mod_auth_gssapi.git/tests, branch master A GSSAPI based replacement for the aging mod_auth_kerb. tests: move core dumps to scratchdir 2017-01-11T19:44:21+00:00 Isaac Boukris iboukris@gmail.com 2017-01-09T18:37:59+00:00 7f7e66474c7ea1c0b565734a824a40c317b1faa3 Signed-off-by: Isaac Boukris <iboukris@gmail.com> Reviewed-by: Simo Sorce <simo@redhat.com> Closes #121 
Signed-off-by: Isaac Boukris <iboukris@gmail.com>
Reviewed-by: Simo Sorce <simo@redhat.com>
Closes #121
rewrite: implicitly handle internal redirects 2017-01-11T19:43:08+00:00 Isaac Boukris iboukris@gmail.com 2016-12-17T21:17:00+00:00 a64a32f520884039be0a2240bfa2b5f4040c9c99 Internal redirects are a special case of subrequest - they have no req->main but req->prev instead, so we should check for that too in case the request is not initial. Also, make sure to export MAG environment variables to subrequests and internal redirects. Signed-off-by: Isaac Boukris <iboukris@gmail.com> Reviewed-by: Simo Sorce <simo@redhat.com> Reported-by: scopev24 Closes #119 
Internal redirects are a special case of subrequest - they
have no req->main but req->prev instead, so we should check
for that too in case the request is not initial.

Also, make sure to export MAG environment variables to
subrequests and internal redirects.

Signed-off-by: Isaac Boukris <iboukris@gmail.com>
Reviewed-by: Simo Sorce <simo@redhat.com>
Reported-by: scopev24
Closes #119
Add option to store the session encryption key. 2017-01-03T16:42:52+00:00 Simo Sorce simo@redhat.com 2016-12-16T14:43:25+00:00 e2a50ad80f55bf2a933ef177914caa5c7ac6f4a9 With the new 'file:' sytnax a session key can be automatically generated the first time mod_auth_gssapi runs and stored on the filesystem. Signed-off-by: Simo Sorce <simo@redhat.com> Reviewed-by: Robbie Harwood <rharwood@redhat.com> Closes #117 
With the new 'file:' sytnax a session key can be automatically generated
the first time mod_auth_gssapi runs and stored on the filesystem.

Signed-off-by: Simo Sorce <simo@redhat.com>
Reviewed-by: Robbie Harwood <rharwood@redhat.com>

Closes #117
Make test suite runnable on Debian-likes 2017-01-03T16:36:37+00:00 Robbie Harwood rharwood@redhat.com 2016-12-20T20:32:04+00:00 0d6a1a390a578ab8be5bc0d6225e3e0b07dc7eba This is mostly gunk around how the webserver is called and what is built-in versus a module. I have mostly added templating logic for commenting pieces of the conf file. Signed-off-by: Robbie Harwood <rharwood@redhat.com> Reviewed-by: Isaac Boukris <iboukris@gmail.com> Closes #118 
This is mostly gunk around how the webserver is called and what is
built-in versus a module.  I have mostly added templating logic for
commenting pieces of the conf file.

Signed-off-by: Robbie Harwood <rharwood@redhat.com>
Reviewed-by: Isaac Boukris <iboukris@gmail.com>

Closes #118
Add tests for delegation and ccache mode setting 2016-11-30T10:40:10+00:00 Simo Sorce simo@redhat.com 2016-11-02T12:58:42+00:00 33ba08354e2637ef0f3d76f285f07f44783709ac Signed-off-by: Simo Sorce <simo@redhat.com> Reviewed-by: Robbie Harwood <rharwood@redhat.com> Closes #112 
Signed-off-by: Simo Sorce <simo@redhat.com>
Reviewed-by: Robbie Harwood <rharwood@redhat.com>
Closes #112
Ensure gssapi_session actually contains MagBearerToken 2016-08-15T18:32:51+00:00 Robbie Harwood rharwood@redhat.com 2016-07-22T22:22:24+00:00 877476692b4c8a4c3fc5109483b41c74243fc60f Fallout from #98 Signed-off-by: Robbie Harwood <rharwood@redhat.com> Reviewed-by: Simo Sorce <simo@redhat.com> Closes #100 
Fallout from #98

Signed-off-by: Robbie Harwood <rharwood@redhat.com>
Reviewed-by: Simo Sorce <simo@redhat.com>
Closes #100
Check at top level for python-requests{,-kerberos} 2016-07-25T12:16:10+00:00 Robbie Harwood rharwood@redhat.com 2016-07-22T19:49:21+00:00 2a0b41c926f56588946ca3d73a851f7ec452d53b Signed-off-by: Robbie Harwood <rharwood@redhat.com> Reviewed-by: Simo Sorce <simo@redhat.com> Merges #99 
Signed-off-by: Robbie Harwood <rharwood@redhat.com>
Reviewed-by: Simo Sorce <simo@redhat.com>
Merges #99
Tests: use urandom instead of random 2016-04-12T22:11:09+00:00 Isaac Boukris iboukris@gmail.com 2016-04-06T19:23:14+00:00 ac42a2df226379e2be7d4604e612c4b068ae7269 Useful when running tests on VM with low entropy Reviewed-by: Simo Sorce <simo@redhat.com> Closexs #77 
Useful when running tests on VM with low entropy

Reviewed-by: Simo Sorce <simo@redhat.com>
Closexs #77
Add option to not send a Negotiate headers 2016-02-17T23:59:31+00:00 James Groffen james.groffen@dsto.defence.gov.au 2016-01-08T06:31:50+00:00 f9cc36700c95a88ff7d7489167094556ac0e75cc If negotiation was attempted but failed do not send a new Negotiate header. Useful when only one single sign on mechanism is allowed and to avoid misleading login prompts in some browsers. Added a test of the GssapiDontReauth option to the test suite. Also added SPNEGO no auth test. [SS: reworded and fixed commit subject/comment] [SS: fixed whitespace errors and 80 column wrappings] Reviewed-by: Simo Sorce <simo@redhat.com> Close #65 
If negotiation was attempted but failed do not send a new Negotiate header.
Useful when only one single sign on mechanism is allowed and to avoid
misleading login prompts in some browsers.

Added a test of the GssapiDontReauth option to the test suite.
Also added SPNEGO no auth test.

[SS: reworded and fixed commit subject/comment]
[SS: fixed whitespace errors and 80 column wrappings]

Reviewed-by: Simo Sorce <simo@redhat.com>

Close #65
Add test for Proxy SPNEGO auth 2015-09-03T13:37:25+00:00 Isaac Boukris iboukris@gmail.com 2015-08-09T15:14:57+00:00 5e720934614c152fc00f4e02180d99b0b7dfdbe5 Add appropairate authorization headers to test with SPNEGO too as discussed in #48 Requires recent version of python-gssapi module, see: https://github.com/pythongssapi/python-gssapi/pull/74 Simo: Squashed original patches in one, removed trailing whitespaces and reworded the commit message. Reviewed-by: Simo Sorce <simo@redhat.com> Closes #49 
Add appropairate authorization headers to test with SPNEGO too as
discussed in #48

Requires recent version of python-gssapi module, see:
https://github.com/pythongssapi/python-gssapi/pull/74

Simo: Squashed original patches in one, removed trailing whitespaces
and reworded the commit message.

Reviewed-by: Simo Sorce <simo@redhat.com>
Closes #49