Project

General

Profile

Download (15.2 KB) Statistics
| Branch: | Tag: | Revision:

root/usr/local/www/system_usermanager_settings.php @ 16f9b391

# Date Author Comment
d799787e 08/26/2008 04:48 AM Matthew Grooms

Rework most of the OpenVPN support. The interfaces have been updated to
not use the pkg system and the configuration has been migrated to an
openvpn prefix. The centralized user and certificate manager is now used
to support the openvpn configurations. Most of the files removed in this...
64cc39d3 08/09/2008 12:06 AM Matthew Grooms

Implement a certificate authority and certificate webui that can be used
to centrally manage this data. There are no consumers at this time. This
interface allow for the following ...

Certificate Authority Manager:
- List certificates authorities
- Import existing certificate authority...
fbf672cb 08/05/2008 04:16 AM Matthew Grooms

Add an interface to manage external authentication servers. The two types
supported currently are LDAP and Radius.
659fa7f2 08/03/2008 05:54 PM Matthew Grooms

Cleanup authentication code. The basic auth method, the passwd, htpasswd
and pam backing functions have been removed. The basic auth method was
legacy code and the backing functions were redundant with no added value
that I could see. A simplified replacement backing function named...
6b07c15a 08/01/2008 06:30 AM Matthew Grooms

Rewrite the pfsense privilege system with the following goals in mind ...

1) Redefine page privileges to not use static urls
2) Accurate generation of privilege definitions from source
3) Merging the user and group privileges into a single set
4) Allow any privilege to be added to users or groups w/ inheritance...
5456326f 02/20/2008 07:13 PM Scott Ullrich

Remove the statement Only Supports one Container Currently!!!
4f7c3882 02/19/2008 04:56 PM Scott Ullrich

Add Edir, etc to the LDAP other description.
2ddf8c6e 02/19/2008 12:28 AM Scott Ullrich

Make select button really a button intead of HTML <a href>
6344d71f 02/19/2008 12:25 AM Scott Ullrich

Make form more user friendly:

"Active Directory"

hide:
LDAP Filter (use default: (samaccountname=$username))
LDAP Naming Attribute (use default: samaccountname)
Group Membership Attribute Name (use default: memberOf)

"eDirectory"

hide:
LDAP Filter (use default: (cn=$username))...
b0ed07d1 01/31/2008 06:16 PM Scott Ullrich

Latest eDir / Active Directory tweaks from Mark Batchelor.

Thanks again for him helping us with this project!
348cb6d7 01/18/2008 02:41 AM Scott Ullrich

Add back ldap auth caontainer picker.
5ed85831 01/13/2008 08:23 PM Scott Ullrich
  • Hide password field
  • Remove session timeout graphic
  • Allow session timeout to remain blank
222efdce 12/31/2007 10:55 PM Scott Ullrich

Remove the need to define authetnication containers. Now a user can login
anywhere in the LDAP tree and will use the groups to deterimine the access
privs.

Work sponsored-by: Centipede Networks
f3f60e61 12/31/2007 03:24 AM Scott Ullrich
  • Return OU=Users which is built-in to active directory
  • Specify that LDAP is Active Directory compatible

Work sponsored-by: Centipede Networks
073115bc 12/31/2007 03:13 AM Scott Ullrich

Adding LDAP Authentication container picker.

Work sponsored-by: Centipede Networks
cc8b82d9 12/31/2007 01:15 AM Scott Ullrich

Add Users containers setting where a ; seperated list of LDAP containers
can be specified to authenticate against. Final item will be a graphical
browser that can help the operator populate this box if they are feeling
lazy or do not understand LDAP completely....
b0fff0d7 12/30/2007 11:43 PM Scott Ullrich

Make the LDAP settings screen look better.

Work sponsored-by: Centipede Networks
4848bc75 12/30/2007 11:18 PM Scott Ullrich

Add LDAP test functions to verify that the LDAP settings are correct.
Return the OU's and show to the user after test completion.
68f9c987 12/29/2007 03:02 AM Scott Ullrich

Clarify the notes/examples for each of the ldap options. This should make
it pretty clear until I finish the fancy LDAP tree viewer control.

I should also note that as of this commit the LDAP auth functions are now
working beautifully against a Windows 2000 Server Active Directory!...
e6c18b27 12/29/2007 12:30 AM Scott Ullrich
  • Allow LDAP users to login to pfSense.
  • Cross reference Active Directory user groups with pfSense groups, apply
    groups where names match
  • Clarify some of the settings items and give examples
9d265058 12/28/2007 12:46 AM Scott Ullrich
  • Hide search base
  • Use correct variable name

Work sponsored-by: Centipede Networks
8c7f51fb 12/27/2007 07:28 PM Scott Ullrich

Adding LDAP options:

  • Binding username
  • Binding password
  • Filter
  • Search base

Work sponsored-by: Centipede Networks <http://centipedenetworks.com/>
36d42c1a 12/27/2007 06:58 PM Scott Ullrich

Adding LDAP settings:

  • Authentication backend
  • LDAP Server:port

Work sponsored-by: Centipede Networks
2137c27b 12/02/2007 12:08 AM Scott Ullrich

Remove XXX, it is fixed.
a18a8bc6 12/02/2007 12:03 AM Scott Ullrich

Minor fixes
44c31706 12/01/2007 03:56 AM Scott Ullrich

Unset the session timeout if it is 0 or blank.
ac09997e 12/01/2007 01:20 AM Scott Ullrich

Add more input validation to settings screen.

  • Do not allow < 1
  • Do not allow > 999
  • Turn longs into integers
d88c6a9f 11/16/2007 12:48 AM Scott Ullrich

Switch over to array style page titles. Obtained-from: m0n0wall
a4280c66 05/09/2007 02:38 AM Scott Dale

fix html alignment and pgtitle
fab7ff44 04/13/2007 03:26 AM Bill Marquette

Backport usermanager code from HEAD so I can get it in the snaps and
start testing it properly
There's still some CSS/HTML fixes needed but the code seems to work