Age | Commit message (Collapse) | Author | Files | Lines |
|
Gunnar Mills (1):
c++17: drop experimental::filesystem
(From meta-phosphor rev: f31e9888bd2aa324cbab7aef143cde7bd0148460)
Change-Id: I3110d179636ed12cf7492a3ead7f11582c818caf
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Andrew Geissler <geissonator@yahoo.com>
|
|
Jayaprakash Mutyala (1):
Treat pwd is not set if no entry in shadow for usr
(From meta-phosphor rev: e398621304c519d24e539670f495b6e661579137)
Change-Id: I27fb7f481698cb878686d934d2cfc16c03609e38
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Andrew Geissler <geissonator@yahoo.com>
|
|
Ravi Teja (2):
UserManager: Fix unit test cases
Avoid LDAP lookups for local groups
(From meta-phosphor rev: 5d8b486b2816a9f73ccc12d8d6f71f9b38d61047)
Change-Id: I9b55a3b064b4d7845742a36a3de4801be10157c5
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Andrew Geissler <geissonator@yahoo.com>
|
|
Zhenfei Tai (1):
Update .gitignore for generated libtool file
(From meta-phosphor rev: 123938819a61e6033302fb839a85afa9dc2a8609)
Change-Id: Iaf3c33842f86f07a8fcf6fdff099007caf3d467f
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Andrew Geissler <geissonator@yahoo.com>
|
|
Richard Marian Thomaiyar (2):
[CI fix]: Clang format related fix
Add missed option definition - root user mgmt.
(From meta-phosphor rev: 512912dd878a0802e050068c71ecfc69b2c06642)
Change-Id: I7a09b48ec00ce1188ab2c94b123d68db5c1617ba
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Andrew Geissler <geissonator@yahoo.com>
|
|
Patrick Williams (2):
sdbusplus: remove deprecated variant_ns
sdbusplus: replace message::variant with std::variant
(From meta-phosphor rev: ced0054c3669c95147f17bbbadca185b7a0af375)
Change-Id: Ie36f4fda742944dfa32d873370921e5dea2dfaa1
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Andrew Geissler <geissonator@yahoo.com>
|
|
Joseph Reynolds (1):
Add UserPasswordExpired for local users
(From meta-phosphor rev: 78752c6afe523120b30a19c3deac3a25102dbd96)
Change-Id: Ia8d7d8e3f556ab31d318f984148ee8768e7c0734
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Andrew Geissler <geissonator@yahoo.com>
|
|
raviteja-b (1):
LDAP: add support for privilege priv-noaccess
(From meta-phosphor rev: d1f4c5dbbd7cc5e5aface1abcb151f05f64193b8)
Change-Id: Idcfc5384db42c0a22214357a687a0eea713caad6
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Brad Bishop <bradleyb@fuzziesquirrel.com>
|
|
priv-callback is deprecated as this privilege is applicable
only to IPMI modem callback, which will not be supported in OpenBmc.
In order to avoid confusion with this role, the same has been
deprecated. Refer https://gerrit.openbmc-project.xyz/#/c/openbmc/docs/+/26839/
Tested:
1. Verified user management works as expected
2. Verified existing user with priv-callback is rolled as no-acess user.
(From meta-phosphor rev: 96e5ce1e16476e984fc805c99f01351e1e310e97)
Change-Id: Ifea3986d9f4b55359138597ee0b6264870f1af0a
Signed-off-by: Richard Marian Thomaiyar <richard.marian.thomaiyar@linux.intel.com>
Signed-off-by: Brad Bishop <bradleyb@fuzziesquirrel.com>
|
|
root user account is enabled with proper privilege and group,
only if debug-tweaks or allow-root-login FEATURES is defined.
Note: This will not remove root user getting managed from
phosphor-user-manager, instead it will make sure, the privilege
and groups are empty for the root user.
Tested:
1. Verified the default build, which has debug-tweaks, allowing
root user to be with priv-admin, and enabled for all groups.
2. Verified by removing debug-tweaks from the local.conf, and
root user privilege & groups are empty.
(From meta-phosphor rev: b1b8251f4e5f19189057cdeb998cf119be1c27b8)
Change-Id: Iec2a0b1a9f84c27dd4947125903ce43f3a9c3c2c
Signed-off-by: Richard Marian Thomaiyar <richard.marian.thomaiyar@linux.intel.com>
Signed-off-by: Brad Bishop <bradleyb@fuzziesquirrel.com>
|
|
Richard Marian Thomaiyar (1):
Add option to enable / disable root user mgmt.
(From meta-phosphor rev: 3dabe698cf24b4ff1e317ab5a041db2909005b53)
Change-Id: I44fdb2e4097a238f1355c3d06e7a2ae7275f23b0
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Brad Bishop <bradleyb@fuzziesquirrel.com>
|
|
Richard Marian Thomaiyar (1):
Remove priv-callback support
(From meta-phosphor rev: 5c3c6ef19ac97cf255e07cbeb9ee5d01a22b31fd)
Change-Id: Idd56fbeeff27e2f2624e0f42b6d384b8237fca45
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Brad Bishop <bradleyb@fuzziesquirrel.com>
|
|
Zbigniew Kurzynski (1):
Support uploading multiple certificates for ldap configuration
(From meta-phosphor rev: 16da45ac4f7c74712239804a4a51a7b3bf9972d6)
Change-Id: I05c9ce452ef01e4747bae698738f397a5264973d
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Brad Bishop <bradleyb@fuzziesquirrel.com>
|
|
jayaprakash Mutyala (1):
user_mgr: Adding priv-noaccess role
(From meta-phosphor rev: 7d4c8917ec4fa262d0b9e3987a24b767886534b9)
Change-Id: Ib6b4a28adff42c456c9473eeb1a96ecd085a81eb
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Brad Bishop <bradleyb@fuzziesquirrel.com>
|
|
Ratan Gupta (1):
Fix emit interface added signal
(From meta-phosphor rev: 0bffa1838cc72a0c655c584dbcbaf31f1c4c390d)
Change-Id: Ief86f2dcf957bc474c6c68e7370d0f1cb0835b72
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Brad Bishop <bradleyb@fuzziesquirrel.com>
|
|
Ravi Teja (1):
User Mgr: Fix to populate secureLDAP variable while deserializing based on ldap URI.
(From meta-phosphor rev: 40165712f1d4fbdf3e4408b601d8dcf70fb3ca42)
Change-Id: Ibb3c41b69a17be429412a94d36982e496dc3bbcc
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Brad Bishop <bradleyb@fuzziesquirrel.com>
|
|
manojkiraneda (2):
phosphor-ldap-conf: handle "InterfaceAdded" signal on the ca-cert object
Change the nslcd configuration based on CertificateString Property
(From meta-phosphor rev: 596611235eec0ad0de48ed42a8f37d53badffbcd)
Change-Id: I7f257405f305a2f32f604b9216fdb1bc5da3ea25
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Brad Bishop <bradleyb@fuzziesquirrel.com>
|
|
Ratan Gupta (2):
phosphor-ldap-conf: handle "InterfaceAdded" signal on the ldap cert object
phosphor-ldap-conf: handle "PropertiesChanged" signal on the ldap cert object
Ravi Teja (2):
User Mgr: Update GetUserInfo to read ldap user privilege
UserMgr: Fix ldap config persistance issue
(From meta-phosphor rev: c3c16d3bf6674836ed1181863eba62f067061c04)
Change-Id: I054d305946afa9e9800002fb6a328bbed43963eb
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Brad Bishop <bradleyb@fuzziesquirrel.com>
|
|
Ratan Gupta (11):
LDAP Config: Extend the support to change the BindDNPassword
Create separate file for ConfigMgr class
Change the name of the files to make it align with other filenames
Create the default object for openldap and AD.
Don't allow to delete the config object
Write the config data into the nslcd.conf file
Serialize the config objects
Conditional enable the ldap configuration
Copying the files from the mapper to the config
Create role mapping under ldap config object
Adding unit test for priv mapping
raviteja-b (1):
Implement unit test for getUserInfo function in phosphor-user-manager
(From meta-phosphor rev: b68656d71d023ce823c3fc2ebf9d3ca9c747e90f)
Change-Id: Ie1afa69303640648e004e2d4838cb0d9a8bf1546
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Brad Bishop <bradleyb@fuzziesquirrel.com>
|
|
A number of corequisites exist so squashing these all into one patch.
meta-ingrasys - refresh master bc513127f4..67bcaf389f
meta-hxt - refresh master 86a4df514f..8fe0d38bbb
meta-phosphor - refresh master 06c09d7cce..df6ddae3d2
meta-quanta - refresh master 4f126361a1..53f3025271
Change-Id: I3daeef2a0467d8ea4f1fd1c617e526f8b11258af
Signed-off-by: Brad Bishop <bradleyb@fuzziesquirrel.com>
|
|
The components of phosphor-user-manager are now installed into bin
instead of sbin. Update the recipe to reflect this.
phosphor-user-manager: srcrev bump 736648e25e..c3f56c50ff
Patrick Venture (1):
build: install into bin instead of sbin
raviteja-b (1):
LDAP:change default values of GroupNameAttribute and UserNamAttribute
(From meta-phosphor rev: 7c9d6f940ed6fca0dffc9835c261bc3da3a4f4ba)
Change-Id: I069d614f78c1332f4026e8ad3977f74063b746d8
Signed-off-by: Patrick Venture <venture@google.com>
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Brad Bishop <bradleyb@fuzziesquirrel.com>
|
|
Out of the box bitbake examines built applications, automatically adds
runtime dependencies and thus ensures any library packages dependencies
are automatically added to images, sdks, etc. There is no need to list
them explicitly in a recipe.
Dependencies change over time, and listing them explicitly is likely
prone to errors - the net effect being unnecessary shared library
packages being installed into images.
Consult
https://www.yoctoproject.org/docs/latest/mega-manual/mega-manual.html#var-RDEPENDS
for information on when to use explicit runtime dependencies.
(From meta-phosphor rev: 26873c99d30b55e21a920c9851f21c3e2eab19f7)
Change-Id: I38640d75a2d834c07d45ddcdb0162f1a23f848d9
Signed-off-by: Brad Bishop <bradleyb@fuzziesquirrel.com>
|
|
Sumanth Bhat (1):
Removing unused SetPassword D-Bus API method
(From meta-phosphor rev: ca355c977fce79a01a8ce777cbea6cd0c7e735eb)
Change-Id: I41e2b47d7f7acd79d669e0c9d6b6265f2bf41e51
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Andrew Geissler <geissonator@yahoo.com>
|
|
Ratan Gupta (2):
squash the following commits
LDAP: Add the persistency for the "Enabled" property
phosphor-dbus-interfaces: srcrev bump c3b1900e97..096a5af0a3
Qiang XU (1):
Add intrusion sensor interface
Ratan Gupta (1):
Re-enable "Add few additional properties in the LDAP config"
raviteja-b (1):
Adding dbus method for GetUserInfo under User Manager
(From meta-phosphor rev: e39cf941b88fe85eb72560f07ba23f26d7554e74)
Change-Id: I65133791a575686cc1de848555c954fe39146a2f
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Richard Marian Thomaiyar <richard.marian.thomaiyar@linux.intel.com>
Signed-off-by: Andrew Geissler <geissonator@yahoo.com>
|
|
Brad Bishop (1):
MAINTAINERS: Remove myself, add Ratan and Richard
Ratan Gupta (1):
Corrected the error log message.
(From meta-phosphor rev: 667591a83c942bb37b96b5dd72428ff57e135053)
Change-Id: I8f95cabafaff7b86b6b471f12e777dcb78f54172
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Andrew Geissler <geissonator@yahoo.com>
|
|
Patrick Venture (1):
build: pkg anti-pattern: use defaults
(From meta-phosphor rev: 5b18303880de52946db3bbc110bc576f251c07cd)
Change-Id: I4900c0fa0fccb3d48da30c65a405b54995d2b107
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Brad Bishop <bradleyb@fuzziesquirrel.com>
|
|
root user has to be added to groups accordingly based
on the recipe. i.e. phosphor-ipmi-host_git.bb, will create
both ipmi group, and add root user to the same.
Unit-test:
1. Verified root user is added to the groups accordingly.
(From meta-phosphor rev: 41882fbf717f267b280ab8ed3393f1178a029258)
Change-Id: I79d3a23fd939f38064999ebe99f17f3e0c02ed0c
Signed-off-by: Richard Marian Thomaiyar <richard.marian.thomaiyar@linux.intel.com>
Signed-off-by: Brad Bishop <bradleyb@fuzziesquirrel.com>
|
|
Richard Marian Thomaiyar (1):
Remove output user name comparison for pam_tally2
Tom Joseph (1):
Add unit tests for ldap mapper application
(From meta-phosphor rev: 21a4ae4f822c2a71fb4931820576943bdf5e5b47)
Change-Id: Ib37d0959081b0a9f1d7caf92ffad1df8f22892af
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Brad Bishop <bradleyb@fuzziesquirrel.com>
|
|
This application updates have a coreq - bump together.
1. phosphor-user-manager: bump 9891f2f8f3..f5bd891cf5
Deepak Kodihalli (1):
React to nsswitch config file changes
Nagaraju Goruganti (6):
ldap-config: remove Bindpassword and secureLDAP property from the interface
phosphor-ldap-conf: validate LDAP Server URI
phosphor-ldap-conf: update nslcd.conf file for OpenLdap
phosphor-ldap-conf: add unit tests
phosphor-ldap-conf: update nslcd.conf file with tls_cacertfile info
phosphor-ldap-conf: nslcd restart service getting called twice
Ratan Gupta (4):
phosphor-ldap-conf: Don't map the uid with cn for openLDAP
phosphor-ldap-conf: Don't create the LDAP config object
phosphor-ldap-conf: Make correction in renaming path of nsswitch.conf
Add readme for user manager
Tom Joseph (1):
Refactor mapper application to enable unit tests
2. phosphor-dbus-interfaces: bump 8d656133b3..0e6d655be2
Deepak Kodihalli (1):
Don't store LDAP Bind password
Ratan Gupta (3):
Ldap: Remove the secure property from the ldap config and create interface
Add errors to User/AccountPolicy interface
Add errors to User/Attributes interface
(From meta-phosphor rev: 3d4de530e15e54856ae9a346a379fdf10bd1633b)
Change-Id: Ie99ccc9dad36bcf7d9cc7b7abb750023b97eb619
Signed-off-by: Nagaraju Goruganti <ngorugan@in.ibm.com>
Signed-off-by: Brad Bishop <bradleyb@fuzziesquirrel.com>
|
|
phosphor-ldap-mapper application enables user to configure privilege
mappings for LDAP groups.
(From meta-phosphor rev: 70474377eae07d9e561c5cdcf267f18ba14e64de)
Change-Id: Iac338a45f6be53727012e6883ef805ca9138231d
Signed-off-by: Tom Joseph <tomjoseph@in.ibm.com>
Signed-off-by: Brad Bishop <bradleyb@fuzziesquirrel.com>
|
|
Package app phosphor-ldap-conf. This app implements an API to update
the LDAP config file i.e /etc/nslcd.conf.
This commit also creates a file:/etc/nslcd.conf.default, which is to
be restored as /etc/nslcd.conf when we disable LDAP configuration.
(From meta-phosphor rev: 6d7f640d702b5853268bec58e8529516e7884493)
Change-Id: I7183652732c2200b5cc0a644ddb179c8784eb0fb
Signed-off-by: Nagaraju Goruganti <ngorugan@in.ibm.com>
Signed-off-by: Brad Bishop <bradleyb@fuzziesquirrel.com>
|
|
Nagaraju Goruganti (1):
phosphor-ldap-conf: add support for anonymous bind
Ratan Gupta (1):
phosphor-ldap-conf: change the permissions of the nslcd.conf file
(From meta-phosphor rev: 44ae56666520012ee72253d8ee7b6c672df1e058)
Change-Id: I9f06ece5c8c030ad47c49ad7112a54cfe10647a5
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Brad Bishop <bradleyb@fuzziesquirrel.com>
|
|
Patrick Venture (1):
user_mgr: throw original exception
(From meta-phosphor rev: 692bce7fdd23876cf43bcd0d8fa4a272390e23a1)
Change-Id: If6045ff1474eadd1496ace637cc3f493bc526ea4
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Brad Bishop <bradleyb@fuzziesquirrel.com>
|
|
Nagaraju Goruganti (1):
phosphor-ldap-conf: add support for validation of parameters
Richard Marian Thomaiyar (2):
Support for password & security configuration
Add support for user locked state property
(From meta-phosphor rev: e1610d77868d6fdc5749c2d46b3be26a792bdd07)
Change-Id: I4d69e2b7961e9ddc84160e7e57d81075e1372f30
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Brad Bishop <bradleyb@fuzziesquirrel.com>
|
|
Rename phosphor-user-manager.bb to phosphor-user-manager_git.bb per OE
norms.
(From meta-phosphor rev: 01b443ec430ca41403c129079d72984aa1bdb037)
Change-Id: I71966085aa03559f4729f4c7543f91e576f4d913
Signed-off-by: Patrick Venture <venture@google.com>
Signed-off-by: Brad Bishop <bradleyb@fuzziesquirrel.com>
|
|
Nagaraju Goruganti (4):
phosphor-ldap-conf: add application to configure LDAP
phosphor-ldap-conf: implement restore and add error handling
phosphor-ldap-conf: Implement the Delete interface
phosphor-ldap-conf: switch between config files while enabling/disabling LDAP
Tom Joseph (2):
ldap: Add application to configure privilege for LDAP groups
ldap: Add persistence for LDAP mapper D-Bus objects
Vernon Mauery (1):
phosphor-user-manager: use c++17
(From meta-phosphor rev: e881010349a9e779f8cd9290a875bd579d8fd49e)
Change-Id: I7bf73149f0ebc77b04703f9325686df702d8c916
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Brad Bishop <bradleyb@fuzziesquirrel.com>
|
|
Richard Marian Thomaiyar (3):
Handle empty privilege condition
User home directory fixups. Needed for SSH
Fix to include user id 0 in users list.
(From meta-phosphor rev: 212ee848039c2c5e64dac6ec3dbb208dd2202f4b)
Change-Id: Ibab1438e8a89bf018e5a469b04b2a376d888b01b
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Brad Bishop <bradleyb@fuzziesquirrel.com>
|
|
Richard Marian Thomaiyar (1):
Basic support for User manager service
(From meta-phosphor rev: e8731f6528ae34a37079565e549f6a7c84659579)
Change-Id: I83bb59321cabdf558a54048a0b1c24b26e3b6130
Signed-off-by: Andrew Geissler <openbmcbump-github@yahoo.com>
Signed-off-by: Brad Bishop <bradleyb@fuzziesquirrel.com>
|
|
Adopt a more conventional directory hierarchy. meta-phosphor is still
a _long_ way from suitable for hosting on yoctoproject.org but things
like this don't help.
(From meta-phosphor rev: 471cfcefa74b8c7ceb704cb670e6d915cf27c63b)
Change-Id: I3f106b2f6cdc6cec734be28a6090800546f362eb
Signed-off-by: Brad Bishop <bradleyb@fuzziesquirrel.com>
|