1. 06 Mar, 2012 1 commit
  2. 17 Feb, 2012 2 commits
  3. 01 Feb, 2012 1 commit
  4. 30 Jan, 2012 1 commit
    • Leigh Stoller's avatar
      Changes to make it easier for ProtoGeni users! · 3dac3cb8
      Leigh Stoller authored
      * When generating an encrypted SSL certificate, derive an SSH public
        key from the private key and store in the pubkeys table for the
        user. Note that SSH version 2 RSA keys are actually just openssl RSA
        keys, and that ssh-keygen can extract an ssh compatible public key
        from it.
      * Change getsslcert.php3 to return the ssh private and public key when
        give the "ssh" boolean argument. This is mostly for the benefit of
        Flack; we probably need a better UI for the user to get this stuff. 
      * Remove the requirement that users must upload an SSH key to use
        protogeni, since we now create one for them when they create their
        encrypted SSL certificate.
      * Some cleanup; instead of looking at the comment field to determine
        what pubkeys are Emulab created (and should not be deleted), use new
        internal and nodelete flags.
  5. 02 Dec, 2011 1 commit
    • Leigh Stoller's avatar
      Changes to allow new users to request their encrypted SSL certificate · 8def7e94
      Leigh Stoller authored
      on the join/start project pages. At the moment this is conditional
      under the PROTOGENI flag, since users on non-protogeni sites rarely
      need an encrypted SSL certificate. The initial passphrase has to be
      store someplace since we cannot built the certificate until the user
      is approved, so put it into the users table, and delete when the first
      certificate is built (at approval).
  6. 07 Nov, 2011 6 commits
  7. 05 Oct, 2011 2 commits
  8. 31 Aug, 2011 1 commit
  9. 30 Aug, 2011 2 commits
  10. 16 Aug, 2011 1 commit
  11. 12 Aug, 2011 1 commit
  12. 29 Jul, 2011 1 commit
  13. 12 Oct, 2010 1 commit
  14. 30 Sep, 2010 1 commit
  15. 21 Jul, 2010 1 commit
  16. 22 Mar, 2010 1 commit
    • Leigh Stoller's avatar
      Finish up user deletion. The big visible change is that when a user is · 2965922b
      Leigh Stoller authored
      deleted, they still remain in the user table with a status of
      "archived", but since all the queries in the system now use uid_idx
      instead of uid, it is safe to reuse a uid since they are no longer
      The reason for not deleting users from the users table is so that the
      stats records can refer to the original record (who was that person
      named "mike"). This is very handy and worth the additional effort it
      has taken.
      There is no way to ressurect a user, but it would not be hard to add.
  17. 13 Mar, 2010 2 commits
  18. 12 Mar, 2010 1 commit
  19. 12 Nov, 2009 1 commit
  20. 30 Oct, 2009 1 commit
  21. 24 Sep, 2009 1 commit
  22. 15 Jul, 2009 1 commit
  23. 15 May, 2009 1 commit
  24. 02 Mar, 2009 1 commit
    • Leigh Stoller's avatar
      A bunch of changes for a "standalone" clearinghouse. Presently this · 60f04310
      Leigh Stoller authored
      its really a hugely stripped down Emulab boss install, using a very
      short version of install/boss-install to get a few things into place.
      I refactored a few things in both the protogeni code and the Emulab
      code, and whacked a bunch of makefiles and configure stuff. The result
      is that we only need to install about 10-12 files from the Emulab
      code, plus the protogeni code. Quite manageable, if you don't mind
      that it requires FreeBSD 6.X ... Still, I think it satisfies the
      requirement that we have a packaged clearinghouse that can be run
      standalone from a running Emulab site.
  25. 23 Feb, 2009 1 commit
  26. 08 Jan, 2009 1 commit
  27. 17 Nov, 2008 1 commit
    • Leigh Stoller's avatar
      Minor changes to user certs to support certificate revocation lists · 4809cd65
      Leigh Stoller authored
      in the protogeni code. We no longer save the unencrypted certs after
      they are revoked, since protogeni will ignore them. I redid the the
      DB table as well, adding a revoked stamp, and the DN so that we can
      generate the CRL list from the DB directly, without having to run them
      all through openssl.
      This commit requires all certs to be regenerated, and the ssl xmlrpc
      server to be restarted.
  28. 27 Oct, 2008 1 commit
  29. 01 Oct, 2008 1 commit
  30. 16 Jun, 2008 1 commit
  31. 30 May, 2008 1 commit