summaryrefslogtreecommitdiffstats
path: root/src/windows/identity
Commit message (Collapse)AuthorAgeFilesLines
* Delete Network Identity ManagerTom Yu2011-10-17436-101374/+0
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@25363 dc483132-0cff-0310-8789-dd5450dbe970
* Implement Camellia-CTS-CMAC instead of Camellia-CCMGreg Hudson2010-11-202-6/+6
| | | | | | | | | | | Replace the Camellia-CCM enctypes with Camellia-CTS-CMAC. Still not compiled in by default since we don't have enctype assignments yet. ticket: 6822 target_verion: 1.9 tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@24524 dc483132-0cff-0310-8789-dd5450dbe970
* Merge the camellia-ccm branch to trunk. Since there are no IANAGreg Hudson2010-09-072-0/+10
| | | | | | | | | assignments for Camellia-CCM enctypes or cksumtypes yet, they are disabled in a default build. They can be made available by defining (via CPPFLAGS) local-use enctype numbers for the enctypes and cksumtypes. git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@24295 dc483132-0cff-0310-8789-dd5450dbe970
* make mark-cstyleTom Yu2009-10-31128-2377/+2347
| | | | | | make reindent git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@23100 dc483132-0cff-0310-8789-dd5450dbe970
* The NIM error reporting functions (in src/windows/identity/kherr ) keepJeffrey Altman2008-07-231-1/+1
| | | | | | | | | | | | | | | | | | | | track of the the error message with the highest severity level that was reported for a specific error reporting context. However, if another error message of the same severity is reported, the error message being tracked will be updated to be the newly received error. The user will often only be notified of the error message that was tracked for a specific operation. Therefore, tracking the last message with the highest priority has the unfortunate side-effect of not reporting the cause of a failure. This patch changes the condition for updating the tracked error message to be the first message with the highest severity. ticket: 6047 tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20573 dc483132-0cff-0310-8789-dd5450dbe970
* This patch modifies the NIM Kerberos v5 plug-in to use the Jeffrey Altman2008-07-234-8/+64
| | | | | | | | | | | | | krb5_get_error_message() function to look up the error string if the call to krb5_get_init_creds_password() fails. If the call to krb5_get_error_message() fails, the caller will failover to the previous method of looking up a suitable error message based on the error code. ticket: 5745 tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20572 dc483132-0cff-0310-8789-dd5450dbe970
* Jeffrey Altman2008-07-232-0/+9
| | | | | | | | | | | | | | | | | | | The /src/windows/identity/plugins/common/dynimport.{c,h} files are used by the NIM Kerberos v5 plug-ins for run-time dynamic linking. They currently do not declare or import the following functions: krb5_get_error_message() krb5_free_error_message() krb5_clear_error_message() This patch adds declarations and definitions required for locating these functions. Relies on the addition of these functions to the prototype list in the Pismere loadfuncs-krb5.h. See ticket 6045. ticket: 6046 tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20571 dc483132-0cff-0310-8789-dd5450dbe970
* cw_handle_header_msg():Jeffrey Altman2008-07-231-6/+2
| | | | | | | | | | | | | | | | The behavior of the HDN_ENDTRACK notification has changed slightly on Vista. HDM_GETITEMRECT, when used while handling HDN_ENDTRACK, returns the item extents that were there prior to the user starting the resizing operation. Earlier it would return the extents that resulted from the resizing operation. This resulted in a visual update problem on Windows Vista/2008 in the NIM Advanced View. ticket: 5605 tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20570 dc483132-0cff-0310-8789-dd5450dbe970
* Windows: avoid use of cygwin mkdir and rmdir commandsJeffrey Altman2008-01-232-4/+4
| | | | | | | | | | | | | | | Microsoft's nmake versions 8.x and 9.x prefer executables over internal shell commands. This is a change from previous versions. Cygwin's mkdir and rmdir commands do not have the same semantics as the cmd.exe shell versions. Change the definitions of MKDIR and RMDIR to use 'md' and 'rd' in order to avoid the use of the cygwin versions. ticket: new tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20211 dc483132-0cff-0310-8789-dd5450dbe970
* KFW: BUG: KRB5CRED: Set identity data before sending notificationJeffrey Altman2007-12-121-1/+1
| | | | | | | | | | | Call tc_set_ident_data() before kcdb_credset_collect(). Make sure the identity data is set before the credentials change notification is broadcast. ticket: new component: windows tags: pullup git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20176 dc483132-0cff-0310-8789-dd5450dbe970
* The khm_show_main_window() function is no longer calledJeffrey Altman2007-11-141-7/+18
| | | | | | | | | | | | | | | | | | | at startup with khm_nCmdShow == SW_SHOWMINIMIZED in order to hide the main application by calling khm_hide_main_window(). Instead, the main application window is simply never shown. As a result, khm_show_main_window() needs to respond to khm_nCmdShow == SW_SHOWMINIMIZED not by hiding the window but by changing the khm_nCmdShow state to SW_SHOW and then calling ShowWindow(). This change will address the problem whereby "Show NIM Window" had to be triggered twice by the user when the process was started in a minimized state. ticket: 5842 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20164 dc483132-0cff-0310-8789-dd5450dbe970
* NIM: BUG: APP: New edit controls should be marked ES_AUTOHSCROLLJeffrey Altman2007-10-051-1/+1
| | | | | | | | | | | | | | | The EDIT controls used to accept input from the user must be set to support automatic horizontal scrolling. Otherwise, the number of input characters is arbitrarily restricted based upon the font selected by the user as part of the active Windows theme. Horizontal scrolling is enabled with the ES_AUTOHSCROLL flag during control construction. ticket: new component: windows git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20101 dc483132-0cff-0310-8789-dd5450dbe970
* Process WM_CLOSE for the command-line option dialogJeffrey Altman2007-10-011-0/+8
| | | | | | | | | ticket: 5798 tags: pullup target_version: 1.6.3 component: windows git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20035 dc483132-0cff-0310-8789-dd5450dbe970
* NIM: BUG: APP: notification icon tooltip wrong stringJeffrey Altman2007-10-011-0/+2
| | | | | | | | | | | | | | | | | | | The Network Identity Manager notification icon can display a tooltip when the user hovers the mouse cursor over it. It is currently used to indicate the default identity (if one is found). However, when retrieving the name of the default identity, the size of the buffer was left unspecified. This patch specifies the correct buffer size. The function called with the incorrect buffer size was kcdb_identity_get_name(). That function does not write more than KCDB_IDENT_MAXCCH_NAME characters regardless of the size of the buffer specified, and the buffer that was passed in is allocated to be this size. No buffer overrun was present in the existing code, although the behavior was incorrect. ticket: new git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20034 dc483132-0cff-0310-8789-dd5450dbe970
* When Network Identity Manager starts, the credentials displayJeffrey Altman2007-10-011-1/+1
| | | | | | | | | | | | | | | | | | | | | | enumerates known identities and displays them if necessary. However, as plug-ins load and the list of known identities, their properties and credentials change, the order of the displayed list will also change. The existing code does not deal well in respect to tracking the current selection when the list of identities and credentials change. This results in inconsistent behavior where the identity that was originally at the top of the list maintains its selection state while the identity at the top of the list after all the plug-ins have loaded will receive focus. This patch fixes this problem by explicitly setting focus and selection to the identity or credential at the current cursor location following a change in the credentials list. ticket: 5782 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20033 dc483132-0cff-0310-8789-dd5450dbe970
* The credentials display in Network Identity Manager colors theJeffrey Altman2007-10-011-14/+19
| | | | | | | | | | | | | | | | | background of identity headings based on the expiration state of the credentials that belong to the identity. This patch changes the behavior to color these headings based on the existence and expiration state of identity credentials. With this change, only identities that have valid identity credentials will appear in green. The same logic is used when drawing the menu items in the "Set default" sub-menu in the notification icon. ticket: 5783 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20032 dc483132-0cff-0310-8789-dd5450dbe970
* NIM: BUG: APP: notification icon state Jeffrey Altman2007-10-011-13/+28
| | | | | | | | | | | | | | | | Currently, the notification icon that is created by Network Identity Manager indicates the status of all the known credentials. If any credential belonging to any identity is expired or in a critical state, the icon will change color to indicate this. This patch changes the behavior to only indicate the status of credentials belonging to the default identity. The expiration state of credentials that do not belong to the default identity no longer affect the appearance of the notification icon. ticket: new git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20031 dc483132-0cff-0310-8789-dd5450dbe970
* NIM: BUG: APP: identity data corruptionJeffrey Altman2007-10-011-1/+1
| | | | | | | | | | | | | | The credentials display in Network Identity Manager uses a cached set of properties for each identity that has credentials. The existing code used the wrong field of the khui_credwnd_identity structure to store the credentials type name associated with an identity, resulting in a corrupt data structure. This patch fixes the code to use the correct field. ticket: new git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20030 dc483132-0cff-0310-8789-dd5450dbe970
* NIM: BUG: APP: View-Select columns Jeffrey Altman2007-10-011-1/+2
| | | | | | | | | | Change "View columns" to "Select columns" in the "View" menu of Network Identity Manager to be consistent with other Windows applications. ticket: new git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20029 dc483132-0cff-0310-8789-dd5450dbe970
* NIM: BUG: APP: leaking prompts in obtain new credentials dialogJeffrey Altman2007-10-011-0/+12
| | | | | | | | | | | | | | The Kerberos v5 plug-in for Network Identity Manager was not clearing the list of prompts properly when a user changes the active identity in the new credentials dialog. The stale prompts would be visible to the user if the newly selected identity is invalid or the new identity cannot be validated. This patch clears the prompts if there is an identity change. ticket: new git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20028 dc483132-0cff-0310-8789-dd5450dbe970
* add descriptions of credential flags, identity icons, and push-pinsJeffrey Altman2007-10-0124-173/+221
| | | | | | | | | | | | update screen shots add credits to Fermilabs and Stanford University. other changes for kfw 3.2.2 release. ticket: 5789 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20027 dc483132-0cff-0310-8789-dd5450dbe970
* fix the description of the notification icon status colorsJeffrey Altman2007-10-012-0/+0
| | | | | | ticket: 5789 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20026 dc483132-0cff-0310-8789-dd5450dbe970
* NIM: BUG: LIB: deadlock in kmqJeffrey Altman2007-09-303-0/+19
| | | | | | | | | | | | Do not obtain a critical section that is already being held: "cs_kmq_types" Update the docs to indicate the additional restriction. ticket: new component: windows git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20025 dc483132-0cff-0310-8789-dd5450dbe970
* When there is no ImagePath value for a module it indicatesJeffrey Altman2007-09-301-1/+5
| | | | | | | | | | | | | that the module has not been installed. Do not report an error to the end user for uninstalled modules. This will only annoy the user and there is probably nothing the user can do about it. Perhaps the user uninstalled the module intentionally. The fact that there is still a HKCU key remaining is not an indication that the module is in use. ticket: 5753 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20023 dc483132-0cff-0310-8789-dd5450dbe970
* Remove Krb5Cred, Krb5Ident, and Krb4Cred default configuration data fromJeffrey Altman2007-09-301-8/+8
| | | | | | | | | | | | | | | the KMM Schema. Require that modules that are installed be properly installed. Add NIM Module Registry values to the NSIS installer. These values were already being set by the Wix installer. By removing the ImagePath default, unable to load module errors will not be generated when the module has not in fact been installed. ticket: 5753 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20022 dc483132-0cff-0310-8789-dd5450dbe970
* fix documentation typoJeffrey Altman2007-09-301-1/+1
| | | | | | ticket: 5787 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20021 dc483132-0cff-0310-8789-dd5450dbe970
* NIM: disable warningJeffrey Altman2007-09-301-1/+4
| | | | | | | | | | Disable the potentially uninitialized variable warning for 'ri'. The variable cannot be used when uninitialized. ticket: new component: windows git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20020 dc483132-0cff-0310-8789-dd5450dbe970
* NIM: PDF user documentation updates for KFW 3.2.2Jeffrey Altman2007-09-302-0/+0
| | | | | | | | | updates for NIM 1.3.1 / KFW 3.2.2 ticket: new component: windows git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20019 dc483132-0cff-0310-8789-dd5450dbe970
* NIM: BUG: APP: Provide keyboard accelerator Jeffrey Altman2007-09-291-1/+1
| | | | | | | | | | In the Advanced mode of the Obtain New Credentials dialog the keyboard accelerator was missing. ticket: new component: windows git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20018 dc483132-0cff-0310-8789-dd5450dbe970
* Fix typoJeffrey Altman2007-09-291-0/+0
| | | | | | ticket: 5787 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20017 dc483132-0cff-0310-8789-dd5450dbe970
* NIM: BUG: APP: Spell CheckJeffrey Altman2007-09-292-34/+34
| | | | | | | | | Correct typos. Make use of "plug-in" vs "plugin" consistent. ticket: new component: windows git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@20016 dc483132-0cff-0310-8789-dd5450dbe970
* NIM: FEATURE: APP: Notification Icon Tooltip Jeffrey Altman2007-09-273-34/+66
| | | | | | | | | | | | | | The Network Identity Manager notification icon can have a tooltip associated with it. The tooltip will be displayed to the user if she hovers the mouse cursor over the notification icon. Currently, the tooltip is used to indicate the current status of Network Identity Manager. This patch adds the name of the default identity to the tooltip. ticket: new component: windows git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19985 dc483132-0cff-0310-8789-dd5450dbe970
* NIM: BUG: LIB: optimize khui_find_action()Jeffrey Altman2007-09-271-7/+9
| | | | | | | | | | | | In Network Identity Manager, when locating the action object corresponding to an action identifier using khui_find_action(), don't search through the list of standard actions if we already know that the object we are searching for is a custom action. ticket: new component: windows git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19984 dc483132-0cff-0310-8789-dd5450dbe970
* Add a "Set default" sub menu to the Network Identity ManagerJeffrey Altman2007-09-2712-59/+317
| | | | | | | | | | | | | notification icon context menu. The submenu will display a list of identities that the user can select as the default identity. Each identity that is displayed in the sub menu will be colored the same way it is colored in the basic view to provide a hint as to the state of the credentials belonging to the identity. ticket: 5724 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19983 dc483132-0cff-0310-8789-dd5450dbe970
* Add a "View all identities" option to the view menu of NetworkJeffrey Altman2007-09-279-7/+77
| | | | | | | | | | | | | Identity Manager. This option will be toggled when selected. If enabled, all the known identities will be displayed in any credentials view which uses the identity of credentials as the primary group-by field. The setting of this option is persistent. ticket: 5719 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19982 dc483132-0cff-0310-8789-dd5450dbe970
* Document use of KRB5_CCH_CCNAME for ccache name lengthJeffrey Altman2007-09-251-4/+4
| | | | | | ticket: 5772 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19978 dc483132-0cff-0310-8789-dd5450dbe970
* change all MAX_PATH ccname buffer lengths to KRB5_CCH_CCNAME and Jeffrey Altman2007-09-251-8/+8
| | | | | | | | document the use of KRB5_CCH_CCNAME. ticket: 5772 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19977 dc483132-0cff-0310-8789-dd5450dbe970
* NIM: BUG: KMM: miscellaneous fixesJeffrey Altman2007-09-253-13/+17
| | | | | | | | | | | | | | | | | | | kmm_reg.c: Allocate enough memory to hold the entire PluginList multi-string plus an extra NUL if the registry value was not properly terminated. kmm_registrar.c: Do not record an error loading a module if there was no configuration for it. kmmmain.c: Avoid a race condition by sending the thread quit message instead of posting it. Do so outside of the critical section to avoid a deadlock. ticket: new component: windows git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19976 dc483132-0cff-0310-8789-dd5450dbe970
* NIM: BUG: KRB5: cleanup krb5funcsJeffrey Altman2007-09-251-2/+3
| | | | | | | | | | | | | | | | (1) remove an extraneous backslash from the generated FILE: ccache name. GetTempPath() always returns paths terminated with a backslash. (2) increase the max ccache name length to KRB5_CCH_CCNAME from MAX_PATH. These changes have dependencies on revisions 19891 and 19897. ticket: new component: windows git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19975 dc483132-0cff-0310-8789-dd5450dbe970
* More consolidation of the computation of the default ccache nameJeffrey Altman2007-09-251-29/+2
| | | | | | ticket: 5691 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19974 dc483132-0cff-0310-8789-dd5450dbe970
* Set svn:eol-style on a bunch of text-looking files that didn't have itKen Raeburn2007-09-2487-7787/+7787
| | | | git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19972 dc483132-0cff-0310-8789-dd5450dbe970
* NIM: BUG: Restore Copyright removed in revision 19855Jeffrey Altman2007-09-241-0/+1
| | | | | | | | | Restore MIT Copyright removed in revision 19855. ticket: new component: windows git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19968 dc483132-0cff-0310-8789-dd5450dbe970
* NIM: BUG: khm_krb5_initialize() failed to return error codeJeffrey Altman2007-09-241-4/+4
| | | | | | | | | | | | | | | | khm_krb5_initialize() is called in the krb5cred.dll and krb4cred.dll credential providers in order to ensure that the caller has references to a valid krb5_context and a valid krb5_ccache. If the krb5_cc_resolve() call failed, the error code was not being returned to the caller. Instead, success was returned which in turn would result in the caller believing the NULL krb5_ccache pointer was in fact valid. This fix resolves Microsoft's WER Event ID 432405961. ticket: new component: windows git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19967 dc483132-0cff-0310-8789-dd5450dbe970
* Move the removal of the vc70.pdb and vc80.pdb files to the Jeffrey Altman2007-09-2213-23/+9
| | | | | | | | | global clean rule in config/Makefile.w32. No need to replicate them in each individual Makefile. ticket: 5756 git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19966 dc483132-0cff-0310-8789-dd5450dbe970
* NIM: APP: BUG: restore HideWatermark functionalityJeffrey Altman2007-09-211-1/+6
| | | | | | | | | | Restore the HideWatermark functionality that was accidently removed from ui/credwnd.c ticket: new component: windows git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19964 dc483132-0cff-0310-8789-dd5450dbe970
* Windows\Identity Makefile "clean" moreJeffrey Altman2007-09-1813-11/+46
| | | | | | | | | | make sure that we clean up vc70.pdb, vc80.pdb, and temporary files generated during the build process. ticket: new component: windows git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19955 dc483132-0cff-0310-8789-dd5450dbe970
* NIM file ccache support improvementsJeffrey Altman2007-08-294-60/+163
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | NIM supports the ability of the user to specify an explicit ccache name for use with an identity. If this ccache is a FILE ccache, we need to be able to store credentials into the ccache. krb5cred.dll did not previously specify the KRB5_TC_OPENCLOSE flag on the ccache when setting other flags such as KRB5_TC_NOTICKET (which is used with MSLSA ccaches). As a result, open/close mode was turned off, the ccache file would be opened in read-only mode and attempts to store credentials into the ccache would fail. This is fixed by specifying KRB5_TC_OPENCLOSE when setting the ccache flags. When a CCAPI implementation is unavailable, we need to automatically generate the FILE ccache name if one has not already been specified. We default to a file stored in the user's Local Settings\Temp directory. The generated ccache is then added to the file ccache watch list. Finally, some users have complained about the behavior of Microsoft Vista's UAC mode and how it makes the CCAPI cache useless for storing credentials that must be used in conjunction with processes that do not have restricted privileges since those processes run in a separate logon session. For these users we have added a "DefaultToFileCache" registry value that can be specified to force the use of FILE ccaches in preference to CCAPI ccaches when there is no explicit ccache specified for a given identity. Unlike CCAPI ccaches, the FILE ccaches are accessible from both restricted and unrestricted processes when UAC is active. ticket: new component: windows git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19897 dc483132-0cff-0310-8789-dd5450dbe970
* NIM - a small readability changeJeffrey Altman2007-08-291-1/+1
| | | | | | | | | | Instead of testing for NOT the machine key, test for is the user key. ticket: new component: windows/identity/kconfig/api.c git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19896 dc483132-0cff-0310-8789-dd5450dbe970
* NIM: remove unused symbolsJeffrey Altman2007-08-291-2/+0
| | | | | | | | | | Remove unused preprocessor symbols automatically added by Visual Studio's dialog editor. ticket: new component: windows/identity/ui/resource.h git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19895 dc483132-0cff-0310-8789-dd5450dbe970
* NIM: 64-bit Windows Support and Removal of Compile Time WarningsJeffrey Altman2007-08-2840-568/+713
| | | | | | | | | | | | | | | | | | | | | | | | This patch permits Network Identity Manager to be built for 64-bit Windows. In the process all compile time warnings have been taken care of. For 64-bit Windows, we do not build the Kerberos v4 Credential Provider and we will not attempt to load the krb524 library. Note that when testing the 64-bit NIM, there is no CCAPI at the moment so you must manually specify a FILE: ccache as part of the identity's Kerberos v5 configuration if you want to use cache's other than the MSLSA. This patch also consolidates the computation of the default ccache name into utility functions: khm_krb5_get_identity_default_ccache khm_krb5_get_identity_default_ccacheA ticket: new component: windows git-svn-id: svn://anonsvn.mit.edu/krb5/trunk@19891 dc483132-0cff-0310-8789-dd5450dbe970
generated by cgit (git 2.34.1) at 2025-12-30 22:30:09 +0000