fixes #5444 - add param_false? host method and allow in templates

Refs #2942: Added plugin rake task to extract translations

fixes #5077 - refactor safemode rendering to allow helpers and variables from plugins

fixes #1966 - improved UI errors for proxy

fixes #812 - new permissions model, user group role and nest support, role filters for better granularity

• Daniel Lobato <elobatocs@gmail.com>
• Joseph Magen <jmagen@redhat.com>
• Tom McKay <thomasmckay@redhat.com>
• Greg Sutcliffe <gsutclif@redhat.com>...

fixes #3955 - added param_true? and snippet_if_exist template methods

Fixes #3569, #3210 - Use port from foreman_url for templates

fixes #3077 - locale was set to last language by default

fixes #2942 - plugin i18n support

This is first phase of plugins i18n support. More to come later:

• Extraction from model classes
• JavaScript extraction and support

fixes #2424 - add Encryptable module and encryption_key generation

fixes #2837 add an interface to add repositories to kickstart, cleanup similar methods

fixes #2813 - move Foreman::Provision::SSH files back to /lib so it does not fail on startup for non-fog installations

fixes #2411 - move to controller/concerns

fixes #2411 - move files to /app/services

fixes #2411 - move lib/audit_extensions lib/fog_extensions lib/foreman to models/concerns

fixes #2411 - move STI models in /models and /lib/foreman/models to sub-folders

fixes #2142 add Smart Parameters and Smart Class Parameters to API v2

fixes #2802 controller methods fail for name-spaced controllers

fixes #2772 cloning locations and organizations is broken

fixes #2732 - 404 error Location Not Found on Mismatches Report if a location is selected

fixes #2734 - wrong taxonomy scope on hostgroup and host form

fixes #2727 - fix oVirt test connection method definition

Fixes #2712 - Handle Net::SSH::Disconnect gracefully

fixes #2317 - VM's with the name foreman_########

fixes #2656 error connecting to vsphere after upgrade to ruby 1.9.3

fixes #2610 - fixed the boot device order for oVirt VMs created in Foreman

fixes #2631 - fix remote code execution via controller name (CVE-2013-2121)

fixes #2625 - hostgroup nest and clone methods

fixes #2606 fix display of compute resource errors

fixes #1951 - support for libvirt named networks

based on Dominic initial pull request 308

fixes #2562 libvirt domain listen address, add libvirt_default_console_address setting

fixes #2539 - added API puppetrun access permission and test

Fixes #2513 - orgs created in katello do not appear in org filtering

- topbar cache sweeper turned on for api controllers
- a bit of refactoring to get rid of repetitive expire_fragment

fixes #2316 Adding a disk to an existing RHEV 3.1 VM via Foreman results in an error

fixes #2511 Footer should be replaced with an about page

fixes #2490 - filter empty EC2 security groups

Fixes #2460 - session expiration fix for SSO

We set new expiration interval when user logs in successfully using any
kind of SSO. Also this patch moves logout path out of thread variable
and stores it into a session. This is more secure storage for threaded...

fixed #2474 - Foreman Exceptions are not initalized correctly

fixes #426 expose BMC information in foreman UI

Signed-off-by: Ohad Levy <ohadlevy@gmail.com>

This patch also adds an abstracted power management class for both VM
and BM

fixes #2421 added missing has_many :hostgroups and missing :dependent => destroy

fixes #2463 - update permissions to follow controller move

Fix finder_needs_type check in sti mixin

new top-bar navigation design and a new login page

fixes #2407 - Add STI to settings model

Also adds some tests for rendering new/missing STI models, and
refactors the old default_settings loader into the new sub-models.

fixes #2248 adds api controllers and actions to access_permissions.rb

Feature #2368 - form helpers, exceptions and fixes

Feature #2368 - host list popups and various fixes

Feature #2368 - i18n extracting strings

fixes #2417 - SSO abstractioning

Apache and Signo SSO reworked to a new general SSO concept.

You can use SSO service that comes with Katello for loggin in. It's
based on OpenID protocol with slightly customized provider.

fixes #2247 Provides an option to disable the use of gravatara

A new setting is added, use_gravatar. It defaults to true. If it is set to false, then the gravatar
call out is not used and only the default user icon is used.

fixes #2153 - add trusted_puppetmaster_hosts setting to permit puppetmaster access

Connections to fact + report upload and externalNodes will be permitted from
any host listed in the trusted_puppetmaster_hosts setting, bypassing the
requirement for a registered smart proxy....

upgrade foreman to rails 3.2.13

This commit updates from rails 3.0.x to 3.2.x, main changes include:

• Asset pipline support
• cleanup of existing assets (javascript, css, images)

Users who uses foreman in production, make sure that you now compile
your assets, e.g...

fixes #2250 API v2 add/remove puppetclasses from hosts and hostgroups

fixes #2324 Refactoring of Host STI

Allows plugins to render a different STI-type edit form and save
the changed type. Also allows the /fact_values upload to specify
a type. Adds tests for the STI type changes.

Add localization calls to the subnets and the trenda pages.

There are other changes to the common layouts based on simple testing.

fixes #2291 undefined method 'to_a' for 75:String when creating host WITH taxonomy

Add gettext calls to the locations pages and the user pages.

These pages provide examples for using single translations:

_("Here is a simple")

single substitutions:

_("I like %s") % "pie"

and complex ones:

_("%{character"} should %{action}") % {:character => "Jar Jar Binks", :action => "be erased"}

fixes #2277 - adds spice html5 support

This also adds a newer version of the web socket proxy (where we
probably need to use an external package instead of vendor it).

we still allow users to use the old XPI based spice client (which would
ensure end to end security as well) via a 'new window' button....

fixes #2266 - API doesn't honor 'view_facts' permission

fixes #2202 - add all unassigned actions to appropriate permissions

fixes #2253 adds openstack floating ip support

fixes #2251 - adds openstack image listing

also refactor image list fetching

fixes #2252 - add supports to openstack log console

fixes #2222 hostgroup form can be scoped by multiple taxonomys.

Do not block create and destroy volume if api version is 3.1 or later.

fixes #2221 - non admin user can't set build flag for multiple hosts

fixes #2229 add an IAM role field to a compute image.

This allows use of IAM to control access to AWS services within an instance.

fixes #2198 - add AJAX routes to existing permissions to fix non-admin UI

In 2ac3af69, the automatic authorization of XMLHttpRequests was removed for
security reasons, however the controller actions need associating with
specific permissions for non-admin users to use the UI....

fixes #2166 - error when clearing location

fixes #2124 - only include classes from the host current environment.

This patch introduce a new setting, which decide how would foreman
address a mismatch between host and hostgruop environments.

for example, when puppet classes (directly or indirectly via hostgroups) that do not...

changes to taxonomies_controller

clone action, view, tests

fixes #2033 - Cannot assign a host to an org

Now its possible to change Locations / Organizations only via mass assign

fixes #2001 - Changing Loc or Org after compute resource selection give 500 error

refs #2146 - ensures redirect does not break on api requests too

fixes #2146 - prevent double render

fixes #2151 - use DN environment variable instead of CN

nginx is unable to pass bits of the X.509 subject, only the entire DN, so
support that as a lowest common denominator.

refs #2069 - enable auth by default

Without authentication, sensitive information and power is available to all,
so improve security out of the box.

fixes #2121, #2069 - restrict importers and ENC to puppetmasters and users

CVE-2013-0171: report and fact importers parse YAML directly from the remote
host without authentication. Untrusted YAML can instantiate objects and be
used to exploit Foreman.

CVE-2013-0174: external nodes (ENC) output is available to any source and...

fixes #2109 - improve session token security

- adds security:generate token rake task to create static token
- generate and cache a token on startup if static token isn't present

Thanks to Sandor Szücs <sandor.szuecs@fu-berlin.de>

fixes #2017 added patch from ticket

fixes #1944 - Listing VMWare virtual machines under Computer resources is slow.

fixes #1814 - converts sp_* attributes into a BMC interface class

this patch also includes the following

• added a new interfaces table, and STI objects to represent a NIC, BMC, Managed
  and a bootable interface.
• refactored DHCP/DNS orchestation code, so they can work on the...

refs #1991 - Cache not cleared prevent location / org feature to show up

1. ensures settings cache is removed when app starts
we can't remove all cache, with Rails.cache.clear as that might lead to issues
with people using memcache with multiple foreman instances (e.g. we can clear...

renamed to thread_session.rb

fixes #2061 - test if oVirt API has HTTPS redirect

rest_client will refuse to follow redirects on POST requests, so the URL must
be entered as HTTPS. Don't require HTTPS as dev environments may be HTTP-only.

fixes #2062 - Add max_trends setting

added slash /unattended to other url_for calls

refs #2023 - always write using_storeconfigs default as a boolean

fixes #2030 - define instance variables during ERB evaluation when not using safemode

Thanks to Paavo Pokkinen <paavo.pokkinen@faarao.fi>

fixes #1995 - enable param class ENC by default on Puppet 2.6.5+

fixes #1994 - set vardir for puppet 3, use --configprint

When running Puppet 3 as a non-root user (i.e. foreman), both --confdir and
--vardir have to be specified as per Puppet #16637, else SSL settings dependent
on vardir will fail.

This adds a new puppetvardir setting used with puppetconfdir, and supports...

replaced default taxonomy migration with a multiple actions for assigning hosts to orgs and locations.

fixes #1886 adds Rackspace V2 support

Based on GregSutcliffe's initial pull request.

Clear the thread values outside of handling request

Adding an around filter to clear the thread values. Without this there
is a risk that the thread value from previous request will be used in
other request, which can lead to security issues.

We clear the current user at the beginning of the request (except the...

fixes #1899 require HTTPS URL for oVirt API, now HTTPS-only

Add organization and location to foreman.

This feature allows foreman to provide multi location, multi tenant and
multi organizations capablities.

the idea is that resources within foreman (e.g. hosts, subnets, users,
environments etc) can belong to one or more locations and organization,...

fixes #1915 - initialise Puppet in master context

Explicitly specify the run_mode as being 'master' to ensure the config is
parsed in a puppetmaster context.

fixes #1637 adds spice support

added vm name and cursor release instruction to the spice console title.
this is a follow up to 057d497

fixes #1957 - remove old libvirt hypervisors code

Since foreman 1.0 libvirt hypervisors are now part of compute resources
this patch removes the old code and migrate any existing hypervisors to
be libvirt based compute resources.