Change copyright statement to reflect reality
modify copyright statement to reflect reality
Merge branch 'master-br' of https://github.com/ayvis/pfsense into ayvis-master-br
standardize on www.pfsense.org and HTTPS, point package URLs topackages.pfsense.org
xhtml Compliancereplaced <br>, <br/> and </br> with <br />
Fix whitespaces and indent
Tidy up "system_usermanager_settings.php" XHTML
Add CDATA sections to SCRIPT tagsUpdate HTML boolean operators
Cosmetic change, s/manager/Manager/ to keep make it consistent with other entries
Correct the test which displays an error if someone chose to save+test but doesn't have an ldap backend. Also, fix a typo.
Properly test for ldap case when clicking save and test for GUI authserver.
Ticket #934. Perform test only for ldap backend. Also tell the user through a message when they click it for other backends.
correctly select Local Database when it's configured as such
Do not blacklist radius for authentication method on the webGUI.
Allow using the default session timeout.
Fix gettext issues
Merge branch 'master' into gettext
Resolved conflicts: usr/local/www/system_advanced_firewall.php usr/local/www/system_routes.php usr/local/www/system_routes_edit.php
touch up text
Implementing gettext()
Ticket #378. Correct text to reflect the allowed 0 value.
Ticket #378. Correctly handle a timeout of 0 to mean never timeout.
Since 0 is not allowed clarify comment.
Ticket #423. Remove priv.inc/priv.defs.inc from files. They used require() instead of required once so produced errors or redefinitions of functions. These includes are now included on authgui.inc.
Remove the authentication fallback it does not have any meaning now.
Do not allow negative numbers in session timeout. Ticket #378.
Overhaul the user login system to use the Servers tab as its base.
Fix quite a few problems down the way.
Remove the windows LF on this file to be usable on vi.
User _ instead of so browser does not interpret it as html.
Do not show the passwd used to logon on logs. Also change the replace from $username to <username> so php does not try to do clever stuff.
The filter expects * and not a php variable.
revert unintentional change to system_usermanager_settings.php from last commit
if reverted to HTTP, restart lighty
Change default session timeout to 4 hours. Clarify text description. Remove limit of < 999 and other invalid/unnecessary input validation. Use product_name
make re-brand friendly
include priv.inc
Include priv.defs.inc
Add pfSense_BUILDER_BINARIES: and pfSense_MODULE:. Adjust Copyright to include 2009 on files that I have asserted (C) on
Mount image rw during changes
Rework most of the OpenVPN support. The interfaces have been updated tonot use the pkg system and the configuration has been migrated to anopenvpn prefix. The centralized user and certificate manager is now usedto support the openvpn configurations. Most of the files removed in this...
Implement a certificate authority and certificate webui that can be usedto centrally manage this data. There are no consumers at this time. Thisinterface allow for the following ...
Certificate Authority Manager:- List certificates authorities- Import existing certificate authority...
Add an interface to manage external authentication servers. The two typessupported currently are LDAP and Radius.
Cleanup authentication code. The basic auth method, the passwd, htpasswdand pam backing functions have been removed. The basic auth method waslegacy code and the backing functions were redundant with no added valuethat I could see. A simplified replacement backing function named...
Rewrite the pfsense privilege system with the following goals in mind ...
1) Redefine page privileges to not use static urls2) Accurate generation of privilege definitions from source3) Merging the user and group privileges into a single set4) Allow any privilege to be added to users or groups w/ inheritance...
Remove the statement Only Supports one Container Currently!!!
Add Edir, etc to the LDAP other description.
Make select button really a button intead of HTML <a href>
Make form more user friendly:
"Active Directory"
hide:LDAP Filter (use default: (samaccountname=$username))LDAP Naming Attribute (use default: samaccountname)Group Membership Attribute Name (use default: memberOf)
"eDirectory"
hide:LDAP Filter (use default: (cn=$username))...
Latest eDir / Active Directory tweaks from Mark Batchelor.
Thanks again for him helping us with this project!
Add back ldap auth caontainer picker.
Remove the need to define authetnication containers. Now a user can loginanywhere in the LDAP tree and will use the groups to deterimine the accessprivs.
Work sponsored-by: Centipede Networks
Adding LDAP Authentication container picker.
Add Users containers setting where a ; seperated list of LDAP containerscan be specified to authenticate against. Final item will be a graphicalbrowser that can help the operator populate this box if they are feelinglazy or do not understand LDAP completely....
Make the LDAP settings screen look better.
Add LDAP test functions to verify that the LDAP settings are correct.Return the OU's and show to the user after test completion.
Clarify the notes/examples for each of the ldap options. This should makeit pretty clear until I finish the fancy LDAP tree viewer control.
I should also note that as of this commit the LDAP auth functions are nowworking beautifully against a Windows 2000 Server Active Directory!...
Adding LDAP options:
Work sponsored-by: Centipede Networks <http://centipedenetworks.com/>
Adding LDAP settings:
Remove XXX, it is fixed.
Minor fixes
Unset the session timeout if it is 0 or blank.
Add more input validation to settings screen.
Switch over to array style page titles. Obtained-from: m0n0wall
fix html alignment and pgtitle
Backport usermanager code from HEAD so I can get it in the snaps andstart testing it properlyThere's still some CSS/HTML fixes needed but the code seems to work