Feature #754

Update Auth Drivers to make use of the new ACL engine

Added by Ruben S. Montero almost 10 years ago. Updated almost 10 years ago.

Status:ClosedStart date:07/27/2011
Priority:NormalDue date:
Assignee:Ruben S. Montero% Done:

0%

Category:Drivers - Auth
Target version:Release 3.0
Resolution:fixed Pull request:

Description

In order to update the existing drivers we need:
  • Extend the communication protocol to include ACL information
  • Rewrite the driver skeleton
Also the new drivers would:
  • Adopt the same structure as the VMM, IM & TM drivers
  • Use multiple authentication mechanisms at the same time

Related issues

Precedes Feature #521: X509 Authorization Closed 07/28/2011 07/28/2011

Associated revisions

Revision 2a0b2818
Added by Ruben S. Montero almost 10 years ago

feature #754: Fix bug creating client. Allows multiple ':' in auth string

Revision b421a874
Added by Ruben S. Montero almost 10 years ago

feature #754: simple driver that implements plain auth (that in OpenNebula core). Removed debug messages

Revision 64fddb09
Added by Ruben S. Montero almost 10 years ago

feature #754: Missing ssh library for auth drivers

Revision 6b7628c2
Added by Tino Vázquez almost 10 years ago

feature #754: New dummy authN protocol

Revision 3c369e67
Added by Tino Vázquez almost 10 years ago

feature #754: Add dummy authenticate script

Revision 7347a369
Added by Ruben S. Montero almost 10 years ago

feature #754: Basic X509 authorization

Revision 15b9d5da
Added by Ruben S. Montero almost 10 years ago

feature #754: Simple loginx509 option for oneauth. Needs merge with current login option

Revision 7c362c64
Added by Ruben S. Montero almost 10 years ago

feature #754: Bug when parsing the ONE_AUTH file

Revision 26387a9f
Added by Ruben S. Montero almost 10 years ago

feature #754: Removed uneeded parameters for x509 authenticate

Revision b4b5fc97
Added by Ruben S. Montero almost 10 years ago

feature #754: Moved proxy path creation to login function

Revision cc36e385
Added by Ruben S. Montero almost 10 years ago

feature #754: Include also the username in the security token

Revision 5406c948
Added by Ruben S. Montero almost 10 years ago

feature #754: Authentication based on X509 proxy certificates

Revision 1488d536
Added by Ruben S. Montero almost 10 years ago

feature #754: Validate X509 expiration times. Support for trusted CA's

Revision 2508c1fb
Added by Ruben S. Montero almost 10 years ago

feature #754: Rename proxy file name

Revision e7e96a9f
Added by Daniel Molina almost 10 years ago

feature #754: Change initialize parameters for SshAuth

Revision f0e959c7
Added by Daniel Molina almost 10 years ago

feature #754: Add PROXY_PATH constant

Revision 4ae6c2d8
Added by Daniel Molina almost 10 years ago

feature #754: Options can be defined without short value

Revision 37696520
Added by Daniel Molina almost 10 years ago

feature #754: Add CLI functionality for ssh and x509

Revision de067c38
Added by Ruben S. Montero almost 10 years ago

feature #754: removed unneeded reader attribute

Revision 3364d10e
Added by Ruben S. Montero almost 10 years ago

feature #754: Some formatting. Changed delete! & simple gsub with delete. Make use of class constant LOGIN_PATH

Revision 8cdf5e06
Added by Ruben S. Montero almost 10 years ago

feature #754: minor change

Revision 7ad661b5
Added by Ruben S. Montero almost 10 years ago

feature #754: Split login tokan generation and write login file

Revision 50de4242
Added by Ruben S. Montero almost 10 years ago

feauture #754: Included check of expiration times for the complete cert chain (from Ted). Do not modify cert_chain in validation

Revision 84b3ff38
Added by Ruben S. Montero almost 10 years ago

feature #754: Added a server based authentication using x509 certificates

Revision d44282c9
Added by Ruben S. Montero almost 10 years ago

feature #754: Support for proxy certificates in oneuser

Revision f3f2925b
Added by Ruben S. Montero almost 10 years ago

feature #754: Do not check trusted CA's if directory not specified

Revision cfbe1f18
Added by Ruben S. Montero almost 10 years ago

feature #754: Install server auth files

Revision 606ff234
Added by Ruben S. Montero almost 10 years ago

feature #754: Update authenticate to make use of new x509 auth class

Revision 23a97439
Added by Ruben S. Montero almost 10 years ago

feature #754: Removed unneeded files

Revision 986dcbbf
Added by Ruben S. Montero almost 10 years ago

feature #754: Better names for varibles.

Revision 3531a0f5
Added by Ruben S. Montero almost 10 years ago

feature #754: Authenticate file for server auth

Revision 5d45fc93
Added by Ruben S. Montero almost 10 years ago

feature #754: fix install bugs

Revision 304a8884
Added by Ruben S. Montero almost 10 years ago

feature #754: Fixing bugs...

Revision 2534cea8
Added by Ruben S. Montero almost 10 years ago

feature #754: Fixing bugs. login and create users based on x509 works

Revision 3409f9d6
Added by Ruben S. Montero almost 10 years ago

feature #754: Default for expiration time

Revision 48c0e065
Added by Ruben S. Montero almost 10 years ago

feature #754: Fix bugs for server authN

Revision 1b1d4f90
Added by Ruben S. Montero almost 10 years ago

feature #754: Missing require

Revision 4c9f95ad
Added by Ruben S. Montero almost 10 years ago

Feature #754: Update configuration files

Revision aa6f4c08
Added by Ruben S. Montero almost 10 years ago

feature #754: Encode template instead it's id in INSTANTIATE auth strings

Revision e38d385d
Added by Daniel Molina almost 10 years ago

feature #754: Add user_id to the authorize parameters

Revision c6e8767f
Added by Daniel Molina almost 10 years ago

feature #754: Add quota functionality

Revision daab17b4
Added by Ruben S. Montero almost 10 years ago

feature #754: If CA path is not defined, CAs will not be checked instead of raising an exception

Revision 5e67ef24
Added by Ruben S. Montero almost 10 years ago

feature #754: Removed comment

Revision 719b509d
Added by Daniel Molina almost 10 years ago

feature #754: Improve get_usage method

Revision 304b82f0
Added by Ruben S. Montero almost 10 years ago

feature #754: Revert CA check c1338c737a99af573ce8ab3eb41ec9f72ed1ee

Revision 43b79a3e
Added by Ruben S. Montero almost 10 years ago

feature #754: Fix problem parsing cert chains. Includes conf files for server and x509 authN methods

Revision 40efd2ea
Added by Ruben S. Montero almost 10 years ago

feature #754: Fix typo in constant

Revision a94219ee
Added by Ruben S. Montero almost 10 years ago

feature #754: Removed quota from 754 branch to moved its development to another branch

Revision f75fd602
Added by Ruben S. Montero almost 10 years ago

feature #788: Quota files from #754 branch

Revision 26996edc
Added by Javi Fontan almost 10 years ago

bug #754: new man pages with the format error fixed

Revision 139a0943
Added by Javi Fontan almost 10 years ago

bug #754: new man pages with the format error fixed
(cherry picked from commit 26996edcb33c81191629187cb38b0d436f887a85)

History

#1 Updated by Ruben S. Montero almost 10 years ago

  • Status changed from New to Closed
  • Resolution set to fixed

Also available in: Atom PDF