ovh/the-bastion
1
1
Fork 0
mirror of https://github.com/ovh/the-bastion.git synced 2025-01-09 08:47:50 +08:00
Code Issues Projects Releases Packages Wiki Activity
176 commits 5 branches 49 tags 7.4 MiB
Commit graph

176 commits

This branch
This branch
All branches
Author SHA1 Message Date
Stéphane Lesimple
7c51a4d73b
Merge pull request #93 from ovh/microfix 
chore: fix an error message
 2020-12-15 17:04:26 +01:00
Stéphane Lesimple
2f1eb5a6b2
Merge pull request #94 from ovh/opensuseleap150 
Opensuseleap150
 2020-12-15 17:04:12 +01:00
Stéphane Lesimple
32a126d3c3
chore: tests: remove OpenSUSE Leap 15.0 
We're hitting this bug: https://bugzilla.opensuse.org/show_bug.cgi?id=1146027
Hence the tests randomly fail because of that. The workaround is not really clean
(installing a custom-built package), so we're pulling OpenSUSE Leap 15.0 from our
automated tests workflow. Note that it's still supported, the tests can be launched
manually, and bugs under OpenSUSE Leap 15.0 will still be fixed.
 2020-12-15 16:01:28 +00:00
Stéphane Lesimple
a676692fe6
chore: fix an error message 2020-12-15 13:57:58 +00:00
Stéphane Lesimple
a8423c87aa
Merge pull request #91 from ovh/bump 
release v3.01.03
 2020-12-15 14:25:07 +01:00
Stéphane Lesimple
1c33903203
release v3.01.03 2020-12-15 11:35:33 +00:00
Stéphane Lesimple
fdb786d62c
Merge pull request #89 from ovh/dev/aleblanc/bin-helper-osh-account-delete 
fix: osh-accountDelete: fix typo
 2020-12-15 12:14:19 +01:00
Stéphane Lesimple
4436081807
Merge pull request #90 from ovh/pluginconfig 
fix: osh.pl: plugin_config 'disabled' key is a boolean
 2020-12-15 12:13:23 +01:00
Stéphane Lesimple
790802e6da
fix: osh.pl: plugin_config 'disabled' key is a boolean 2020-12-15 10:16:35 +00:00
Antoine Leblanc
82f2c96ea6
fix: osh-accountDelete: fix typo 
Signed-off-by: Antoine Leblanc <antoine.leblanc@ovhcloud.com>
 2020-12-14 21:49:32 +01:00
Stéphane Lesimple
6e03fa2877
Merge pull request #88 from ovh/fixGroupDelete 
fix: sudogen: don't check for account/groups validity when deleting
 2020-12-14 11:30:57 +01:00
Stéphane Lesimple
e2186978da
fix: sudogen: don't check for account/groups validity too much when deleting them 
Fixes #86
 2020-12-14 09:19:03 +00:00
Stéphane Lesimple
bd23f85a46
Merge pull request #87 from ovh/fastertests 
chore: speedup tests by ~20%
 2020-12-14 10:09:01 +01:00
Stéphane Lesimple
f97b761b83
chore: speedup tests by ~20% 2020-12-14 08:57:43 +00:00
Stéphane Lesimple
896721aad6
Merge pull request #85 from ovh/guestfix 
fix: guests: get rid of ghost guest accesses in corner cases
 2020-12-10 12:23:25 +01:00
Stéphane Lesimple
39ddc4c462
fix: guests: get rid of ghost guest accesses in corner cases 
Adding a guest access to a member of a group is now denied, to avoid having
dangling guest accesses when their membership is revoked. In effect, they
could no longer access the group servers, even as guest, because they no longer
had access to the group key, but their previous guest accesses were still
visible in groupListGuestAccesses, causing possible confusion.

We now also revoke all guest accesses of an account to a group, if any,
when it's being set as a member of this group, so that when/if the account
membership is revoked, we don't end up with the same ghost guest accesses as above.
 2020-12-10 10:23:47 +00:00
Stéphane Lesimple
2421a1210c
Merge pull request #82 from ovh/bump 
bump to v3.01.02
 2020-12-08 18:21:03 +01:00
Stéphane Lesimple
a3b2b7d8e4
bump to v3.01.02 2020-12-08 15:41:56 +00:00
Stéphane Lesimple
3031b6ff0c
Merge pull request #84 from ovh/centos 
Fix for centos 8.3
 2020-12-08 16:39:04 +01:00
Stéphane Lesimple
c68b696702
chore: shellcheck & perltidy 2020-12-08 14:42:31 +00:00
Stéphane Lesimple
87128da9d6
chore: adjust readme & docs 2020-12-08 14:42:31 +00:00
Stéphane Lesimple
7707b1c351
fix: osh-groupCreate: fix for centos 8.3 2020-12-08 14:42:27 +00:00
Stéphane Lesimple
457a8fae82
chore: packages-check: remove unused packages 2020-12-08 14:27:38 +00:00
Stéphane Lesimple
dca45a44c5
chore: fix latest centos 8 release, add tests for last 3 minors 2020-12-08 14:27:13 +00:00
Stéphane Lesimple
b82f80defb
Merge pull request #83 from ovh/centos 
fix: packages-check: centos8: handle new repo names
 2020-12-08 12:02:06 +01:00
Stéphane Lesimple
c4d2cea3b0
fix: packages-check: centos8: handle new repo names 2020-12-08 10:54:57 +00:00
Stéphane Lesimple
9f745013b2
Merge pull request #81 from ovh/remote_user_name_fix 
fix: is_valid_remote_user: extend allowed size from 32 to 128
 2020-12-08 11:43:05 +01:00
Stéphane Lesimple
18d8195027
fix: is_valid_remote_user: extend allowed size from 32 to 128 2020-12-08 10:20:25 +00:00
Stéphane Lesimple
a1fc6f3c1c
Merge pull request #80 from axl89/mfa-doc-fix 
Fixed accountMFAPolicy wrong options values
 2020-12-07 20:09:47 +01:00
Axel Amigo Arnold
936988a9e1 Fixed accountMFAPolicy wrong options values 
See configuration.inc:192
 2020-12-07 14:51:46 +01:00
Stéphane Lesimple
eb80296657
Merge pull request #78 from ovh/bump 
release v3.01.01
 2020-12-04 17:40:34 +01:00
Stéphane Lesimple
534ce45812
release v3.01.01 2020-12-04 16:36:08 +00:00
Stéphane Lesimple
8276f3878d
Merge pull request #76 from ovh/fixsudoers 
fix: sudogen: handle '.' and OS-specific templates correctly
 2020-12-04 14:38:02 +01:00
Stéphane Lesimple
74d8a49f3d
Merge pull request #77 from ThibaultDewailly/plugins 
osh-encrypt-rsync: Remove logfile as mandatory parameter
 2020-12-04 11:17:31 +01:00
thibault.dewailly
1e32cfde7d osh-encrypt-rsync: Remove logfile as mandatory parameter 2020-12-04 10:03:18 +00:00
Stéphane Lesimple
7c26c2b721
fix: tests: adjust testcase max days after b604cd137f 2020-12-03 13:20:53 +00:00
Stéphane Lesimple
50c016be10
fix: sudogen: properly handle accounts & groups containing '.' 2020-12-03 13:20:53 +00:00
Stéphane Lesimple
526a5d0389
fix: sudogen: proper detection of OS-specific templates 2020-12-03 13:20:53 +00:00
Stéphane Lesimple
a4317c8c31
Merge pull request #75 from ovh/interactive 
fix: interactive mode: mark non-printable chars as such to avoid read…
 2020-12-02 09:09:47 +01:00
Stéphane Lesimple
9c1870e990
fix: interactive mode: mark non-printable chars as such to avoid readline quirks 2020-12-01 16:42:28 +00:00
Stéphane Lesimple
7008e385d2
Merge pull request #74 from ovh/fix-selfAddPersonalAccess-helptext 
fix: Fix 'selfAddPersonalAccess' helptext
 2020-12-01 16:04:14 +01:00
Thomas Soëte
9647ae9cdb
fix: Fix 'selfAddPersonalAccess' helptext 2020-12-01 15:53:57 +01:00
Stéphane Lesimple
7a811659f6
Merge pull request #73 from speed47/readme 
doc: add information about puppet-thebastion and yubico-piv-checker
 2020-12-01 11:22:57 +01:00
Stéphane Lesimple
5f3961424f
doc: add information about puppet-thebastion and yubico-piv-checker 2020-12-01 09:37:44 +00:00
Stéphane Lesimple
682b9d8297
Merge pull request #72 from ovh/fix-dup-MFAPasswordMaxDays 
Fix missing MFAPasswordWarnDays in bastion.conf.dist
 2020-11-30 10:43:56 +01:00
Thomas Soëte
b604cd137f
Fix MFAPasswordWarnDays in bastion.conf.dist 
Fix duplicate MFAPasswordMaxDays

Fixes #71
 2020-11-28 22:34:10 +01:00
Stéphane Lesimple
4784220b8c
Merge pull request #70 from ovh/akfile 
enh: remove hardcoded .ssh/authorized_keys2 everywhere
 2020-11-27 13:19:52 +01:00
Stéphane Lesimple
4cb09a9570
nh: remove hardcoded .ssh/authorized_keys2 everywhere 2020-11-26 18:08:03 +00:00
Stéphane Lesimple
19d523c8c4
Merge pull request #67 from ovh/doc 
enh: doc: simplify general upgrade procedure
 2020-11-25 18:23:50 +01:00
Stéphane Lesimple
b6b886b669
Merge branch 'master' into doc 2020-11-23 19:15:03 +01:00