b7f906e11f
merge branch 'stable'
2017-02-06 19:49:49 +03:00
de83ccd1ed
Update rabbitmq-components.mk
2017-02-06 19:23:48 +03:00
1284d3d662
Merge pull request #58 from rabbitmq/rabbitmq-server-1085
...
Add tests for topic authorisation consumption
2017-02-06 01:22:27 +03:00
7155eb0293
Update rabbitmq-components.mk
2017-02-02 17:16:51 +01:00
38f2f3b1d8
Merge branch 'master' into rabbitmq-server-1085
2017-01-31 17:30:18 +01:00
003c7921de
merge branch 'stable'
2017-01-31 18:17:55 +03:00
f4f1f2ab29
Update rabbitmq-components.mk
2017-01-31 18:06:22 +03:00
590c738639
Add tests for topic authorisation consumption
...
Part of rabbitmq/rabbitmq-server#1085
2017-01-20 13:37:51 +01:00
7d28a27966
Merge branch 'stable'
...
Conflicts:
test/system_SUITE.erl
2017-01-13 13:29:10 +01:00
65fa7d6c74
Handle plain string cases in match query
...
Fixes #56
2017-01-13 10:04:20 +01:00
71643a8aab
Merge branch 'master' into rabbitmq-server-505
2017-01-12 12:58:24 +03:00
b7c2fe7f24
Do not always match bidirectionnaly
...
Fixes #56
2017-01-12 10:39:20 +01:00
ac0a3fb65a
Merge branch 'stable'
2017-01-10 11:06:26 +01:00
fad730f714
Add default value for idle_timeout option
...
References #7
2017-01-10 11:05:01 +01:00
d77496c9e2
Formatting
2017-01-03 15:17:52 +08:00
aa1bf987c8
Implement check_topic_access callback
...
References rabbitmq/rabbitmq-server#505
2016-12-29 08:55:58 +01:00
c087a5419e
Merge branch 'master' into rabbitmq-server-505
2016-12-27 17:25:55 +01:00
b035ef104d
Use ^$ instead of '' in permission regex
...
'' is now failing (after removal of rabbit_control_main).
2016-12-27 17:24:00 +01:00
a256f447a0
Merge branch 'master' into rabbitmq-server-505
2016-12-27 17:07:36 +01:00
f13e6ac834
Destructure resource kind in function head
2016-12-26 15:32:15 +01:00
ea72800353
Support topic authorisation
...
Add all the resource options in the candidate variables for string substitutions.
This includes the routing key when publishing to an exchange topic. Let pass
when there is no match in the for clause for a topic resource (for backward
compatibility). This a best effort as some queries could fail when publishing
to a topic exchange, but we cannot know whether it's an omission of
the topic case in the query or the query actually blocks the topic.
Part of rabbitmq/rabbitmq-server#505
2016-12-26 11:28:29 +01:00
9edf1bed08
Support the new cli in tests
2016-12-23 12:17:00 +00:00
7dfca741df
Merge branch 'stable' of github.com:rabbitmq/rabbitmq-auth-backend-ldap
2016-12-15 12:28:13 +00:00
d05c53f2a0
merge from stable
2016-12-14 20:03:34 +00:00
da24ab1d4e
Travis CI: Import changes from rabbitmq-auth-backend-amqp
2016-12-12 12:46:11 +01:00
f137c94063
Merge branch 'stable'
2016-12-09 19:18:29 +01:00
3288717ed4
Update rabbitmq-components.mk
2016-12-08 19:14:43 +01:00
d566096a9c
Travis CI: Use Ubuntu Trusty image to have access to Elixir
...
Also, required `sudo` so a VM is used instead of a container. This makes
the test much longer, but allows us to install non-whitelisted packages
such as xsltproc.
2016-12-08 17:17:03 +01:00
dde4b0daca
Merge branch 'stable'
2016-12-07 15:33:04 +01:00
1f1496aecb
Update rabbitmq-components.mk
2016-12-07 14:51:53 +01:00
0856702916
Makefile: Add eldap to LOCAL_DEPS
...
[#130992027 ]
2016-12-06 15:37:33 +01:00
4c50cf1722
Makefile: Forgot PROJECT_MOD in previous commit
...
[#130992027 ]
2016-12-06 15:36:06 +01:00
636fb21b40
Move from .app.src to Makefile variables
...
This is the recommended way with Erlang.mk.
By default, the version is inherited from rabbitmq-server-release when
the source archive is created, or computed from git-describe(1) (see
`rabbitmq-components.mk`). One can override the version from the command
line by setting the `PROJECT_VERSION` variable.
[#130992027 ]
2016-12-06 15:32:08 +01:00
219ad71c81
Idle connection expiry tests
2016-12-01 18:03:46 +00:00
600c1b476d
Configure no timeout as infinity
2016-12-01 15:04:13 +00:00
881a5b3783
Close idle connections after timeout
2016-12-01 13:38:24 +00:00
150409d29b
Merge branch 'stable'
2016-11-29 21:13:14 +03:00
8120594c0b
Update rabbitmq-components.mk
2016-11-29 20:59:25 +03:00
be1cbd798a
Merge branch 'stable'
2016-11-25 10:55:46 +01:00
c3e97babac
Update rabbitmq-components.mk
2016-11-25 10:50:53 +01:00
5a3bf2a3db
Merge branch 'stable'
2016-11-25 10:29:07 +01:00
dde943c73e
Update rabbitmq-components.mk
2016-11-25 10:08:14 +01:00
12ef39bdb3
Merge branch 'stable'
2016-11-24 10:08:29 +01:00
d77725ee9c
Add rabbitmq_ct_client_helpers to TEST_DEPS
2016-11-24 10:06:09 +01:00
6384657b33
Merge branch 'stable'
2016-11-23 18:15:13 +01:00
82892db049
Update rabbitmq-components.mk
2016-11-23 18:05:59 +01:00
70374990f5
Merge branch 'stable'
2016-11-22 16:30:56 +00:00
dbd7ed8c46
Update erlang.mk
2016-11-22 16:18:11 +00:00
1505f19ac5
Update rabbitmq-components.mk
2016-11-22 16:16:28 +00:00
f7e7395a60
Update erlang.mk
2016-11-14 11:53:57 +01:00
43ce0879d2
Update rabbitmq-components.mk
2016-11-10 16:56:28 +01:00
46722b0ebc
Merge branch 'stable'
2016-09-23 14:48:56 +02:00
58ad81342d
Update rabbitmq-components.mk
2016-09-23 11:23:02 +02:00
89a0a0da64
Update erlang.mk
2016-09-22 17:56:08 +02:00
9c1bfc0f4e
rabbitmq_auth_backend_ldap.app: Depend on rabbit_common
2016-09-19 13:07:12 +02:00
40f0f233ce
Makefile: Explicitely list all DEPS
...
Sync rabbitmq-components.mk with rabbitmq-common to remove automatic
DEPS handling.
[#130086871 ]
2016-09-19 13:06:50 +02:00
12f32d0412
Update erlang.mk
2016-09-19 13:06:15 +02:00
72092cb572
Merge branch 'stable'
2016-09-15 16:38:37 +02:00
10e39c1e68
Update rabbitmq-components.mk
2016-09-15 15:45:51 +02:00
1b1568c5b2
Merge branch 'stable'
2016-09-02 15:55:29 +02:00
ab8126dbbd
Update rabbitmq-components.mk
2016-09-02 13:22:24 +02:00
eeb232fee0
Makefile: amqp_client is not a runtime DEPS
2016-09-02 12:20:49 +02:00
f7ea52ec1e
Makefile: No need to filter out rabbitmq_test from TEST_DEPS anymore
...
[#127356157 ]
2016-09-02 12:17:33 +02:00
1769ba19ec
Update rabbitmq-components.mk
2016-09-02 12:03:29 +02:00
c9127d1c67
merge branch 'stable'
2016-07-28 15:52:18 +01:00
7b8b27a4c6
Travis CI: Import changes from rabbitmq-shovel
2016-07-28 16:50:20 +02:00
416035cc74
configure openldap backend
...
allow ldap port to be overridden by environment
2016-07-28 15:28:35 +01:00
2cbda23bb1
Update rabbitmq-components.mk
2016-07-14 15:44:09 +03:00
9fb9b6c85c
Update rabbitmq-components.mk
2016-07-14 15:37:28 +03:00
7028a6428e
Update rabbitmq-components.mk
2016-07-14 13:38:07 +03:00
cf6d197b8b
Update rabbitmq-components.mk
2016-07-14 13:19:57 +03:00
24e6ef512d
Merge branch 'stable'
2016-06-30 14:33:32 +03:00
9331760d9e
Treat noSuchObject responses as 'false` during 'or' and 'and' clause evaluations
2016-06-30 11:06:18 +01:00
98937bc12e
Merge branch 'stable'
2016-06-29 14:05:56 +03:00
538f4dd740
ldap_seed => rabbit_ldap_seed
2016-06-29 13:54:35 +03:00
6b73e28d04
Make sure to run apt-get update first
2016-06-29 13:30:11 +03:00
4e6963baf5
setup openldap as part of vagrant provisioning
...
seed openldap as part of the test run
2016-06-29 10:33:25 +01:00
2461f04795
move to common test
2016-06-29 10:18:46 +01:00
a5aa0b91d1
Merge branch 'stable'
2016-06-01 02:03:03 +03:00
bfd41670cb
Modernize README
2016-06-01 02:02:53 +03:00
3592c61bd6
Merge branch 'stable'
2016-05-29 23:32:13 +03:00
5307b1f9df
Update rabbitmq-components.mk
2016-05-29 23:21:53 +03:00
a228a637f5
Update CONTRIBUTING.md, add CODE_OF_CONDUCT.md
2016-05-28 09:52:56 -07:00
fdaa316343
Update CONTRIBUTING.md, add CODE_OF_CONDUCT.md
2016-05-28 14:22:49 +03:00
b7d213835a
Merge branch 'stable'
2016-05-22 22:13:33 +03:00
412d3a11c4
onelevel => single_level; compile from scratch
2016-05-22 21:42:55 +03:00
f2a92bf029
Merge branch 'stable' into rabbitmq-auth-backend-ldap-3
2016-05-22 21:20:30 +03:00
f9aa6675de
Merge branch 'stable'
2016-05-18 13:22:06 +01:00
be4d376e1b
Update rabbitmq-components.mk
2016-05-18 12:47:59 +01:00
b8cb65238d
Merge pull request #44 from rabbitmq/rabbitmq-server-546
...
Use erlang 18.3 only in travis
2016-05-17 12:03:54 +03:00
5088e89065
Update rabbitmq-components.mk
2016-05-17 11:17:51 +03:00
de6df97ed2
Update rabbitmq-components.mk
2016-05-17 10:16:07 +03:00
6c8e911a2e
Make search scope for nested groups configurable
2016-05-12 15:50:22 +01:00
a0f0f5f6e7
Testing and refactoring
2016-05-12 13:53:54 +01:00
9dbbd38494
Recursive search for parent groups
2016-05-12 11:09:09 +01:00
940d1c526d
Use erlang 18.3 only in travis
2016-05-12 10:58:25 +01:00
377dd00730
Merge branch 'stable'
2016-05-11 15:07:45 +01:00
396e55dfdc
Line feeds after connection logs
2016-05-11 15:07:24 +01:00
39ab33c438
Merge branch 'stable'
2016-05-03 15:23:19 +03:00
53f50a5448
Test against 18.1 through 18.3, too
...
This issue is version-specific.
2016-05-03 15:10:24 +03:00
9da1237841
Wording
2016-05-03 14:26:37 +03:00
61aef2f452
Log LDAP connection error with rabbit_log:warning
2016-05-03 12:14:48 +01:00
36b9a4d761
Wording
2016-05-03 14:03:25 +03:00
6ad5f20a50
Workaround for closing already closed ldap connection
2016-05-03 11:43:22 +01:00
aa56abbcaf
Merge branch 'stable'
2016-04-29 12:19:13 -05:00
9d27275180
Merge pull request #39 from rabbitmq/rabbitmq-auth-backend-ldap-35
...
Bumps up default LDAP connection worker pool size to 64.
2016-04-29 11:02:36 -05:00
a8ad2f5b4c
Merge branch 'stable'
2016-04-29 15:39:40 +01:00
2733f84235
Ignore scrubbing operations for 'false' log level.
2016-04-29 13:13:48 +01:00
d9f66b31c4
Extends scrubbing of bind request credentials to be
...
carried out on all log levels, except 'network_unsafe'.
2016-04-29 12:18:28 +01:00
15d27896e5
Bumps up default connection worker pool size from 10, to 64.
2016-04-29 10:59:45 +01:00
cea5a1b89e
Adds logging test for 'network_unsafe' log option.
2016-04-28 17:43:42 +01:00
37711e839e
Introduces and adds handling of 'network_unsafe' log type
...
option.
2016-04-28 17:43:42 +01:00
fd71d92db2
Introduces logging tests, and tests for scrubbing
...
bind request credentials in network traffic logs.
2016-04-28 17:43:42 +01:00
24ca70c7d6
Adds functionality to scrub credentials in LDAP network
...
traffic logs, for bind requests.
2016-04-28 17:43:42 +01:00
24da853084
Merge branch 'stable'
2016-04-28 15:53:35 +02:00
0331b9f98a
Updates tag check tests to accept test environment
...
variables as parameters.
2016-04-27 17:27:23 +01:00
c308460e15
Stub for broker_version_requirements
2016-04-22 14:42:18 +01:00
231d9ecea2
Merge branch 'stable'
2016-04-22 13:41:11 +01:00
b43f2d1d54
Adds tag checks/tests for variable tag queries.
...
Ref: #13
2016-04-21 17:39:06 +01:00
6638a19261
Adds tests for AMQP direct connections.
...
Adds tests for variable tag_queries, for direct connections only.
Ref: #13 .
2016-04-20 12:27:55 +01:00
826a2493b1
Adds handling of VHost substitution for tag_queries.
...
Ref: #13 .
2016-04-20 12:27:55 +01:00
8406c0cf77
Merge branch 'stable' into rabbitmq-auth-backend-ldap-15
2016-04-20 11:04:55 +01:00
f60fc8beea
Test tag attribution with more suitable fixtures
...
These make testing against different backend configurations (for
access control) easier to read.
2016-04-19 13:30:45 +00:00
deaabf9990
DO NOT MERGE: Make tag query tests more like integration/system tests
2016-04-19 07:05:47 +00:00
7e3e4fb4eb
Cosmetics
2016-04-18 14:23:00 +01:00
1ce53182f0
Updates multi atrributes formatting to use string:join/2.
...
Updates is_multi_attr_member/2 to use a short-circuit expression.
Ref: #16 .
2016-04-18 14:23:00 +01:00
95b9fe8711
Adds success and failure tests for handling multiple attributes,
...
using the 'memberOf' attribute.
Adds filter lists per 'login' case.
Cosmetics.
Ref: #16 .
2016-04-18 14:23:00 +01:00
15b692ed3c
Updates LDAP 'match' query to carry out a bidirectional match, in
...
case the REQuery returned multiple attributes, i.e. RE strings.
Adds a format_multi_attr/3 match all clause.
Ref: #16 .
2016-04-18 14:23:00 +01:00
233ac0a712
Adds posix test user accounts, 'Carol' and 'Peter'.
...
Adds test user 'Peter' to all test groups.
Ref: #16 .
2016-04-18 14:23:00 +01:00
d42a89235b
Adds 'staff' LDAP testing group.
...
Ref: #16 .
2016-04-18 14:23:00 +01:00
8911fbf049
Adds 'memberOf' attribute overlay configuration.
...
Ref: #16 .
2016-04-18 14:23:00 +01:00
cdef94e5ac
Adds handling of multiple attribute values, and
...
multiple LDAP entries for the 'attribute' query.
Ref: #16
2016-04-18 14:23:00 +01:00
45a5ff0311
Test tag attribution by configuring from within the test-suite
...
Put the necessary configuration in the test itself, testing a more
complex assortment of tag queries, rather than in the configuration
file. Introduce another user into the LDAP server for this
test. Revert the `management` tag query, in the configuration file, to
a trivial constant query.
2016-04-14 14:20:48 +00:00
4d276c440f
Merge branch 'stable'
2016-03-29 16:09:08 +03:00
b19915b617
Discard error tuples in the result of a tag query
...
A single `{error, ...}` meant that a user wouldn't have any tags
attributed to them. Their authorization would fail entirely if any one
of the tag queries failed with an error tuple.
2016-03-29 11:08:05 +00:00
d1de42b792
Test a less trivial pattern for tagged queries
...
As things stand, rather than a boolean value, this (slightly more
complex) query will return an error tuple. Consequently, NO tags are
attributed to the user by the LDAP plugin, even those tags that have
NOTHING to do with the tag in question.
2016-03-29 10:18:45 +00:00
bc6baed9b0
Mention how to run the test suite multiple times
2016-03-26 05:32:22 -07:00
04660b050f
Update README-tests.md
2016-03-26 05:32:22 -07:00
e7ad5e6485
Merge branch 'stable' into rabbitmq-auth-backend-ldap-24
2016-03-26 05:27:52 -07:00
2a1fc7d46f
Use common placeholder names instead of former of current team members
2016-03-25 11:07:14 +00:00
212494360f
Update rabbitmq-components.mk
2016-03-25 11:07:14 +00:00
e65a0e5fbf
Merge pull request #27 from rabbitmq/rabbitmq-server-550
...
Cuttlefish schema
2016-03-24 00:29:17 +03:00
33e9ae8b05
Update rabbitmq-components.mk
2016-03-23 17:13:38 +03:00
4a13ccdeb5
Use full module name in configuration schema
...
"ldap" works well but that's not the case for, say, the http
backend and we need to keep things consistent.
2016-03-23 09:38:02 +03:00
929f3f30ee
Test the tags that should be recognised for a user
...
We were only testing for the absence of tags configured with the LDAP
plugin.
2016-03-18 14:52:03 +00:00
a3749adf44
Delete duplicate entry in the test-suite configuration
...
There were two entries for the same parameter in the configuration
file. It was natural to base assumptions for the test-suite on the
second entry which was more visible. But the first entry was retrieved
from the application's environment so someone could easily make wrong
assumptions.
2016-03-18 14:29:34 +00:00
58ca92a4ae
Test that non-existent credentials fail to authenticate a client
2016-03-10 08:20:24 +00:00
4ee2746430
Test with consistent use of macro substitution for username
...
Make it clear that credentials are not the subjects under test in
these negative cases by using the same macro that is used elsewhere.
2016-03-10 07:41:45 +00:00
8e9df51d44
More config options in sysctl format
2016-03-04 11:55:19 +00:00
67d434a6de
'none' option for dn_lookup config
2016-03-02 18:14:01 +00:00
988a914688
none option for ldap_servers
2016-02-26 14:43:13 +00:00
e770563510
cuttlefish schema
2016-02-19 11:29:32 +00:00
0c4ccb56fc
Update README-tests
2016-02-02 15:42:25 -08:00
1cd6607e58
Move README files to Markdown
2016-02-02 15:42:11 -08:00
31496fb888
Update README-tests
2016-02-02 15:38:27 -08:00
48f4be6926
Move README files to Markdown
2016-02-02 15:37:35 -08:00
83c22ce905
Update (c) info
2016-01-01 12:59:16 +03:00
c53720ab1e
.gitignore: make absolute paths relative
2015-12-28 18:03:15 +03:00
9bb54c4775
Update erlang.mk
2015-12-18 20:33:39 +01:00
dddcdcb9bf
Sync with upstream build.config
2015-12-18 20:33:03 +01:00
d31e55fc99
Update rabbitmq-components.mk
2015-12-18 19:08:07 +01:00
a7bf6cd593
Update rabbitmq-components.mk
2015-12-18 19:48:07 +03:00
6626bcd88b
Add Travis CI configuration
2015-12-14 12:57:10 +01:00
fad9ce5aec
Update rabbitmq-components.mk
2015-12-03 15:38:47 +01:00
8753c21b7c
Update rabbitmq-components.mk
2015-12-01 18:36:20 +01:00
89cf1e5748
Update rabbitmq-components.mk
2015-12-01 16:17:18 +01:00
aba7c19cfb
Update rabbitmq-components.mk
2015-11-30 09:14:47 +01:00
d29c364690
Update rabbitmq-components.mk
2015-11-26 08:54:10 +01:00
af864f08ad
Update rabbitmq-components.mk
2015-11-26 08:41:22 +01:00
2af42062d3
Update erlang.mk
2015-11-25 10:35:51 +01:00
d09b2e3ed6
Update rabbitmq-components.mk
2015-11-25 10:35:22 +01:00
470bcc355c
Update rabbitmq-components.mk
2015-11-20 10:52:04 +01:00
92401cba50
Update erlang.mk
2015-11-19 14:31:39 +01:00
30a5d24e7f
Update erlang.mk
2015-11-18 19:14:22 +01:00
a7a75c7731
Update erlang.mk
2015-11-18 17:41:58 +01:00
7527c8d1d2
Update erlang.mk
2015-11-10 13:12:08 +01:00
39b987bea5
Update rabbitmq-components.mk
2015-11-10 13:11:16 +01:00
98d7766641
Update rabbitmq-components.mk
2015-11-05 20:51:33 +00:00
d002a73b01
Update rabbitmq-components.mk
2015-11-03 15:12:28 +01:00
3ec8b05660
Update rabbitmq-components.mk
2015-11-02 10:20:49 +01:00
8b4d125f65
Update rabbitmq-components.mk
2015-10-30 17:32:54 +01:00
ba57acb5cf
Update erlang.mk
2015-10-28 11:15:47 +01:00
32a507d80f
Update rabbitmq-components.mk
2015-10-28 11:10:35 +01:00
ac11dde66f
DEPS: Remove rabbit
2015-10-26 18:11:03 +01:00
b05a40c688
Update erlang.mk
2015-10-26 15:33:13 +01:00
40bc43bbe1
Update rabbitmq-components.mk
2015-10-26 11:15:25 +01:00
3efad1a278
Update rabbitmq-components.mk
2015-10-26 10:21:14 +01:00
1750635d75
Makefile: `test` is an alias to `tests`
2015-10-26 10:17:06 +01:00
7900ac239b
Adapt .travis.yml to erlang.mk
2015-10-23 20:03:29 +02:00
a13efd30be
Update erlang.mk's build.config
2015-10-23 19:38:43 +02:00
c54d3ffad0
Update erlang.mk
2015-10-23 18:32:31 +02:00
5a81560072
Update rabbitmq-components.mk
2015-10-23 16:05:40 +02:00
ed81902131
Update erlang.mk
2015-10-22 18:34:11 +02:00
e87f01e549
Update rabbitmq-components.mk
2015-10-19 17:35:43 +02:00
35da776c3f
Update erlang.mk
2015-10-19 17:28:08 +02:00
35a4fc9ef0
Update rabbitmq-components.mk
2015-10-19 17:28:08 +02:00
8a454c5452
Initial move to erlang.mk
2015-10-19 17:28:08 +02:00
12fece211b
Merge branch 'stable'
2015-10-05 22:25:56 +03:00
dcec40cf31
Port .travis.yml from master
2015-10-05 22:24:58 +03:00
504d0dec93
Tweaks for travis build
2015-10-05 22:12:02 +03:00
e2d3d2e983
Kick off a travis build
2015-10-05 21:59:25 +03:00
6805c14b72
Make sure slapd is installed
2015-10-05 21:58:03 +03:00
7f8fe85518
Merge branch 'travis-ci-testing' of git://github.com/gmr/rabbitmq-auth-backend-ldap into gmr-travis-ci-testing
2015-10-05 21:57:15 +03:00
cd59c66c5a
Merge branch 'stable'
2015-10-05 21:56:33 +03:00
c599acdf33
Line things up a wee bit for consistency.
2015-10-05 18:17:50 +02:00
a240ecca34
Add test cases for mixed authentication&authorisation modules, check tags.
2015-10-05 17:47:25 +02:00
b862a6dfca
Allow test to specify backends dynamically.
2015-10-05 14:57:28 +02:00
018fae0c3f
Return the permission tags from an explicit separate authorization call.
2015-09-30 18:39:04 +02:00
c351b574a6
Add travis-ci configuration
2015-08-21 19:24:32 -04:00
ec977c4383
eldap-wrapper is useless now that Erlang R16B is required
...
Fixes #10 .
2015-08-03 18:55:25 +02:00
5fa779cdfa
(c) year
2015-05-24 04:48:04 +03:00
b50b8be85d
(c) year
2015-05-24 04:47:53 +03:00
44bad3a5ee
Extract seed.sh, add a couple more users for testing
2015-04-11 02:16:59 +03:00
5342ca95e3
Move connection error detection up a level to catch anon access error.
2015-03-30 17:45:10 +01:00
cf9789cf40
Move LDAP pool creation from app init to a boot step.
2015-03-30 16:45:44 +01:00
54ac8655d6
Recover from closed connection to server.
2015-03-30 15:11:25 +01:00
ecf97d5024
Minor cleanups
...
Factor out the rebinding bit to stop the function getting out of hand,
reinstate a TODO since while better it is still not perfect, clean up
a few indent issues to conform to our poorly documented code standards.
2015-03-27 12:38:19 +00:00
c8e08397e9
Merge branch 'master' into pull-request-83-fixups
2015-03-27 12:21:53 +00:00
4d2cb36283
Make LDAP worker pool size configurable.
2015-03-25 17:15:11 +00:00
1ea66f0ce9
use worker_pool from rabbitmq-server
...
...instead of the NIH worker pool implementation. This assumes an as-yet
hypothetical modification to rabbitmq-server.
2015-03-24 18:18:02 +00:00
f0d6fa4094
Fix crash when performing tag query using invalid other_bind creds
...
Not actually harmful since the crash was caught higher up and
reinterpreted as "permission denied" anyway, but this give us cleaner
logs.
2015-03-10 11:15:38 +00:00
afb38b8747
use a pool of workers which cache connections
2015-03-06 17:41:05 +00:00
e64c959d69
Sync CONTRIBUTING.md with the template one
2015-02-20 17:08:20 +03:00
d665d9e5c8
Merge branch 'stable'
2015-02-19 18:13:23 +01:00
49608a2e0e
Convert .hgignore to .gitignore
2015-02-19 17:26:02 +01:00
07b93ff379
Merge branch 'stable'
...
Conflicts:
src/rabbit_auth_backend_ldap.erl
2015-02-19 14:08:12 +00:00
0e4b00fc80
If other_bind is not set to as_user, establish a new LDAP connection to perform tag queries against.
2015-02-19 13:31:01 +00:00
f8af637da5
Sync CONTRIBUTING.md with the template one
2015-02-18 00:24:35 +03:00
b5b89cc6c9
Merge branch 'stable'
2015-02-17 21:09:57 +01:00
24070da6db
Remove the "moved to GitHub" warning.
2015-02-17 21:09:44 +01:00
e9874b1306
stable to default
2015-02-17 17:56:08 +01:00
76f5a0c5ee
README: Warn about the move to GitHub
2015-02-17 17:55:55 +01:00
a748c62326
stable to default
2015-01-09 13:23:46 +00:00
6989477b6e
Oops
2015-01-09 13:23:21 +00:00
3afc96688f
stable to default
2015-01-09 13:14:23 +00:00
20644f08d1
Fix fill escaping, plus a test.
2015-01-09 13:04:19 +00:00
384dddbbcd
Merge bug26469
2014-11-14 17:41:01 +00:00
253f3a2f46
API changes.
2014-11-14 14:18:10 +00:00
5f5cd354a6
Modern Debianbuntu packages ldapadd seperately.
2014-11-13 16:15:00 +00:00
0013748edd
API changes.
2014-11-13 16:14:20 +00:00
59fa43fb49
Warn on no LDAP server.
2014-11-13 16:06:48 +00:00
0493972c89
Fix the SSL options for TLS too. Make sure we compare the unfixed version with [], since the fixed version will never be [].
2014-10-20 16:11:12 +01:00
6896285abf
Disable SSLv3.
2014-10-20 14:47:21 +01:00
c10afcca73
We do xref checks against R13B03, stop breaking them.
2014-07-02 16:01:44 +01:00
6118a1598e
Ooops
2014-07-01 17:05:26 +01:00
e62de3b49a
StartTLS support
2014-07-01 17:02:23 +01:00
843a9bc76c
ensure_ssl/0 if we need to, and move a comment to where it should be.
2014-05-19 17:41:44 +01:00
09d4acdc82
Update copyright for 2014
2014-03-17 17:25:20 +00:00
e97a0d3b08
stable to default
2014-03-05 14:20:10 +00:00
f99e437af3
Ban unauthenticated logins.
2014-03-05 13:06:55 +00:00
4d18d982c1
Support connection timeout.
2014-02-19 11:08:41 +00:00
d49de1519a
Continue on our quest towards the world's most verbose logging.
2014-01-29 11:14:42 +00:00
f586ddd335
dn_lookup_bind option, and rather more tests for the login phase.
2014-01-28 17:56:25 +00:00
a4f581e9ed
Not sure of the value of this warning, but let's unbreak it anyway.
2014-01-20 15:16:15 +00:00
3a2986929a
stable to default
2014-01-14 16:08:34 +00:00
cc3f9c6b68
OpenLDAP is not guaranteed to return the DN as an attribute. AFAICS the object_name field should always be filled though, and always be the DN (RFC 4511, 4.5.2).
2014-01-14 16:08:10 +00:00
9cf92dbe3e
stable to default
2013-11-13 11:19:42 +00:00
e52bc903ac
Re-add the app module to do the backend check
2013-11-13 11:19:02 +00:00
fcfa83154a
stable to default (not like normal, many conflicts...)
2013-11-12 17:44:12 +00:00
c87a2e4d85
Merge in default.
2013-11-12 09:54:54 +00:00
de1c0d3c88
Merge in default.
2013-11-04 17:50:52 +00:00
c3ba7f6bc1
Correct version check.
2013-11-04 13:06:16 +00:00
f7f2d4661a
Oops, forgot to remove these.
2013-11-04 12:09:20 +00:00
dac1e06d12
Remove gen_server, just make LDAP calls direct from the channel.
2013-11-04 12:04:31 +00:00
053f8ad87d
Permit use of SSL options for LDAP client connections.
2013-10-24 14:49:10 +01:00
ff92510386
Don't attempt to define a default LDAP server that will likely be confusing.
2013-08-22 11:00:25 +01:00
927b32b191
Remove 3-tuple variants of 'and' and 'or'.
2013-08-13 11:19:01 +01:00
2cd07a3c07
Boolean logic, and some other small enhancements: an {equals, A, B} query which just compares strings for equality, and a shortcut ability to use a string constant "foo" instead of {string, "foo"}.
2013-08-07 17:02:12 +01:00
5e6ee7b90f
stable to default
2013-08-07 16:59:37 +01:00
e9bfbe5b04
Cope better with missing attributes.
2013-08-07 16:58:54 +01:00
27166aeb7c
emacs-mode for config.
2013-08-07 15:40:01 +01:00
8f70cf3ff5
s/VMware/GoPivotal/g
2013-07-01 10:49:10 +01:00
2cb55fd1c7
Better error message than 'as_user_no_password'.
2013-05-22 17:47:26 +01:00
9dae0ebe9b
cosmetic
2013-04-09 13:00:43 +01:00
b36c04540e
simplify
2013-04-09 13:00:20 +01:00
dbf909cb53
make macros referentially transparent
2013-04-09 12:19:55 +01:00
e0af90e920
cosmetic
2013-04-09 12:10:49 +01:00
0fdb311992
Some people are still linking to this in various repos, the web site is better.
2013-03-11 14:32:44 +00:00
a918b9ec5a
Update copyright 2013
2013-01-23 11:24:23 +00:00
f618ced77f
Remove docs since they're on the web now.
2012-12-14 10:13:45 +00:00
874b2f3c45
Merge default
2012-09-24 11:49:05 +01:00
25a1617924
Clarity
2012-09-21 14:39:31 +01:00
6dc59a5be2
Although this is not a doc bug, while I'm here expand the example a bit.
2012-09-21 14:29:31 +01:00
62819cb8e7
Doc tweak
2012-09-21 14:22:10 +01:00
77444d8787
Log as if your life depended on it.
2012-09-21 14:20:06 +01:00
9b63193228
Warn if we're started but not in auth_backends - probably a misconfiguration.
2012-09-21 12:00:12 +01:00
7863d08fe3
Add a version of in_group which allows you to specify the attribute name.
2012-09-19 16:20:48 +01:00
504cc4f65d
Removed behaviour .hrl
2012-04-12 11:14:43 +01:00
ab968472bd
Attempt to frighten the children less
2012-03-22 12:26:33 +00:00
a8603736e9
Update copyright 2012
2012-02-02 17:21:48 +00:00
d6d22dfd03
Update copyright 2012
2012-02-02 12:45:09 +00:00
bdcb12bac4
Small optimisation noticed while testing this: some queries (like in_group) can return a huge amount of data which we ignore.
2012-01-09 13:03:27 +00:00
f4ef39084f
Docs
2012-01-09 12:45:37 +00:00
ed7f53d448
This is probably a more sensible default.
2012-01-09 12:19:28 +00:00
ae289ab26d
dn_lookup_attribute / dn_lookup_base
2012-01-09 12:16:21 +00:00
b5ae6199a9
Merge in bug24663
2012-01-09 11:27:10 +00:00
316434f570
Simplify
2012-01-09 11:01:02 +00:00
f002a31e24
as_user mode
2012-01-06 18:00:00 +00:00
0b62fcde34
More error reporting.
2012-01-06 17:00:05 +00:00
d8a9e1a10a
Improve error reporting.
2012-01-06 16:41:07 +00:00
Michael Klishin
Michael Klishin
Jean-Sébastien Pédron
Arnaud Cogoluègnes
Daniil Fedotov
kjnilsson
Michael Klishin
Gerhard Lazu
kjnilsson
Karl Nilsson
Ayanda Dube
Joseph Yiasemides
Pierre Fenoll
Jean-Sébastien Pédron
Robby Raschke
Gavin M. Roy
Alex Thomas
Simon MacMullen
ash-lshift
Matthias Radestock
Emile Joubert
Francesco Mazzoli