rooty/yubikey-val
1
0
Fork 0
mirror of https://github.com/Yubico/yubikey-val.git synced 2024-11-29 00:24:13 +01:00
Code Issues Projects Releases Wiki Activity
809 Commits 7 Branches 44 Tags 1.1 MiB
8d3be1f352
Commit Graph

47 Commits

Author SHA1 Message Date
Paul Menzel
8d3be1f352 ykval-config.php: Use *ksm* instead of *kms* 
Avoid confusion and use the correct spelling for the three letter
acronym KSM (Key Storage Module).
 2015-12-08 16:31:53 +01:00
Jean Paul Galea
c4b20dd105 Added localhost port 80 for ksm service. 
- previously the default config only included port 80.

- this was changed in 382cfc2ab5,
	to avoid issues with yhsm-yubikey-ksm, which defaults to port 8002.

- however, this broke configurations running with yubikey-ksm,
	which defaults to port 80.

- a better approach is to have both projects using the same defaults,
	but for now we'll include both urls instead.

- the ksm decrypt requests happen asynchronously,
	so there should not be any performance degradation.

	(since either one of the urls will timeout)
 2015-09-24 11:19:32 +02:00
Jean Paul Galea
382cfc2ab5 Modify default KSM URL. 
- our ksm daemon listens on port 8002 by default,
	so ykval should also have the same default.
 2015-07-28 17:09:36 +00:00
Jean Paul Galea
b417759932 Update copyright year. 2015-07-20 20:01:16 +00:00
Jean Paul Galea
c0048ce7cc Add FIXME markers. 2015-07-20 19:56:43 +00:00
Jean Paul Galea
c52300ab39 Improve documentation. 2015-07-20 19:39:59 +00:00
Jean Paul Galea
4ca6fb5448 Refactor database configuration. 
- don't repeat config-db.php file path

- add @is_readable,
	we might not have the proper permissions.

- use 'require_once' instead of 'include',
	this file should only be included once and we
	should fail dramatically if we can't load it.

- better documentation.
 2015-07-20 19:20:04 +00:00
Jean Paul Galea
7e76f9bff8 Cosmetic changes. 
\# -> //
 2015-07-20 19:09:38 +00:00
Jean Paul Galea
1dab5c64aa Cosmetic changes. 2015-07-20 19:04:57 +00:00
Jean Paul Galea
f9fd53046a Move comment where applicable. 2015-07-20 19:04:36 +00:00
Jean Paul Galea
f99776b700 Cosmetic changes. 2015-07-20 18:59:16 +00:00
Jean Paul Galea
be529e2224 Remove unused variables. 
- will add db host/port later, currently they are ignored even if configured.
 2015-07-20 18:58:03 +00:00
Jean Paul Galea
182b6f326b Use TLS in ykval-config.php examples 2015-07-20 18:51:40 +00:00
Jean Paul Galea
087b38496b Cosmetic changes. 2015-07-15 15:05:04 +02:00
Cam
0a52e8611f Modify config-db.php include to check for file instead of doing a (failed) include and spamming the log files that the file doesn't exist 2015-05-28 01:06:57 +00:00
Jean Paul Galea
4da7dc7895 Have enough rope to hang yourself. 
- Don't be overly strict,
	and allow users to hang themselves in they want to.
 2015-04-14 09:00:18 +02:00
Jean Paul Galea
8df329aa0e Allowed certain cURL options to be configurable. 
- When calling either URLs in the sync pool or the KSMs,
    the following curl options are configurable;

    CURLOPT_PROTOCOLS
    CURLOPT_IPRESOLVE
    CURLOPT_SSLVERSION
    CURLOPT_SSL_VERIFYPEER
    CURLOPT_SSL_VERIFYHOST
    CURLOPT_CAINFO
    CURLOPT_CAPATH
 2015-04-13 17:42:13 +02:00
Jean Paul Galea
ed3211cb9d Removed php closing tag. 
- Considered a best practice,
	avoids the possibility of introducing whitespace after the closing tag.
 2015-04-13 16:08:52 +02:00
Simon Josefsson
276616d871 Use LF as EOL consistently. 2013-04-17 17:24:50 +02:00
Dain Nilsson
e21b53fc83 Default to allow the same IPs for resync as for sync. 2013-02-13 12:54:44 +01:00
Dain Nilsson
ee1f040b00 Updated copyright headers. 2013-02-04 17:39:36 +01:00
Dain Nilsson
08ae17bbbd Made ykval-config.php work out of the box. 2013-01-28 15:29:48 +01:00
Klas Lindfors
34706698a4 Merge branch 'master' into feature/oracle_support 
Conflicts:
	ykval-db.php
	ykval-export.php
	ykval-synclib.php
 2012-06-29 10:33:41 +02:00
Fredrik Thulin
d4cecdfaf4 Add __YKRESYNC_IPS__ to template. 2012-06-18 15:05:23 +02:00
Fredrik Thulin
cb0de9d8e3 Add __YKREV_IPS__ to template. 2012-06-14 13:00:39 +02:00
Klas Lindfors
cf49385bf3 rest of oracle patches from Remi Mollon <Remi.Mollon@cern.ch> 2012-06-12 10:35:49 +02:00
Fredrik Thulin
b5976ad3c9 delete-trailing-whitespace 2012-05-29 11:07:19 +02:00
Klas Lindfors
3de7ca3c8b Add code to let the db reconnect after errors. 
Set PDO error mode to throw exceptions so we can catch them and do things.
 2012-05-22 13:15:25 +02:00
Simon Josefsson
e5fcbe8ba9 Use names again. 2010-01-13 14:17:52 +00:00
Simon Josefsson
98e849023f Fix. 2010-01-11 15:41:27 +00:00
Simon Josefsson
c16dac8234 fix 2010-01-11 15:39:21 +00:00
Simon Josefsson
4afa471b98 Fix. 2010-01-11 15:36:53 +00:00
Olov Danielson
94c8e17ef6 Only allowed sync requests from specified IP addresses 2010-01-11 10:25:25 +00:00
Olov Danielson
9ede835f5e Rewritten sync daemon to work in a sequential way. Now called ykval-queue.php 2010-01-10 16:46:11 +00:00
Olov Danielson
851aa21c66 Changed to using PDO database connection 2010-01-08 16:35:25 +00:00
Simon Josefsson
eff489989b Remove. 2009-12-15 21:33:40 +00:00
Simon Josefsson
8fd22d6c2e Remove getapikey service. 2009-12-15 14:59:24 +00:00
Simon Josefsson
a2b0649681 Add comments. 2009-12-15 14:56:01 +00:00
Olov Danielson
f7cf1e1a5d Taking care of sl and timeout parameters in new protocol 2009-12-07 19:13:20 +00:00
Olov Danielson
3aa91fa557 . 2009-12-07 16:10:07 +00:00
Olov Danielson
a4b3dbc364 Moved config to ykval-config 2009-12-07 15:31:33 +00:00
Olov Danielson
a26c8a70cc . 2009-12-04 12:22:07 +00:00
Olov Danielson
f04dcbc0e7 Committed first trial version for replication protocol. 2009-12-02 17:32:20 +00:00
Simon Josefsson
49754a86cc Add revoke service. 2009-08-31 08:25:01 +00:00
Simon Josefsson
9b5602656a Lay foundation for get-api-key service. 2009-08-28 10:55:56 +00:00
Simon Josefsson
b9c2396d74 Fix URLs. 2009-05-05 10:47:22 +00:00
Simon Josefsson
716182d744 Rename and cleanup. 2009-05-04 14:41:18 +00:00