mirror/librenms-librenms
1
0
Fork 0
mirror of https://github.com/librenms/librenms.git synced 2024-10-07 16:52:45 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
12,669 Commits 47 Branches 151 Tags
84ede20f495b34e20f7a912472dcafe4c10a333b
Commit Graph

105 Commits

Author SHA1 Message Date
jonathon-k 65f74215d3 feature: Add an option for ad authentication to have a default level (#4801) 
* Add an option for ad authentication to have a default level

* rework as a flag indicating unspecified access is global read

* Fix indentation
 2016-10-21 11:22:13 -05:00
Neil Lathwood a2f2ccfd2c security: Fix some reported security issues (#4807) 2016-10-15 20:45:18 +01:00
jonathon-k ba9672b986 fix: Prevent accidental anonymous binds (#4784) 
* Prevent ldap and Active Directory authentication from allowing anonymous binds

* fix style
 2016-10-13 10:19:36 -05:00
Eldon Koyle 5749179cf5 feature: Add the ability to include an LDAP filter for users/groups in AD (#4494) 
* Add auth_ad_(group|user)_filter options

* use global

* Fix some AD annoyances

Use the power of the LDAP filter to minimize the number of queries and
hopefully help performance in get_userlist, change semantics of
auth_ad_(user|group)_filter in $config to be anded with
samaccountname=USERNAME.

* remove unused variable

* update documentation

* Update Authentication.md
 2016-09-21 14:42:59 -05:00
Tony Murray 36f6338ad6 fix: Clean up errors in the webui (#4438) 2016-09-15 08:46:26 +01:00
Neil Lathwood a8efda8f30 Revert "Updated to remove passwords from sessions" (#4422) 2016-09-13 09:10:42 -05:00
Neil Lathwood deb4b74bc9 webui: remove passwords from sessions, 'remember me' works for all auth types (#4134) 
* Updated to remove passwords from sessions

* Remove users sessions when user deleted

* Updated when cookies are set

* Updated setcookies to always contain a value

* Added destroy_cookies() to remove users cookies on failed login

* Removed debug line

* Fixed graph issues
 2016-09-12 21:41:19 -05:00
Neil Lathwood 9e85f24b00 fix: Make irc bot to use authentication module for user info (#4372) 2016-09-12 11:24:22 -05:00
Tony Murray 956e18ffcd feature: Better error messages for ad_auth (#4385) 2016-09-09 08:04:03 -05:00
Tony Murray 8c639aa5a4 PSR2 Cleanup: /html edition 
Travis tests for code conformance. Ignore warnings for now.
Fixed all errors, left most warnings.
 2016-08-18 21:29:30 -05:00
Vitali Kari a175b291c3 reduce regress 
still dirty hack, but solves a big problem.
 2016-06-15 20:06:36 +02:00
Vitali Kari 0b30ca1071 making CN with a , inside working 
a workaround to mask a , sign in a DN before CN is extracted
resolves #3533
 2016-06-13 17:25:18 +02:00
Tony Murray bf471698ef Change the rest of the $ds variables to $ldap_connection 2016-06-03 22:16:10 -05:00
Tony Murray 9b0bd4c15a Rename $ds to $ldap_connection 
$ds is a global variable, there are many name collisions in the code.  Rename it to avoid the collisions.
 2016-06-03 10:56:42 -05:00
Adam Winberg 1d2a49746d Added authentication module combining http authentication and Active Directory authorization 2016-05-18 10:06:12 +02:00
Ultra2D 12a3b305ed API access when using LDAP authorization 2016-03-10 14:48:01 +01:00
Ultra2D 322053c827 API access when using LDAP authentication 2016-03-07 14:07:51 +01:00
Tony Murray b9448a61a8 Remove Success output from homepage when using AD Auth. 2016-01-25 13:10:51 -06:00
Maximilian Wilhelm 64ce4f335f Add HTTP Authentication / LDAP Authorization module. 
This Authentitation / Authorization module provides the ability to let
  the webserver (e.g. Apache) do the user Authentication (using Kerberos
  f.e.) and let libreNMS do the Authorization of the already known user.
  Authorization and setting of libreNMS user level is done by LDAP group
  names specified in the configuration file. The group configuration is
  basicly copied from the existing ldap Authentication module.

  To save lots of redundant queries to the LDAP server and speed up the
  libreNMS WebUI, all information is cached within the PHP $_SESSION as
  long as specified in $config['auth_ldap_cache_ttl'] (Default: 300s).

Signed-off-by: Maximilian Wilhelm <max@rfc2324.org>
 2016-01-21 21:49:08 +01:00
laf c6c3858312 Some more scrut fixes 2016-01-19 22:27:04 +00:00
laf 44dc6b652b Fixed scrut issues 2016-01-19 09:04:53 +00:00
laf 57c802cd4e Updated active directory auth to support dashboards 2016-01-17 15:26:35 +00:00
laf 3a299584b0 Added ability to specify default userlevel 2015-12-14 21:52:15 +00:00
laf af21d4a54a Fix some scrut issues 2015-12-13 16:54:40 +00:00
laf dcf4d0f378 Added docs and set default users to level 1 2015-12-13 15:51:15 +00:00
laf b31cbd8dae Code for Radius authentication added 2015-12-13 15:37:55 +00:00
Daniel Preussker ff03e17e7f scrut fixes 2015-11-21 14:12:27 +00:00
Daniel Preussker 340fd75bd5 fix rest of the authmodules 2015-11-21 12:25:34 +00:00
Daniel Preussker 224ccab950 Fixed adduser bug 
Always show notification bubble
Added tooltip to archive's sticky button
 2015-11-21 12:15:42 +00:00
Daniel Preussker 987c841b48 Automatically mark all news as read for new users 
Renamed Schema for old system
 2015-11-21 11:40:24 +00:00
vizay 6e78fc8d0b Update active_directory.inc.php 2015-11-17 12:28:28 +01:00
Peter Lamperud 04c75838f6 Functionality added: adduser(), user_exists_in_db() 2015-11-16 13:37:12 +01:00
Peter Lamperud f971d7ecf3 Signed-off-by: Peter Lamperud <petlam@unibet.com> 2015-11-16 12:27:15 +01:00
Falk Stern 7c54782cc8 Moved auth_ad_dont_check_certificates to auth_ad_check_certificates 2015-11-16 10:24:16 +01:00
Tony Murray 02d54e9c50 Fix AD auth with untrusted certificates. LDAPTLS_REQCERT=never must be 
set before ldap_connect.
 2015-11-13 11:05:05 -06:00
Falk Stern d326869675 Removed unused variables 2015-11-10 10:47:50 +01:00
Falk Stern 16df0fdd2e Coding style 2015-11-10 10:39:42 +01:00
Falk Stern 2326061e68 Removed unused variables and updated coding style 2015-11-10 10:38:42 +01:00
Falk Stern 0eeb4d2ef8 Fixed a bug from scrutinizer 2015-11-10 10:03:47 +01:00
Falk Stern a785398492 Merge remote-tracking branch 'upstream/master' into active_directory_auth 2015-11-10 09:43:30 +01:00
Falk Stern 779c90b1fd Checking for groups now 2015-10-30 17:17:55 +01:00
Falk Stern 93b57040c5 Authenticate against active directory 2015-10-22 09:16:20 +02:00
Falk Stern a36f3e1e35 Initial commit 2015-10-16 09:40:17 +02:00
Mattz0r e908c25290 Styled the two factor auth token prompt 2015-10-15 19:21:09 +02:00
Daniel Preussker afdbb2406d Added $nocache parameter 
Fixed typo in caching
Excluded caching for MySQL-Authentication & /poll-log/
 2015-09-30 15:20:06 +00:00
Paul Gear a10c488915 Merge pull request #1611 from SaaldjorMike/remove-php-closing-tags 
Remove php closing tags to fix scrut issues
 2015-08-05 06:32:12 +10:00
Mike Rostermund 0cc3e1a9e2 Remove php closing tags to fix scrut issues 2015-08-04 19:29:43 +02:00
Mike Rostermund 5369112d48 Fix some scrutinizer coding style issues 2015-08-04 18:36:03 +02:00
root 0a88c386b0 Add 'puredn' ldap authentication 2015-07-21 20:56:48 +03:00
Job Snijders d8693f05ae Fix coding style part 2 2015-07-15 11:04:22 +02:00