ovh/the-bastion
1
1
Fork 0
mirror of https://github.com/ovh/the-bastion.git synced 2026-01-21 07:08:58 +08:00
Code Issues Projects Releases Packages Wiki Activity

Commit graph

  • 047500c7fa
         Merge d4b3ddc29e into 7b3240e47a Jonah 2026-01-19 23:58:38 -08:00
  • d92904a8ca
         Merge 9b8baf1607 into 7b3240e47a Jonah 2026-01-19 23:58:18 -08:00
  • 8188a5c66d Deploy to GitHub pages gh-pages github-actions[bot] 2026-01-13 15:27:44 +00:00
  • e68e624966
         Merge b45c856087 into 7b3240e47a Jonah 2026-01-13 16:12:42 +01:00
  • 7b3240e47a Fix missing -regex following @cdbd6c7 from #550 master Mathieu MD 2026-01-12 09:37:14 +01:00
  • a6c52a84bd
         Fix missing -regex following @cdbd6c7 from #550 Mathieu MD 2026-01-12 09:37:14 +01:00
  • 7275605565
         release v3.23.00 (#605) v3.23.00 Stéphane Lesimple 2025-12-22 14:23:01 +01:00
  • a499337edc
         Update doc/release-notes/v3.23.00.md Stéphane Lesimple 2025-12-22 12:04:41 +01:00
  • d03625b5c5
         release v3.23.00 Stéphane Lesimple 2025-12-22 10:10:24 +00:00
  • 41bcbe3cd0
         fix: stop banner service, not restart (#603) Jonah 2025-12-18 22:03:20 +01:00
  • 7457f3db0d
         feat: add admin script apply-ingress-keys-from-globally.pl (#604) Stéphane Lesimple 2025-12-18 17:59:52 +01:00
  • aade9787f0
         feat: add admin script apply-ingress-keys-from-globally.pl Stéphane Lesimple 2025-12-18 15:16:15 +00:00
  • 06a3ba856d
         fix: stop banner service, not restart jon4hz 2025-12-16 19:16:05 +01:00
  • 98336fdafe
         feat: httpproxy: add support for more HTTP methods (#601) Stéphane Lesimple 2025-12-16 14:02:45 +01:00
  • 53507b6a3e
         feat: httpproxy: add support for more HTTP methods Stéphane Lesimple 2025-11-05 10:22:53 +00:00
  • 38d883c654
         scp: more robust parsing for remote users with special chars (#600) Stéphane Lesimple 2025-12-15 19:16:18 +01:00
  • aa14c0e14f
         enh: allow colon in remote user names (#602) Stéphane Lesimple 2025-12-15 18:12:07 +01:00
  • 7ff1a4352a
         enh: allow colon in remote user names Stéphane Lesimple 2025-11-27 16:16:39 +01:00
  • 2ceab97ef9
         docs(dev,setup): fix the pre-commit example and script helper (#599) François Magimel 2025-12-15 17:32:54 +01:00
  • 1232ba993e
         scp: more robust parsing for remote users with special chars Stéphane Lesimple 2025-12-15 16:27:50 +00:00
  • 63c74d539e
         docs(dev,setup): update the script helper François Magimel 2025-12-11 10:01:04 +00:00
  • c84f2c4df2
         docs(dev,setup): fix the pre-commit example François Magimel 2025-12-11 09:57:37 +00:00
  • bd9ba6fc4d
         fix: return accountInfo if grace period is set (#594) Jonah 2025-12-10 11:59:03 +01:00
  • d558552c55
         fix: hide mfa info msg in quiet mode (#598) toutoen 2025-12-10 11:58:35 +01:00
  • 0d4aebe755 fix: hide mfa info msg in quiet mode Antoine Guerrée 2025-12-08 11:08:27 +01:00
  • 9cb87d3d89
         feat(portforwarding): allow portforwarding on master instances only jon4hz 2025-12-04 16:30:56 +01:00
  • fa73b11e45
         fix(portforwarding): correctly cleanup unused local ports jon4hz 2025-12-04 14:52:45 +01:00
  • 120fbd0b0d
         feat(portforwarding): enforce account and group limits jon4hz 2025-12-04 13:42:19 +01:00
  • 6cd3b2aeed
         fix(portforwarding): undefined var when managing group port forwards jon4hz 2025-12-04 13:41:40 +01:00
  • f438a0aeaa
         fix(portforwarding): no ControlMaster for portforwarding sessions jon4hz 2025-11-26 19:05:28 +01:00
  • 471b55f463
         chore(portforwarding): update description jon4hz 2025-11-26 19:03:45 +01:00
  • a1e6dea372
         fix(portforwarding): prevent local ports from being assigned if its unsafe jon4hz 2025-11-19 20:39:13 +01:00
  • 936af2ede0
         feat(portforwarding): improve machine_display to show local port jon4hz 2025-11-19 20:37:34 +01:00
  • 89a68a13c4
         feat(portforwarding): reload sshd after config change and ha support jon4hz 2025-11-17 22:31:26 +01:00
  • a5e085eecc
         fix(portforwarding): use correct target jon4hz 2025-11-17 21:29:14 +01:00
  • a23226543e
         feat(portforwarding): check if feature is enabled jon4hz 2025-11-17 14:30:36 +01:00
  • 946e70adbb
         chore(portforwarding): adjust default portforwarding local port range jon4hz 2025-11-17 11:25:20 +01:00
  • dc672945b1
         feat(portforwarding): doublecheck if local port is in use jon4hz 2025-11-16 11:53:45 +01:00
  • 33054c268e
         feat(portforwarding): generate sshd config for portforwarding jon4hz 2025-11-16 11:27:15 +01:00
  • 6c11d3655d
         fix(portforwarding): make acl more restrictive jon4hz 2025-11-14 13:56:03 +01:00
  • 5a7eee8dc1
         fix(portforwarding): improve acl check jon4hz 2025-11-14 13:46:48 +01:00
  • 6764f49af0
         fix(portforwarding): make sure portforwarding lock can be used by any user jon4hz 2025-11-14 13:31:58 +01:00
  • 0751909027
         fix(portforwarding): aquire portallocation lock only if remotePort is defined jon4hz 2025-11-13 20:22:21 +01:00
  • 980d000325
         fix(portforwarding): handle deletion correctly jon4hz 2025-11-13 19:41:53 +01:00
  • ba48fa8c90
         feat(portforwarding): implement all commands, access checks, logging and ssh flag parsing jon4hz 2025-11-13 19:14:18 +01:00
  • 77346ef819
         feat(portforwarding): acl and random local port allocation jon4hz 2025-11-11 23:02:27 +01:00
  • 03e435f07a
         chore: regenerate docs jon4hz 2025-12-04 11:58:29 +01:00
  • 66aa63883b
         chore: perl tidy jon4hz 2025-12-04 11:36:52 +01:00
  • 9b8baf1607
         fix: return booleans as 1 and 0 in the api jon4hz 2025-12-02 19:34:22 +01:00
  • ed01b3321b
         chore: fix perlcritic warnings jon4hz 2025-12-04 11:27:10 +01:00
  • b45c856087
         chore: fix perlcritic warnings jon4hz 2025-12-04 11:23:19 +01:00
  • 9742d85826
         fix: return booleans as 1 and 0 in the api (#6) Jonah 2025-12-02 20:15:45 +01:00
  • d713c224b1
         fix: return accountInfo if grace period is set (#5) Jonah 2025-12-02 11:27:05 +01:00
  • aaea138ab5
         fix: return accountInfo if grace period is set jon4hz 2025-12-01 19:03:47 +01:00
  • 8238ccedf6
         ci: publish to ghcr jon4hz 2025-11-27 21:20:30 +01:00
  • 2a60b3e68c
         feat: implement proxy jump for egress connections (#3) Jonah 2025-11-18 15:50:51 +01:00
  • 107a6592a1
         feat: add try-personal-keys policy for groups (#2) Jonah 2025-11-18 15:49:44 +01:00
  • dbbd0e43fe
         fix: handle proxy options correctly when deleting accesses jon4hz 2025-11-13 19:37:00 +01:00
  • cebf897679
         refactor: function to validate proxy options jon4hz 2025-11-06 22:51:14 +01:00
  • 42c2c86533
         chore: autocompletions jon4hz 2025-11-06 22:24:35 +01:00
  • dfb5b4a6dd
         fix: add ignoreProxyUser to is_access_granted jon4hz 2025-11-06 21:52:31 +01:00
  • e3647227ac
         feat: whoHasAccessTo can now check for proxy info jon4hz 2025-11-06 21:47:37 +01:00
  • e5521cbf1a
         fix: only set proxyPort default value if proxyJump is defined jon4hz 2025-11-06 21:39:26 +01:00
  • 743867cf79
         feat: log proxy info jon4hz 2025-11-06 21:30:58 +01:00
  • ee6e8f0217
         fix: include proxy info in ttyrec filename jon4hz 2025-11-05 23:38:30 +01:00
  • f8a9a62273
         feat: proxy support for guest accesses jon4hz 2025-11-05 21:47:04 +01:00
  • 213f28cc4c
         chore: improve log output jon4hz 2025-11-05 21:15:48 +01:00
  • 82663e5036
         revert: scp parameter is still necessary jon4hz 2025-11-05 21:14:00 +01:00
  • 6ebb4e4b72
         chore: run perl tidy jon4hz 2025-11-05 20:57:23 +01:00
  • 5d580a5091
         fix: correct proxy info if proxyUser is defined jon4hz 2025-11-05 20:55:51 +01:00
  • bdc360b421
         fix: debian 13 uses lastlog2 (#590) Jonah 2025-11-05 17:07:13 +01:00
  • 9161911d3f
         fix: handle lastlog for ubuntu correctly Jonah 2025-11-05 13:18:51 +01:00
  • 2ebeead61c
         fix: support proxyUser in protocol access jon4hz 2025-11-04 23:37:56 +01:00
  • 0e4a51a778
         chore: remove unused env vars jon4hz 2025-11-04 23:32:45 +01:00
  • 2f03a82dea
         feat: add proxy-user parameter jon4hz 2025-11-03 22:31:11 +01:00
  • 59068ee70d
         fix: remove unnecessary scp parameter jon4hz 2025-11-03 19:55:28 +01:00
  • 115ca262f9
         fix: use delete to clear env var jon4hz 2025-10-30 01:31:16 +01:00
  • 0f753c98ed
         chore: more tests jon4hz 2025-10-30 01:14:13 +01:00
  • 11df17b624
         fix: correct proxy parameter in groupAddServer helper jon4hz 2025-10-29 16:08:42 +01:00
  • df6791bdc9
         fix: return proxyIP and proxyPort in json output jon4hz 2025-10-29 10:54:07 +01:00
  • f79d4a03d5
         fix: handle proxy connection in access test jon4hz 2025-10-27 21:35:42 +01:00
  • 9da71bd46e
         fix: reset proxy connection env var jon4hz 2025-10-27 21:34:26 +01:00
  • 1868261129
         fix: handle access check correctly with proxy options jon4hz 2025-10-10 16:33:37 +02:00
  • 157a7a1882
         chore: run perl tidy jon4hz 2025-10-08 15:20:01 +02:00
  • e710b006ad
         chore: adjust machine display to include proxy info jon4hz 2025-10-08 15:19:52 +02:00
  • 030b334b20
         feat(scp): support proxyjump jon4hz 2025-10-08 15:16:35 +02:00
  • aabbbf959a
         feat(osh): parse proxyjump options correctly jon4hz 2025-10-07 21:02:44 +02:00
  • b6e7dfd1cc
         feat: add try-personal-keys policy for groups Signed-off-by: Jonah Zürcher <jonah.zuercher@adfinis.com> jon4hz 2025-10-01 14:12:50 +02:00
  • 95f9117394
         feat: implement proxy jump for egress connections jon4hz 2025-09-26 17:36:52 +02:00
  • a1d6121714
         fix: also make sure libpam-lastlog2 is installed jon4hz 2025-09-23 21:46:33 +02:00
  • fae4c9286c
         fix: debian 13 uses lastlog2 jon4hz 2025-09-23 13:08:14 +02:00
  • d4b3ddc29e
         chore: run tidy and perlcritic jon4hz 2025-09-22 23:53:58 +02:00
  • b1e4b25642
         feat: allow validation of PIV certificate against a CA jon4hz 2025-09-19 13:59:41 +02:00
  • fd14ddf5ed docs: add link to ansible role jon4hz 2025-09-16 16:51:02 +02:00
  • 7951d7b087
         enh: clush: keep hosts order and no longer dedupe them clush Stéphane Lesimple 2025-02-21 13:29:04 +00:00
  • 9daf0007e1 feat: switch banner if node is sealed jon4hz 2025-09-16 16:44:28 +02:00
  • 8143966cb7
         feat: switch banner if node is sealed jon4hz 2025-09-16 16:44:28 +02:00
  • f8694351e8 chore: bump version number to v3.22.00 v3.22.00 Stéphane Lesimple 2025-09-17 12:09:48 +00:00
  • 2c71d4ec80 release v3.22.00 Stéphane Lesimple 2025-09-17 10:01:06 +00:00
  • f97994bba5
         chore: bump version number to v3.22.00 Stéphane Lesimple 2025-09-17 12:09:48 +00:00