Max Erenberg
6917247fdd
add members CLI
2021-08-23 13:59:01 +00:00
Max Erenberg
0783588323
announce new user to ceo mailing list
continuous-integration/drone/push Build is passing
Details
2021-08-22 05:44:41 +00:00
Max Erenberg
7142659a8c
force delete Kerberos test principals
continuous-integration/drone/push Build is passing
Details
2021-08-22 04:36:19 +00:00
Max Erenberg
95d083fca1
use our own SPNEGO implementation
continuous-integration/drone/push Build is failing
Details
2021-08-21 06:27:33 +00:00
Max Erenberg
d11c6af2ec
add tests to drone.yml
continuous-integration/drone/push Build is failing
Details
2021-08-20 18:17:00 +00:00
Max Erenberg
14c058eb67
use socket.gethostname() in krb5 test
2021-08-20 01:57:53 +00:00
Max Erenberg
583fcded9b
add test for API request without KRB-CRED
2021-08-19 23:53:13 +00:00
Max Erenberg
46fd926acc
add test for RemoteMailmanService
2021-08-19 22:08:48 +00:00
Max Erenberg
490abb302c
add simple authz tests
2021-08-19 20:33:44 +00:00
Max Erenberg
26fd8f6f68
remove duplicate function definition
2021-08-19 17:22:34 +00:00
Max Erenberg
2a286579cb
Merge branch 'v1' into uwldap_tests
2021-08-19 17:20:47 +00:00
Max Erenberg
ecf089c261
Implement Groups API ( #6 )
...
This PR implements the /api/groups endpoints.
Closes #2 .
Reviewed-on: #6
Co-authored-by: Max Erenberg <merenber@localhost>
Co-committed-by: Max Erenberg <merenber@localhost>
2021-08-19 12:58:59 -04:00
Max Erenberg
cc0bc4a638
add tests for Mailman API
2021-08-19 16:14:41 +00:00
Max Erenberg
2273ffa241
add test for krb5
2021-08-19 06:21:30 +00:00
Max Erenberg
12a83ce4c0
remove create_sync_response
2021-08-19 05:11:22 +00:00
Max Erenberg
28c55b2fed
add tests for UWLDAP API
2021-08-19 04:56:25 +00:00
Max Erenberg
448692018a
add test for group.to_dict() with one member
2021-08-19 00:23:55 +00:00
Max Erenberg
5bda74eaf9
fix test_group_to_dict
2021-08-19 00:05:44 +00:00
Max Erenberg
57ab275634
implement /api/groups endpoints
2021-08-18 23:48:17 +00:00
Max Erenberg
d78d31eec0
add Kerberos delegation ( #5 )
...
This PR adds unconstrained Kerberos delegation to the API.
The client obtains a forwarded TGT and sends it, base64-encoded, in an HTTP header named 'X-KRB5-CRED'. The server reads this credential, creates a new credentials cache for the user, and stores the credential into the new cache. The server can now authenticate to other services (e.g. LDAP) over GSSAPI using the forwarded client's credentials.
Reviewed-on: #5
Co-authored-by: Max Erenberg <merenber@localhost>
Co-committed-by: Max Erenberg <merenber@localhost>
2021-08-18 15:39:14 -04:00
Max Erenberg
dd59bea918
add Kerberos delegation
2021-08-18 01:59:24 +00:00
Max Erenberg
d82b5a763b
use ldap3 instead of python-ldap
2021-08-15 05:04:49 +00:00
Max Erenberg
6cdb41d47b
move all tests to top-level folder
2021-08-14 00:11:56 +00:00