File lldap.changes of Package lldap
-------------------------------------------------------------------
Tue Aug 19 09:27:07 UTC 2025 - Julian Röder <obs@masgalor.de>
- Update to version 0.6.2
* Added LDAP support for searching groups by their groupid.
* Added LDAP support for whoamiOID.
* Added LDAP support for creating groups.
* Added LDAP support for subschema entry.
* Added new endpoint for requesting client settings.
* A missing JWT secret now prevents startup.
* Attributes with invalid characters (such as underscores) cannot be created anymore.
* Searching custom (string) attributes is now case insensitive.
* Using the top-level firstName, lastName and avatar GraphQL fields for users is now deprecated. Use the attributes field instead.
* lldap_set_password now uses the system's SSL certificates.
-------------------------------------------------------------------
Mon Nov 25 07:39:52 UTC 2024 - Julian Röder <obs@masgalor.de>
- Update to version 0.6.1
* The opaque dependency now points to the official crate rather than a fork (#1040)
* Migration of the DB schema from 7 to 8 is now automatic for sqlite, and fixed for postgres (#1045)
* The startup warning about key_seed applying instead of key_file now has instructions on how to silence it (#1032)
-------------------------------------------------------------------
Mon Nov 11 07:27:02 UTC 2024 - Julian Röder <obs@masgalor.de>
- Update to version 0.6.0
* The endpoint /auth/reset/step1 is now POST instead of GET (#704)
* Custom attributes are now supported (#67) ! You can add new fields (string, integers, JPEG or dates) to users and query them.
* Custom object classes (for all users/groups) can now be added (#833)
* Barebones support for Paged Results Control (no paging, no respect for windows, but a correct response with all the results) (#698)
* Make it possible to serve lldap behind a sub-path in (#752)
* There's now an option to force reset the admin password (#748) optionally on every restart (#959)
* entryDN is now supported (#780)
* Unknown LDAP controls are now detected and ignored (#787, #799)
* Added a way to print raw logs to debug long-running sessions (#992)
* Removed password length limitation in lldap_set_password tool
* Group names and emails are now case insensitive, but keep their casing (#666)
* Better error messages (and exit code (#745)) when changing the private key (#778, #1008), using the wrong SMTP port (#970), using the wrong env variables (#972)
* Allow member= filters with plain user names (not full DNs) (#949)
* Correctly detect and refuse anonymous binds (#974)
* Clearer logging (#971, #981, #982)
* Logging out applies globally, not just in the local browser. (#721)
* It's no longer possible to create the same user twice (#745)
* Fix wide substring filters (#738)
* Don't log the database password if provided in the connection URL (#735)
* Fix a panic when postgres uses a different collation (#821)
* The UI now defaults to the user ID for users with no display names (#843)
* Fix searching for users with more than one memberOf filter (#872)
* The UI now correctly detects whether password resets are enabled. (#753)
* Fix a missing lowercasing of username when changing passwords through LDAP (#1012)
* Fix SQLite writers erroring when racing (#1021)
* LDAP sessions no longer buffer their logs until unbind, causing memory leaks (#1025)
* Only expand attributes once per query, not per result (#687)
* When asked to send a password reset to an unknown email, sleep for 3 seconds and don't print the email in the error (#887)
-------------------------------------------------------------------
Mon Oct 14 07:25:56 UTC 2024 - Julian Röder <obs@masgalor.de>
- Update patch instructions to work with newer versions of rpm.
- Fix several typos.
- Drop custom cargo_vendor script for the official (SUSEobs) tool.
-------------------------------------------------------------------
Wed Feb 28 21:50:00 UTC 2024 - Julian Röder <obs@masgalor.de>
- Build optional binaries as subpackages.
- Rebuild with updated Rust components.
* Rust 1.76.0
-------------------------------------------------------------------
Fri Sep 15 06:47:28 UTC 2023 - Julian Röder <obs@masgalor.de>
- Update to version 0.5
* Emails and UUIDs are now enforced to be unique.
If you have several users with the same email, you'll have to disambiguate
them. You can do that by either issuing SQL commands directly
(UPDATE users SET email = 'x@x' WHERE user_id = 'bob';), or by reverting
to a 0.4.x version of LLDAP and editing the user through the web UI.
An error will prevent LLDAP 0.5+ from starting otherwise.
This was done to prevent account takeover for systems that allow to
login via email.
* The server private key can be set as a seed from an env variable (#504).
* Added support for changing the password through a plain LDAP Modify operation (as opposed to an extended operation).
* Allow creating a user with multiple objectClass (#612).
* Emails now have a message ID (#608).
* Added a warning for browsers that have WASM/JS disabled (#639).
* Added support for querying OUs in LDAP (#669).
* Added a button to clear the avatar in the UI (#358).
* Groups are now sorted by name in the web UI (#623).
* Improved logging.
* Default admin user is only created if there are no admins (#563).
* Fixed URL parsing with a trailing slash in the password setting utility (#597).
-------------------------------------------------------------------
Fri Jun 23 07:56:27 UTC 2023 - Julian Röder <obs@masgalor.de>
- Rebuild with updated Rust components.
* Rust 1.70.0
* Wasm-pack 0.12.0
- Bundle all static web-resources and use an index-file that makes use of them.
-------------------------------------------------------------------
Thu Jun 15 15:45:56 UTC 2023 - Julian Röder <obs@masgalor.de>
- Initial release version 0.4.3
