fixes #2121, #2069 - restrict importers and ENC to puppetmasters and users
CVE-2013-0171: report and fact importers parse YAML directly from the remotehost without authentication. Untrusted YAML can instantiate objects and beused to exploit Foreman.
CVE-2013-0174: external nodes (ENC) output is available to any source and...
fixes #1834 to get foreman running under ruby 1.9.3
ensure no duplicate hosts can be created
Add organization and location to foreman.
This feature allows foreman to provide multi location, multi tenant andmulti organizations capablities.
the idea is that resources within foreman (e.g. hosts, subnets, users,environments etc) can belong to one or more locations and organization,...
fixes #1843 - Accepts a plain hash as facts source
fix for FactValuesControllerTest#test_create_invalid
Refactor my_hosts and my_facts scopes to include auth checks
Fix privacy leaks in stats, facts, and dashboard - fixes #1582
fixes #1446 - expire idle web sessions
WIP rails3 migration
refactor - various facts cleanups
refs #898 - more leftovers
take2 fixes #893 fixed pagination issue in the facts page. fixed sort issue with out_of_sync, errors, active and disabled urls.
fixes #831 - /hosts/fqdn/facts should not be a redirection
updated the JSON output as well to include leading hostname as root.
added search to facts page #refs 719
fixes #448 - Cant search by selecting a fact in the fact search bar
fixes #441 - display facts timestamp
Ensures that all anonymous actions are allowed - refs #366
Fixes #366 - Redmine authorization port
This is a major feature which provides RBAC authorization within Foremana mental note to myself - never ever work on large commits
Some of the controller filters were running twice,this way is the preferred way to ensure that they running only once where appropriate.
fixes #388 - added support to query inventory facts via json
fixes #295 - This YAML generates a 500 error when trying to send over http
Fixes #212 - Remove AS from facts
show host names when browsing all facts
sessions are lazy loaded in rails 2.3, no need to declare them
fixes #131 - do not store sessions for facts/reports creation
fixes #117 - Add SSL redirection
bug #99
First stab at fixing feature #87
fixes #44 this filters the content of the report/fact, but still shows the request in the log
ensure that the authentcation filter runs on all other actions beside create
Squashed commit of the following:
commit c4382aeea5d72402bcbf3049d3c08f74792ca379Author: Ohad Levy <ohadlevy@gmail.com>Date: Thu Oct 15 22:03:26 2009 +0800
disable ldap by default
commit 685baf5f2c78128feebcbeed6910b131a072a81bAuthor: Ohad Levy <ohadlevy@gmail.com>...
fixes #44, this however doesnt show any Report of Facts controllect activites, could not find a way to specify it per method
fixes #10
added facts controllers