf1bed08
Support the new cli in tests
2016-12-23 12:17:00 +00:00
7dfca741df
Merge branch 'stable' of github.com:rabbitmq/rabbitmq-auth-backend-ldap
2016-12-15 12:28:13 +00:00
d05c53f2a0
merge from stable
2016-12-14 20:03:34 +00:00
da24ab1d4e
Travis CI: Import changes from rabbitmq-auth-backend-amqp
2016-12-12 12:46:11 +01:00
f137c94063
Merge branch 'stable'
2016-12-09 19:18:29 +01:00
3288717ed4
Update rabbitmq-components.mk
2016-12-08 19:14:43 +01:00
d566096a9c
Travis CI: Use Ubuntu Trusty image to have access to Elixir
...
Also, required `sudo` so a VM is used instead of a container. This makes
the test much longer, but allows us to install non-whitelisted packages
such as xsltproc.
2016-12-08 17:17:03 +01:00
Michael Klishin
Michael Klishin
Yury.Alioshinov
Luke Bakken
Jean-Sébastien Pédron
Joel Forsberg
kjnilsson
Jean-Sébastien Pédron
Michael Klishin
Diana Corbacho
Daniil Fedotov
Arnaud Cogoluègnes
William Tan