mart-w/kanidm
1
0
Fork 0
mirror of https://github.com/kanidm/kanidm.git synced 2025-02-23 20:47:01 +01:00
Code Issues Actions Packages Projects Releases Wiki Activity
585 commits 17 branches 59 tags 246 MiB
Commit graph

81 commits

Author SHA1 Message Date
James Hodgkinson 7d27612174
Windows automagical buildingtons (#798) 
* windows build automation
* making fmt happy, fixing windows-related bug
* disabled cargo_incremental when using `sccache`, added build options ARG to Dockerfile, limit docker build to one job
 2022-05-31 14:13:21 +10:00
Carla Schroder 547e283318
continuing review of Kanidm book (#775) 2022-05-27 09:07:56 +10:00
Carla Schroder 8abd5b2052
Minor corrections to case, punctuation, spelling (#789) 2022-05-27 09:07:15 +10:00
Carla Schroder e0ebd322dd
some small corrections to accounts_and_groups.md, administrivia.md (#776) 2022-05-26 14:57:01 +10:00
Carla Schroder 70db0630ea
More small corrections: line breaks, capitalization, typos (#778) 2022-05-26 07:38:28 +10:00
Firstyear c26ccb9b38
Improve token readability, Fix issue with spn format (#773) 2022-05-24 13:49:51 +10:00
Kellin f3a73426c5
Fix typos of kanidm in the documentation (#766) 
- Fix volume mount name typo in the server configuration and
  administrivia documentation pages
- Fix typo in link from PAM and nsswitch documentation

Signed-off-by: Kellin <kellin@retromud.org>
 2022-05-23 11:58:27 +10:00
Carla Schroder 6114d59158
First review of the Kanidm Administration book (#760) 2022-05-18 11:22:56 +10:00
matthew-salerno 28d31234d0
Update docs with some personal experience (#750) 2022-05-10 10:52:53 +10:00
Firstyear 3a07842d56
20220501 fix logging (#730) 2022-05-01 13:34:19 +10:00
Euan Kemp 9427d27141
Add a new ACP and group allowing self-service mail updates (#672) 
* Add a new ACP and group allowing self-service mail updates

This adds a new "idm_people_self_write_mail_priv" group which follows
the existing canned group+acp format closely.

This also adds a test for the functionality

See the discussion in #648 for a bit more background

* Limit the self-write ACP to targets with the "account" class

Per feedback on #672, it's better to limit these APIs specifically to
accounts.

* Fix up

Co-authored-by: Firstyear <william.brown@suse.com>
 2022-04-13 20:45:45 +10:00
Euan Kemp 0c3ce226cf
Add 'account person set' command (#667) 
* Add 'account person set' command

This command allows a user to modify, say, their legal name in a
self-service fashion.

This wasn't possible before by default since the 'extend' operation
required additional ACPs in order to operate which not every user would
have.

The new "person set" api is compatible with the default self_write ACP,
and so allows self-service modification.

* Add a short section on people attributes to the book
 2022-04-02 13:24:07 +10:00
Firstyear 5cb429904d
Improve description of how the suse pam files work (#663) 2022-03-30 10:34:56 +10:00
Firstyear bd41ef8f91
Add design doc, revive the domain wide enc token (#649) 
* Add design doc, revive the domain wide enc token, use jwt from our lib instead of bundy, update docs
 2022-03-14 17:29:04 +10:00
James Hodgkinson 58fb559262
Docs build cleanup for #646 (#647) 
* moving docs build to makefile
 2022-03-10 08:55:44 +10:00
Firstyear 840024f006
Change how domain names are handled in our configuration. (#639) 2022-02-15 16:17:43 +10:00
Firstyear a0ef768fc8
Correct issuer to match url of connected client (#635) 2022-01-27 12:19:03 +10:00
Firstyear c6c564cebb
Finalise email changes for oidc (#629) 2021-12-25 09:47:14 +10:00
James Hodgkinson 615ddee75f
adding notes about OIDCRemoteUserClaim to the oauth2 book chapter (#621) 2021-11-30 10:34:54 +10:00
James Hodgkinson b7837f3aae
add logging for oauth2 errors (#620) 2021-11-25 14:55:12 +10:00
Firstyear fad0dd86e0
Improve book and errors related to domain name and origin mismatch (#617) 2021-11-25 08:37:50 +10:00
Firstyear 0f4189a57e
278 603 OIDC implementation (#608) 2021-11-21 16:41:49 +10:00
Firstyear 761bed0569
20211010 rfc7662 token introspect (#607) 2021-10-26 13:00:02 +10:00
James Hodgkinson 4ef064e4ed
updating docs re oidc (#606) 2021-10-22 08:34:24 +10:00
Firstyear 8e3525c736
Fix state parameter to be string (#602) 2021-10-20 14:00:14 +10:00
James Hodgkinson bfea182a89
fixes #594 - updates pam module (#596) 2021-10-17 21:19:15 +10:00
William Brown b51d32d623 Minor book change 2021-10-17 08:21:55 +10:00
Firstyear c62b39c338
509 oauth2 scope mapping (#586) 2021-10-07 18:31:48 +10:00
James Hodgkinson ea8801f23d
Improving logging and docs around unixd/PAM/NSS (#577) 2021-09-06 07:48:37 +10:00
James Hodgkinson bc31d42f22
fixes #571 (#572) 2021-08-22 16:05:28 +10:00
Firstyear aca6b23d54
Update SUMMARY.md 
Fix server_configuration.md
 2021-08-16 10:22:49 +10:00
cuberoot74088 b4f99c8e7a
Implement Online Backups (#25) (#536) 2021-07-31 17:13:46 +10:00
James Hodgkinson a621cbc6a7
Fixing #521 - Documenting the server role (#535) 2021-07-24 15:00:08 +10:00
James Hodgkinson 6ff74c976e
Auto-publishing the book and rustdoc. (#534) 2021-07-24 11:12:35 +10:00
cuberoot74088 ff952cbed2
Fix docu for generate password (#526) 2021-07-15 08:23:11 +10:00
Firstyear e1f4a57ddc
Update repo locations and versions in prep for release (#492) 2021-06-25 18:38:45 +10:00
Firstyear e209904d53
Add workaround for podman subid issue (#491) 2021-06-25 17:08:20 +10:00
cuberoot74088 f3554d80cf
Set default shell to bin/sh (#488) 2021-06-19 15:35:11 +10:00
Firstyear 033b977906
Add ldap vattr mapping (#459) 2021-05-29 12:50:16 +10:00
Firstyear e8b1089bfd
414 clear stale credentials (#447) 2021-05-26 16:11:00 +10:00
vcwai 2f1ce3ed71
445 update pam nsswitch md (#451) 2021-05-24 09:13:41 +10:00
James Hodgkinson 08cf9a8dc7
Adding an example config file (#440) 2021-05-16 14:10:29 +10:00
Firstyear 1eb777485e
Add ability to pick a server role (#432) 2021-05-06 20:58:22 +10:00
Firstyear 8da89613e3
Rough working login page (#417) 2021-04-24 10:53:19 +10:00
Firstyear 72dfe1b035
Idlset2, query cache, acp resolve cache (#409) 2021-04-14 09:56:40 +10:00
James Hodgkinson fed562fa85
Basic documentation for monitoring (#404) 2021-04-13 11:02:14 +10:00
James Hodgkinson f466e2a521
Docs update (#400) 
* I couldn't help it - minor spelling fixes
 2021-04-06 10:08:36 +10:00
Firstyear 6bc719cdb2
Base web UI (#391) 
Initial web ui (not-functional yet)
 2021-03-26 11:22:00 +10:00
Firstyear 060c7b22c0
Draft document (#382) 2021-03-25 10:34:29 +10:00
Firstyear b620a8209c
Pam setup and fedora setup steps (#376) 
Fixes #375 - this documents the pam configs needed for fedora 33 including selinux "gotchas".
 2021-03-17 10:18:43 +10:00