lucaspalomodevelop/core
1
0
Fork 0
mirror of https://github.com/lucaspalomodevelop/core.git synced 2026-03-13 16:14:40 +00:00
Code Issues Packages Projects Releases Wiki Activity
17,703 Commits 1 Branch 0 Tags
Commit Graph

16347 Commits

Author SHA1 Message Date
Ad Schellevis
37a32842fd System: Routes: Configuration - add support for rfc5549, missing implementation part for https://github.com/opnsense/core/issues/8157 
When specifying different protocols for target network and gateway address, add protocol prefixes to both.
 2024-12-30 16:03:59 +01:00
Ad Schellevis
52255d7e46 System: Routes: Configuration - add support for rfc5549, closes https://github.com/opnsense/core/issues/8157 
This change lifts the constraint for matching protocols when the next hop is ipv6 and the route advertised is an ipv4 network.

While here, also cleanup the code a bit for readability and performance reasons.
 2024-12-29 12:54:28 +01:00
Ad Schellevis
752795a229 Firewall: Automation: Filter - add tcpflags1,tcpflags2 for https://github.com/opnsense/core/issues/8143 2024-12-28 19:45:07 +01:00
Ad Schellevis
c1e44bcb65 Firewall: Automation: Filter - add match prio for https://github.com/opnsense/core/issues/8143 2024-12-28 19:06:44 +01:00
Ad Schellevis
92789c5278 Firewall: Automation: Filter - add tag, tagged for https://github.com/opnsense/core/issues/8143 2024-12-28 18:59:49 +01:00
Ad Schellevis
5eaa7fc19d Firewall: Automation: Filter - add set-prio[-low] for https://github.com/opnsense/core/issues/8143 2024-12-28 18:28:38 +01:00
Ad Schellevis
70b48230e1 Firewall: Automation: Filter - add Max source connections for https://github.com/opnsense/core/issues/8143 2024-12-28 18:00:07 +01:00
Ad Schellevis
b8e3015f53 mvc:javascript:SimpleFileUploadDlg() - load csv as text to prevent encoding isssues, closes https://github.com/opnsense/core/issues/8169 2024-12-27 15:10:57 +01:00
Ad Schellevis
bbfd1f3f8b Firewall: Automation: Filter - add adaptive timeouts for https://github.com/opnsense/core/issues/8143 2024-12-26 19:26:28 +01:00
Ad Schellevis
e6440cb867 Firewall: Automation: Filter - add allowopts for https://github.com/opnsense/core/issues/8143 2024-12-24 17:28:10 +01:00
Ad Schellevis
0d9550b912 Firewall: Automation: Filter - add max (states) option for https://github.com/opnsense/core/issues/8143 2024-12-24 17:17:28 +01:00
Ad Schellevis
207d51de55 Firewall: Automation: Filter - add max-src-nodes, max-src-states options for https://github.com/opnsense/core/issues/8143 2024-12-24 17:06:41 +01:00
Ad Schellevis
d07e3c620e Firewall: Automation: Filter - add 'statetimeout' and validations for https://github.com/opnsense/core/issues/8143 
Although this component is mainly used for api access, experiment a bit further with the inpu dialog as well.
 2024-12-24 16:49:02 +01:00
Ad Schellevis
3cbea52267 System: High Availability - XMLRPC Client / replace file_get_contents() with curl implementation, closes https://github.com/opnsense/core/issues/7561 
While here, also offer optional peer tls verification as this is/was disabled by default.
In most cases verification isn't very relevant when using a direct attached neighbor, but if someone has infrastructure in between, extra safeguards are now possible.

With this inplace, allow_url_fopen can safely be disabled on our end (which was the primary goal here).
 2024-12-24 13:54:59 +01:00
Ad Schellevis
0bd12b5549 Firewall: Automation: Filter - add some fields for https://github.com/opnsense/core/issues/8143 2024-12-23 21:21:39 +01:00
Franco Fichtner
1e788857a5 system: reverse dependencies here too 2024-12-23 12:01:17 +01:00
Ad Schellevis
f16348457b System: High Availability: Status - warn about version mismatches, closes https://github.com/opnsense/core/issues/8152 2024-12-22 14:46:34 +01:00
Ad Schellevis
adecb9ddf1 auth/sync_user.php - change import order as noted in https://github.com/opnsense/core/pull/8156 2024-12-22 14:43:29 +01:00
Ad Schellevis
96a1145c3e System: Access: Users - add "system list shells" and hook to shell field, closes https://github.com/opnsense/core/issues/8155 2024-12-22 14:37:42 +01:00
Loganaden Velvindron
e0e7e0b638
Update ICANN Trust Anchor to include the new one which will be active in 2026 (#7852) 
Signed-off-by: Jagveer Loky (jagveer@cyberstorm.mu)

Signed-off-by: Jagveer Loky (jagveer@cyberstorm.mu)
 2024-12-21 09:25:29 +01:00
Stephan de Wit
909e945e7b System: Access: Users: add missing dashboard container 2024-12-20 11:38:30 +01:00
Ad Schellevis
514f87adb8 System: Access: Users - remove support for local passwords 
Since https://github.com/opnsense/core/issues/998 we support our authenticators for all service types, for backward compatibility reasons we kept default unix authentication available, since this is hardly used anymore, after 8 years it's time to deprecate this option.
 2024-12-19 12:59:54 +01:00
Franco Fichtner
6e9bcf7830 system: typo, end sentence 2024-12-19 12:41:56 +01:00
Franco Fichtner
44f5964921 src: style sweep 2024-12-19 12:13:40 +01:00
Ad Schellevis
7169b29e0b System: Access: Users - allow long usernames for non local users (without a shell account), for https://github.com/opnsense/core/issues/7904 
With the new mvc code inplace, it's also a good idea to loosen the constraints for some accounts. One of the mail advantages is that we can now user email addresses as usernames for most services.
 2024-12-19 12:07:30 +01:00
Franco Fichtner
4f0fdfa1a3 wizard: revert a373d411f67cb1 now that new logos are in 2024-12-19 11:25:11 +01:00
Ad Schellevis
6a7352e528 authentication - remove expireaccounts script which has been disfunctional for some time, accounting for expirey is the responsibility of the authenticator. 
ref: 252fd04811/src/opnsense/mvc/app/library/OPNsense/Auth/Local.php (L161-L162)
 2024-12-19 10:09:26 +01:00
Franco Fichtner
252fd04811 ipsec: fix mobile clients reload missing system.inc 
PRL https://forum.opnsense.org/index.php?topic=44724.0
 2024-12-19 09:49:13 +01:00
Franco Fichtner
bf0c69dff2 mvc: style sweep 2024-12-19 09:17:48 +01:00
Ad Schellevis
10582447d3 Firewall: Automation: Filter - add interface inverse for https://github.com/opnsense/core/issues/8143 2024-12-18 20:53:03 +01:00
Ad Schellevis
83587d965f Firewall: Automation: Filter - reorganize input dialog and add reply-to option, for https://github.com/opnsense/core/issues/8143 2024-12-18 20:31:08 +01:00
Ad Schellevis
8e310b1c1f Firewall: Automation: Filter - always lowercase 'protocol' to avoid mismatches, partly reverts previous commit. 2024-12-18 15:49:01 +01:00
Ad Schellevis
bcb5bae3e6 Firewall: Automation: Filter - allow TCP/UDP combination in protocol selection, closes https://github.com/opnsense/core/issues/7962 2024-12-18 14:39:19 +01:00
Ad Schellevis
0a408b3d57 Firewall: Automation: Filter - add "IPv4+IPv6" in ipprotocol (https://github.com/opnsense/core/issues/7962) 2024-12-18 14:02:35 +01:00
Franco Fichtner
8302270ae8 src: style 2024-12-18 10:07:05 +01:00
Ad Schellevis
ee269a1991 Services: Kea DHCP: Kea DHCPv4 - align hostname validation with manual host entries (support RFC2181), closes https://github.com/opnsense/core/issues/8128 2024-12-18 09:19:09 +01:00
Ad Schellevis
6145b7f0d0 Mvc/Router - normalize multiple slashes in paths, fix regression in 61c9d2f5b1 
Although zero (0) is hardly used in url's, when it is used, the function should not suppress it. Fix this by using a closure in array_filter() which only filters empty strings.

ref: https://www.reddit.com/r/opnsense/comments/1hghfzv/health_reporting_rrd_graphs_stopped_working_with/
 2024-12-18 08:42:27 +01:00
Ad Schellevis
24485709f3 System: High Availability: Status - some missing links for https://github.com/opnsense/core/issues/7899 2024-12-17 18:24:20 +01:00
Franco Fichtner
3009ad964d firmware: add a light script mode -S to launcher 
Because otherwise we do not get the current return value in the
shell menu option script after the refactor.
 2024-12-17 15:58:54 +01:00
Franco Fichtner
7f61f1b80a firmware: new fingerprint for 25.1 2024-12-17 11:15:31 +01:00
Franco Fichtner
ec4277c9aa src: style 2024-12-17 08:52:34 +01:00
Franco Fichtner
76076a9431 src: style 2024-12-17 08:49:38 +01:00
Franco Fichtner
a4d047918f src: style 2024-12-17 08:48:32 +01:00
Franco Fichtner
9b0e211213 filter: minor style 2024-12-17 08:46:19 +01:00
Franco Fichtner
9691c0842b src: style 2024-12-17 08:42:10 +01:00
Franco Fichtner
08ef44fb8b src: style 2024-12-17 08:37:46 +01:00
Franco Fichtner
d892aba076 src: style sweep 2024-12-16 21:43:14 +01:00
Ad Schellevis
8ab19059cc System: High Availability: Status - add frontend code, closes https://github.com/opnsense/core/issues/7899 2024-12-16 20:57:31 +01:00
Stephan de Wit
0819a01942 ipsec: remove hashing algorithm from null cipher 2024-12-16 17:13:19 +01:00
Ad Schellevis
dd595b9a78 MVC: call initialize() after authentication, which is the same as it was in Phalcon earlier. 
This fixes a small regression not being able to access user data during init and prevents executing code before the user is authenticated, although in practice this is only boilerplate in our codebase.
 2024-12-16 16:55:18 +01:00