5dca53f877
Merge branch '2.4.0' into 2.4
2019-06-28 17:58:01 +03:00
3b39d42d3b
Merge branch '2.3' into 2.4
2019-06-27 18:56:25 +03:00
166d26ff13
Avoid using SQLITE_OPEN_URI
...
Centos6 uses a very old version of SQLite without support for URI filenames.
PAM authenticator must use a file-based database.
Commit cherry-picked to 2.4.0 from 2.3.
2019-06-27 15:18:49 +03:00
d8790fa3e7
Merge branch '2.2' into 2.3
2019-06-27 14:20:42 +03:00
b4289224de
Avoid using SQLITE_OPEN_URI
...
Centos6 uses a very old version of SQLite without support for URI filenames.
PAM authenticator must use a file-based database.
2019-06-27 13:59:05 +03:00
0ba779d5a2
Update 2.4.0 Change Date
2019-06-25 10:11:55 +03:00
2ab9aa9a94
Update 2.4.0 Change Date
2019-06-25 09:19:55 +03:00
cf866a6a57
Merge branch '2.2' into 2.3
2019-06-14 10:49:51 +03:00
acfaae9d46
MXS-2480 Use in-memory-database in PAM authenticator
...
This was already fixed in develop, but the fix is both small and useful
so should be backported.
2019-06-13 17:47:08 +03:00
74f61c233d
MXS-2558: Reuse loaded users
...
When users are loaded, they can be reused across all routing workers.
2019-06-11 21:30:45 +03:00
4efa9dbeea
Remove maxscale/alloc.h
...
The remaining contents were moved to maxbase/alloc.h.
2019-06-10 14:11:25 +03:00
44d1b821c3
Merge branch '2.3' into develop
2019-06-03 13:54:55 +03:00
1012b95544
Merge branch '2.2' into 2.3
2019-05-31 12:40:15 +03:00
3b60bf00e1
Merge branch '2.3' into develop
2019-05-29 18:41:50 +03:00
442d8bed9a
MXS-2479 Add username and host to PAM authenticator log messages
2019-05-29 17:32:27 +03:00
114e095e1b
MXS-2525: Fix non-plugin authentication
...
Older clients assume the plugin used for authentication is
mysql_native_password. If the client doesn't request plugin
authentication, don't treat it as an error.
2019-05-29 12:41:53 +03:00
3af66f3309
MXS-2483: Take SSLProvider into use
...
Servers and listeners now have a SSLProvider member variable that is used
for all SSL related tasks.
2019-05-24 15:33:17 +03:00
8a4b58d52c
MXS-2483: Move SSL configuration into SSLConfig
...
This way the configuration information can be accessed without the
SSLContext.
2019-05-24 15:33:17 +03:00
bed28db3fd
Merge branch '2.3' into develop
2019-05-24 13:55:47 +03:00
a1697e2aa6
MXS-2479 PAMBackendAuth is more tolerant of extra messages.
...
The authenticator can now receive additional questions from the server even
after the original password-query.
2019-05-24 11:31:55 +03:00
3b8e28392e
MXS-2483: Make server SSL private
...
The old server_ssl member is now renamed and private. The ssl_context and
set_ssl_context methods provide access to it.
2019-05-24 10:05:42 +03:00
bd8aa64547
MXS-2479 Accept additional messages in PAM authenticator
...
Plugins may send additional messages during authentication. These messages
often contain notifications such as password expiration dates. Both the client
and backend side authenticators now handle such messages. The messages are not
sent to the user, only the log. The requirement that only "Password: " is queried
still stands.
2019-05-23 14:14:25 +03:00
f8688a7285
Merge branch '2.3' into develop
2019-05-22 15:57:46 +03:00
e545e2ac5c
Merge branch '2.3' into develop
2019-05-22 10:02:27 +03:00
8317fec745
MXS-2496: Check for ALL PRIVILEGES grant
...
If a user has ALL PRIVILEGES as a global privilege, it overshadows the
SHOW DATABASES grant.
2019-05-22 09:56:35 +03:00
b294acf276
MXS-2496: Fix SHOW DATABASES grant check
...
The code expected that the grant was given to the actual user, not a role.
2019-05-21 13:43:51 +03:00
004e8e638f
MXS-2480 Fix creating of the in memory sqlite3 databases in PAMAuth
...
SQLITE_OPEN_URI flag was missing causing the databases to be created in
disk instead of in memory. Also added info level log message from created
database in clustrixmonitor.
2019-05-20 09:11:58 +03:00
5828061321
Merge branch '2.3' into develop
2019-05-17 14:39:30 +03:00
f94355770f
Merge branch '2.2' into 2.3
2019-05-17 14:10:28 +03:00
2cd4da32a7
MXS-2494: Fix user loading queries for MariaDB 10.1+
...
The queries now properly check for the plugin.
2019-05-16 10:41:04 +03:00
50fef6f361
MXS-1957 Add MariaDBAuth alias
2019-05-13 15:35:09 +03:00
9810c5fa69
MXS-1957 Add MariaDBBackendAuth alias
2019-05-13 15:35:09 +03:00
6625c1296b
Format authenticator and protocol modules
2019-05-10 10:31:12 +03:00
74634abc80
MXS-1662 Move PAM authentication function into maxbase
...
The same code can be used for REST-API authentication.
2019-04-09 14:41:40 +03:00
2f634264dc
Merge branch '2.3' into develop
2019-03-22 13:39:52 +02:00
fadbdc7514
Merge branch '2.2' into 2.3
2019-03-22 12:11:24 +02:00
9236ace077
MXS-2355 If client is using the wrong authenticator, attempt a switch
...
Some SQL clients may default to a different authentication plugin than
"mysql_native_password". Since this is the only one supported by MySQL-
authenticator, the client is instructed to swap its plugin.
2019-03-21 17:07:09 +02:00
9572ff84ea
Merge branch '2.3' into develop
2019-03-05 10:37:56 +02:00
77ef3dd613
Merge branch '2.2' into 2.3
2019-03-05 04:54:40 +02:00
8a0b6005a4
MXS-2335: Fix lower_case_table_names
...
The database check always used the case-sensitive SQL to check that the
database exists.
2019-03-05 00:07:13 +02:00
afe41c38ed
Merge branch '2.3' into develop
2019-02-20 10:33:14 +02:00
48a6ab503e
MXS-2292 PAM authenticator detects anonymous users with defined hosts
...
This allows anonymous user mapping from well-defined hosts.
2019-02-19 10:40:23 +02:00
1fed465fdb
MXS-2246 Remove duplicate info in SERVICE and Service
...
Both of them contained fields for the service and router names.
Now the names are in SERVICE and they must be accessed via member
function.
2019-02-14 15:24:10 +02:00
3b55893a20
Combine maxscale/buffer.h with maxscale/buffer.hh
2019-01-17 12:37:40 +02:00
684ec3288b
Rename and cleanup authenticator.h
2019-01-14 15:07:33 +02:00
d5c78eb31f
MXS-2220 Move more server functions inside class
2019-01-08 15:12:47 +02:00
8b53e30678
MXS-2220 Move server status functions inside class
2019-01-08 15:12:47 +02:00
b16ee3a94e
MXS-2220 Move server_is_active inside the class
2019-01-07 16:10:15 +02:00
9dce8c0c56
MXS-2163 Modify Clustrix auth query slightly
...
- Format specifyer was missing
- Now root shows up properly
2019-01-07 12:57:13 +02:00
f0f9c21d1c
Merge branch '2.3' into develop
2019-01-07 10:54:42 +02:00
