1. 17 Apr, 2017 1 commit
  2. 03 Mar, 2017 1 commit
  3. 23 Jan, 2017 1 commit
  4. 09 Nov, 2016 1 commit
  5. 03 Nov, 2016 1 commit
  6. 29 Aug, 2016 1 commit
    • Leigh B Stoller's avatar
      Various fixes to deactivate/reactivate code, mostly to deal with not · bf77e242
      Leigh B Stoller authored
      wanting to call setgroups cause it is so slow. also refactor the code to
      chown/chgrp user dot files so we can call it from reactivate.
      
      Refactor the code that bumps user/project activity and calls exports
      setup so that we can call it from reactivate.
      
      When deleting a ZFS home/proj directory, do the ZFS rename and then
      set the mountpoint=none, no need to have it mounted.
      bf77e242
  7. 24 Jun, 2016 1 commit
    • Leigh B Stoller's avatar
      Change "genesis" to "portal" what the hell was I thinking when I · 040ea3be
      Leigh B Stoller authored
      picked genesis. But this change actually has content; we need to
      distinguish between classic projects and emulab portal projects
      (new projects created via the portal, and used via the portal).  For now
      these are distinct until we decide to bring everyone up to the new
      interface.
      040ea3be
  8. 25 May, 2016 1 commit
  9. 18 Mar, 2016 1 commit
  10. 22 Feb, 2016 1 commit
  11. 08 Dec, 2015 1 commit
    • Kirk Webb's avatar
      Batch of changes that creates a PhantomNet portal branding. · ba49a457
      Kirk Webb authored
      Also includes some PhantomNet-specific restrictions (e.g. only
      allows use of the main Utah Emulab testbed  aggregate).
      
      This excercise stretched the limits of what we can reasonably do
      before introducing real per-testbed branding/policy mechanisms to
      the php/web front-end.  My changes ain't exactly pretty...
      
      Please take care when adding any testbed-specific changes to the
      code.  There are three flavors now to consider in the logic.
      ba49a457
  12. 02 Dec, 2015 1 commit
  13. 04 Nov, 2015 1 commit
    • Leigh B Stoller's avatar
      Changes for Keith to develop the new profile picker: · eafff053
      Leigh B Stoller authored
      1. Instead of a plain list of profiles, generate a more detailed list that
         includes last used and usage counts and project name and favorite flag,
         so that the new picker can be sorted/grouped.
      
         This list is *ordered* by most recent usage (if a real user), or most
         popular (if a guest). 
      
      2. Move the modal from quickvm_sup to the template, and generate the
         current list from the new json info.
      
      3. Add new table apt_profile_favorites to record favorite profiles for
         users.
      
      4. Add new ajax calls for above, MarkFavorite and ClearFavorite that take a
         single argument, the uuid of the profile. There is no UI for this, Keith
         is going to add that.
      eafff053
  14. 24 Mar, 2015 1 commit
  15. 25 Feb, 2015 1 commit
  16. 27 Jan, 2015 1 commit
  17. 09 Jan, 2015 1 commit
  18. 03 Jan, 2015 1 commit
  19. 14 Dec, 2014 1 commit
  20. 27 Oct, 2014 1 commit
    • Leigh B Stoller's avatar
      Add methods to check for user having a valid encrypted ssl certificate, · e0d59dde
      Leigh B Stoller authored
      and to generate one. When generating one, look for a revoked/expired
      certificate and reuse the key (and password) otherwise generate a new
      key and new random password. This allows existing Emulab users who have
      never used Geni, to use the APT/Cloud interface without having to create
      a key via the web interface.
      e0d59dde
  21. 25 Sep, 2014 1 commit
  22. 15 Sep, 2014 1 commit
  23. 27 Aug, 2014 1 commit
    • Leigh B Stoller's avatar
      Large set of changes for using the Geni trusted signer tool, to · 980f6cbd
      Leigh B Stoller authored
      authenticate Geni users to CloudLab (who do not have Emulab accounts).
      CloudLab users must have an account to do anything (unlike APT which allows
      guest users). But instead of requiring them to go through the Emulab
      account creation (high bar), let then use their Geni credentials to prove
      who they are. We then build a local account for that new user, and save off
      the speaksfor credential so that we can act on their behalf when talking to
      the backend clusters (and their MA to get their ssh keys).
      
      These users do not have a local account password, so they cannot log into
      the web interface using the Emulab login page, nor do they have a shell on
      ops.
      
      Once authenticated, we put the appropriate cookies into the browser via
      javascript, so they can use the Cloud (okay, APT) web interface (they
      appear logged in).
      
      I make use of the nonlocal_id field of the users table, which was not being
      used for anything else. Officially, these are "nonlocal" users in the code
      (IsNonLocal()).
      
      When a nonlocal user instantiates a profile, we use their speaksfor
      credential to ask their home MA for their ssh keys, which we then store in
      the DB, and then provide to the aggregate via the CreateSliver call.
      Note that no provision has been made for users who edit their profile and
      add keys; I am not currently expecting these users to stumble into the web
      interface (yet).
      980f6cbd
  24. 24 Jan, 2014 1 commit
  25. 17 Jan, 2014 1 commit
  26. 08 Mar, 2013 1 commit
  27. 14 Feb, 2013 1 commit
  28. 02 Jan, 2013 1 commit
  29. 24 Sep, 2012 1 commit
    • Eric Eide's avatar
      Replace license symbols with {{{ }}}-enclosed license blocks. · 6df609a9
      Eric Eide authored
      This commit is intended to makes the license status of Emulab and
      ProtoGENI source files more clear.  It replaces license symbols like
      "EMULAB-COPYRIGHT" and "GENIPUBLIC-COPYRIGHT" with {{{ }}}-delimited
      blocks that contain actual license statements.
      
      This change was driven by the fact that today, most people acquire and
      track Emulab and ProtoGENI sources via git.
      
      Before the Emulab source code was kept in git, the Flux Research Group
      at the University of Utah would roll distributions by making tar
      files.  As part of that process, the Flux Group would replace the
      license symbols in the source files with actual license statements.
      
      When the Flux Group moved to git, people outside of the group started
      to see the source files with the "unexpanded" symbols.  This meant
      that people acquired source files without actual license statements in
      them.  All the relevant files had Utah *copyright* statements in them,
      but without the expanded *license* state...
      6df609a9
  30. 30 Apr, 2012 1 commit
  31. 15 Mar, 2012 1 commit
  32. 30 Jan, 2012 2 commits
    • Leigh B Stoller's avatar
      Changes to make it easier for ProtoGeni users! · 3dac3cb8
      Leigh B Stoller authored
      * When generating an encrypted SSL certificate, derive an SSH public
        key from the private key and store in the pubkeys table for the
        user. Note that SSH version 2 RSA keys are actually just openssl RSA
        keys, and that ssh-keygen can extract an ssh compatible public key
        from it.
      
      * Change getsslcert.php3 to return the ssh private and public key when
        give the "ssh" boolean argument. This is mostly for the benefit of
        Flack; we probably need a better UI for the user to get this stuff. 
      
      * Remove the requirement that users must upload an SSH key to use
        protogeni, since we now create one for them when they create their
        encrypted SSL certificate.
      
      * Some cleanup; instead of looking at the comment field to determine
        what pubkeys are Emulab created (and should not be deleted), use new
        internal and nodelete flags.
      3dac3cb8
    • Leigh B Stoller's avatar
  33. 02 Dec, 2011 1 commit
    • Leigh B Stoller's avatar
      Changes to allow new users to request their encrypted SSL certificate · 8def7e94
      Leigh B Stoller authored
      on the join/start project pages. At the moment this is conditional
      under the PROTOGENI flag, since users on non-protogeni sites rarely
      need an encrypted SSL certificate. The initial passphrase has to be
      store someplace since we cannot built the certificate until the user
      is approved, so put it into the users table, and delete when the first
      certificate is built (at approval).
      8def7e94
  34. 07 Nov, 2011 1 commit
  35. 30 Aug, 2011 2 commits
  36. 22 Aug, 2011 1 commit
  37. 12 Aug, 2011 1 commit
  38. 10 Aug, 2011 1 commit