diff options
author | David Sommerseth <dazo@users.sourceforge.net> | 2009-03-23 11:53:59 +0100 |
---|---|---|
committer | David Sommerseth <dazo@users.sourceforge.net> | 2009-03-23 11:53:59 +0100 |
commit | a7ae1f1b792c39233f8b3464d042775947b5852a (patch) | |
tree | e34880c816ff7b7e315b60fa3089963e1aff5283 /TODO | |
parent | 14e0c4e8b8a597783580ba42f993c12646637111 (diff) | |
download | eurephia-a7ae1f1b792c39233f8b3464d042775947b5852a.tar.gz eurephia-a7ae1f1b792c39233f8b3464d042775947b5852a.tar.xz eurephia-a7ae1f1b792c39233f8b3464d042775947b5852a.zip |
Updated TODO list
Diffstat (limited to 'TODO')
-rw-r--r-- | TODO | 50 |
1 files changed, 35 insertions, 15 deletions
@@ -6,32 +6,50 @@ ** Release 1.0 requirements ** -* Write admin program (Magnus) (will be introduced during beta_0.9?) - - Add / Delete / Modify users - - Add / Delete / Modify certificates (by loading the certfile) - - Add / Remove user->certlink - - Add / Delete blacklisted users/cert/IP addr - - Show lastlog - - Show blacklist - - Admin program should use eurephiaDB +* Complete admin program (Magnus) (will be introduced during beta_0.9?) + - Admin program should use eurephiaDB (done) + - Add / Delete / Modify users (done) + - Add / Delete / Modify certificates (by loading the certfile) (done) + - Add / Remove user->certlink (done) + - Add / Remove access profiles + - Show Add / Delete blacklisted users/cert/IP addr + - Show complete lastlog ** ** Release 1.1 requirements ** -* Write PostgreSQL driver (David S.) * Logging to syslog * enhanced firewall thread (fork) - Write a binary which is executed via execve(...) after fork (this should release memory kept by openvpn in the forked process) + - This binary will be started by the eurephia plug-in - This binary loads the firewall interface (dlopen) - - The binary takes care of opening up and destruction of message + - This binary takes care of opening up and destructing of message queues and semaphores -* Admin program - add vpnpasswd program - - Uses PAM to authenticate local shell user - - Changes password in the eurephia user database for the current - shell user +* Separate database API and openvpn plug-in + - Have a separate eurephia daemon which can be chrooted and locked + down. Communicate via SSL, a unix socket or Posix MQ. + - The eurephia daemon will load the database driver and do all + authentication and DB work. + - The openvpn plug-in wil only implement an API to the eurephia daemon + and will never do decisions by itself. + - Firewall changes will be propagated from the openvpn plug-in at this phase +* Admin utility - add ePasswd program + - Changes password in the eurephia user database for the eurephia + authenticated user + - This utility will communicate with the eurephia daemon, so all + authentication is taken care of outside this program. + + +** +** Release 1.2 +** + +* Write PostgreSQL driver (David S.) +* Write web based admin GUI, using libmicrohttpd + ** ** Wish list @@ -45,8 +63,10 @@ - Check that right connection profiles are used - Check that user/cert matches -* Write MySQL driver (release 1.2?) +* Write MySQL driver (release 1.3?) * Implement Kerberos user authentication (release 1.3?) - User/password authentication is done via Kerberos, using userID(?) from Kerberos ... to replace openvpn_users + +* Consider some way of LDAP integration as well |