lucaspalomodevelop/core
1
0
Fork 0
mirror of https://github.com/lucaspalomodevelop/core.git synced 2026-03-15 17:14:46 +00:00
Code Issues Packages Projects Releases Wiki Activity
2,275 Commits 1 Branch 0 Tags
Commit Graph

2275 Commits

This Branch
This Branch
All Branches
Author SHA1 Message Date
Ad Schellevis
dfe12a46d7 (proxy) add transparant proxy option to squid including a template for the firewall_nat rules to forward traffic to it 2015-07-30 16:30:21 +00:00
Ad Schellevis
7c806d0432 (legacy) do some cleanups in firewall_nat_edit.php before adding some functionality 2015-07-30 15:57:18 +00:00
Ad Schellevis
81b81a19a2 (menu) add missing firewall_rules_edit.php item 2015-07-30 15:24:58 +00:00
Ad Schellevis
3e4bbfb07c (menu) add missing item 2015-07-30 14:37:14 +00:00
Ad Schellevis
a160f3a2fa (legacy/ldap) allow local users to be created with random password, solves errors in log when linking groups and leaves the possibility open to allow shell login using ldap in a later stage (currently not supported) 2015-07-30 11:44:20 +00:00
Ad Schellevis
15d889805c (rc) add [module]_opnsense_bootup_run tag to rc config to prepare the environment if necessary 
for example, if squid needs some directories to exists before initial run after boot, it could set this in /etc/rc.d.conf/squid

squid_opnsense_bootup_run="/usr/local/opnsense/scripts/proxy/setup.sh"

which effectively results in setup.sh being started followed by the normal service squid start

disadvantage of this, both the service template and the rc system needed to be aware of the setup.
advantage, all services which don't need special preperation are configured as they would be on normal FreeBSD
 2015-07-30 10:26:46 +00:00
Franco Fichtner
280a00d800 interfaces: correctly unset VLAN acceleration; fixes #252 2015-07-30 11:15:13 +02:00
Franco Fichtner
a62931b44a firmware: `better' fix for IPv6 loopback allow; #271 
`block quick' creates a chain-reaction that requires `pass quick' for
loopback traffic, even though we have non-quick loopback pass rules
below.  If `quick' ought to be used, non-quick should be removed
completely, but that is beyond the scope of this fix.

For now, rather pass all IPv6 traffic on the looback device as opposed
to passing all IPv6 traffic with an IPv6 loopback address.
 2015-07-30 10:08:06 +02:00
Franco Fichtner
102443a3e7 firewall: fix squid start with IPv6 disabled; fixes #271 
While blocking IPv6 in this case is a good start, loopback traffic
from internal to internal should never be blocked as some deamons
like squid use it to probe and/or communicate.
 2015-07-30 09:34:14 +02:00
Franco Fichtner
2274e17045 firmware: %v has revision appendend, meh 2015-07-30 06:30:13 +02:00
Franco Fichtner
8edde1ef8b status: fix include in services page 2015-07-30 06:07:14 +02:00
Franco Fichtner
751f365fa4 make: typo 2015-07-29 21:35:35 +02:00
Franco Fichtner
baa961d745 src: whitespace sweep 2015-07-29 23:00:14 +02:00
Franco Fichtner
80270cf220 system: order langauges in GUI 2015-07-29 22:58:07 +02:00
Franco Fichtner
2dcb72f126 lang: add French to package 2015-07-29 22:49:00 +02:00
Franco Fichtner
fb931557ef Merge pull request #289 from gitmod/master 
add fr_FR.po
 2015-07-29 22:47:56 +02:00
gitmod
034b36379b add fr_FR.po 2015-07-29 22:39:30 +02:00
Franco Fichtner
fb2ba14187 pkg: typo 2015-07-29 17:22:53 +02:00
Franco Fichtner
d5cd97a492 pkg: generalise packaging magic; add .in suffix awareness 
o Makes live-mounting easier as the package config samples won't
  be clobbered anymore.

o Automatically picks up ".in" files, runs replace and moves them
  to their permanent location.

o Refactored src directory install while at it.
 2015-07-29 17:00:13 +02:00
Ad Schellevis
fb55c71944 Merge pull request #288 from chrisch1974/hotfix/ldap 
minor LDAP fixes
 2015-07-29 16:57:57 +02:00
Ad Schellevis
1127338cf0 (legacy) fix diag_authentication.php to fit the new reality and move getUserGroups in the process 2015-07-29 14:50:25 +00:00
chrisch1974
daf9ba532e ldap: usermanager: disable username and descr field for ldap users 2015-07-29 16:28:43 +02:00
chrisch1974
1e46db3cd6 ldap: fixed a bug on Active Directory where the name attribute isn't handled correctly 
ldap: add describtion (full name) during import of a user
 2015-07-29 16:20:05 +02:00
Ad Schellevis
c51ac453ac (proxy) add option to ignore subnets from getting into the access log (https://github.com/opnsense/core/issues/287) 2015-07-29 16:16:19 +02:00
chrisch1974
4604048007 ldap: usermanager: disable password field for ldap users 2015-07-29 15:34:39 +02:00
Ad Schellevis
790586b74f (ids) add toggle selected for rulesets and rules (https://github.com/opnsense/core/issues/239) 2015-07-29 15:11:42 +02:00
Ad Schellevis
63db313cf3 (ids) add multi toggle for multiple items at once 2015-07-29 15:10:56 +02:00
Franco Fichtner
558b3033ba dasboard: this is absolutely terrible--iteration breaks widget selection 2015-07-29 14:29:14 +02:00
Franco Fichtner
c7c47ac813 firmware: os-update is going to become opnsense-update 2015-07-29 14:14:28 +02:00
Franco Fichtner
0ba08578e8 dashboard: old widgets should not generate warnings 2015-07-29 12:46:57 +02:00
Franco Fichtner
4977452594 system: always rewrite from the default file 
As an added benefit, (default) will now always revert back to the
actual default from the sample configuration, which is exactly
how it should be.
 2015-07-29 12:18:42 +02:00
Franco Fichtner
682613324c system: add firmware mirror and flavour selection 2015-07-29 11:21:28 +02:00
Franco Fichtner
d4aa07ef38 system: opnsense-devel may activate all languages 2015-07-29 11:21:28 +02:00
Franco Fichtner
6950149bf5 pkg: fold package configuration code into main Makefile 2015-07-29 11:21:28 +02:00
Ad Schellevis
653e8a738d (ids) rearrange some template code 2015-07-29 11:01:19 +02:00
Ad Schellevis
168ec390c3 (ids) reload general settings after download (part 2) 2015-07-29 10:17:24 +02:00
Ad Schellevis
1e11b60a92 (ids) add some documentation and reload general settings after download (to show cron after initial download) 2015-07-29 10:05:18 +02:00
Ad Schellevis
1034aaada8 (ui) make formatTokenizersUI repeatable by removing old tokenizers first 2015-07-29 10:03:43 +02:00
chrisch1974
f13a8d77b5 ldap: auth servers: move bind credentials up on the screen 2015-07-29 09:03:50 +02:00
chrisch1974
18638a90f0 ldap: import users: sort entries 2015-07-29 08:59:42 +02:00
chrisch1974
443d4dbbcc ldap: import users: add scrollbars on IE, Firefox & Opera 2015-07-29 08:59:07 +02:00
Franco Fichtner
8bd21e19a9 Merge pull request #286 from tomcheung789/master 
fix #282
 2015-07-29 07:16:02 +02:00
Chong Cheung
a9287daf47 fix #282 2015-07-29 05:54:13 +08:00
Franco Fichtner
042f798d7e system: fix iteration warning 2015-07-28 21:14:08 +02:00
Franco Fichtner
bf8356c977 rc.initial: apply PSR2 style 2015-07-28 20:59:56 +02:00
Franco Fichtner
0fe885b95c captiveportal: apply PSR2 style 2015-07-28 20:48:16 +02:00
Franco Fichtner
21377312f8 sbin: apply PSR2 style 2015-07-28 20:46:22 +02:00
Ad Schellevis
b4845e6270 (legacy/ldap) trashed almost all old ldap code and made it less obscure.. 
When a user needs to use the web configurator, import the the user from the remote ldap server using "import users" on system_usermanager.php
For backward compatibility purposes ldap_backed still can authenticate without a local user, although the web config isn't usable then.
(this always costs an extra query to determine the distinguished name of the user)
We may need to consider if "authenticate only" should be a bit more explicit to the user, or choose to always import users into OPNsense....
 2015-07-28 16:19:13 +00:00
Franco Fichtner
d5640d74ee xmlrpc: via crash reporter 2015-07-28 15:48:03 +02:00
Ad Schellevis
f9df4803a7 (legacy) some minor style fixes in system_usermanager.php 2015-07-28 14:21:28 +02:00