fixes #5444 - add param_false? host method and allow in templates
Refs #2942: Added plugin rake task to extract translations
fixes #5077 - refactor safemode rendering to allow helpers and variables from plugins
fixes #1966 - improved UI errors for proxy
fixes #812 - new permissions model, user group role and nest support, role filters for better granularity
fixes #3955 - added param_true? and snippet_if_exist template methods
Fixes #3569, #3210 - Use port from foreman_url for templates
fixes #3077 - locale was set to last language by default
fixes #2942 - plugin i18n support
This is first phase of plugins i18n support. More to come later:
fixes #2424 - add Encryptable module and encryption_key generation
fixes #2837 add an interface to add repositories to kickstart, cleanup similar methods
fixes #2813 - move Foreman::Provision::SSH files back to /lib so it does not fail on startup for non-fog installations
fixes #2411 - move to controller/concerns
fixes #2411 - move files to /app/services
fixes #2411 - move lib/audit_extensions lib/fog_extensions lib/foreman to models/concerns
fixes #2411 - move STI models in /models and /lib/foreman/models to sub-folders
fixes #2142 add Smart Parameters and Smart Class Parameters to API v2
fixes #2802 controller methods fail for name-spaced controllers
fixes #2772 cloning locations and organizations is broken
fixes #2732 - 404 error Location Not Found on Mismatches Report if a location is selected
fixes #2734 - wrong taxonomy scope on hostgroup and host form
fixes #2727 - fix oVirt test connection method definition
Fixes #2712 - Handle Net::SSH::Disconnect gracefully
fixes #2317 - VM's with the name foreman_########
fixes #2656 error connecting to vsphere after upgrade to ruby 1.9.3
fixes #2610 - fixed the boot device order for oVirt VMs created in Foreman
fixes #2631 - fix remote code execution via controller name (CVE-2013-2121)
fixes #2625 - hostgroup nest and clone methods
fixes #2606 fix display of compute resource errors
fixes #1951 - support for libvirt named networks
based on Dominic initial pull request 308
fixes #2562 libvirt domain listen address, add libvirt_default_console_address setting
fixes #2539 - added API puppetrun access permission and test
Fixes #2513 - orgs created in katello do not appear in org filtering
- topbar cache sweeper turned on for api controllers- a bit of refactoring to get rid of repetitive expire_fragment
fixes #2316 Adding a disk to an existing RHEV 3.1 VM via Foreman results in an error
fixes #2511 Footer should be replaced with an about page
fixes #2490 - filter empty EC2 security groups
Fixes #2460 - session expiration fix for SSO
We set new expiration interval when user logs in successfully using anykind of SSO. Also this patch moves logout path out of thread variableand stores it into a session. This is more secure storage for threaded...
fixed #2474 - Foreman Exceptions are not initalized correctly
fixes #426 expose BMC information in foreman UI
Signed-off-by: Ohad Levy <ohadlevy@gmail.com>
This patch also adds an abstracted power management class for both VMand BM
fixes #2421 added missing has_many :hostgroups and missing :dependent => destroy
fixes #2463 - update permissions to follow controller move
Fix finder_needs_type check in sti mixin
new top-bar navigation design and a new login page
fixes #2407 - Add STI to settings model
Also adds some tests for rendering new/missing STI models, andrefactors the old default_settings loader into the new sub-models.
fixes #2248 adds api controllers and actions to access_permissions.rb
Feature #2368 - form helpers, exceptions and fixes
Feature #2368 - host list popups and various fixes
Feature #2368 - i18n extracting strings
fixes #2417 - SSO abstractioning
Apache and Signo SSO reworked to a new general SSO concept.
You can use SSO service that comes with Katello for loggin in. It'sbased on OpenID protocol with slightly customized provider.
fixes #2247 Provides an option to disable the use of gravatara
A new setting is added, use_gravatar. It defaults to true. If it is set to false, then the gravatarcall out is not used and only the default user icon is used.
fixes #2153 - add trusted_puppetmaster_hosts setting to permit puppetmaster access
Connections to fact + report upload and externalNodes will be permitted fromany host listed in the trusted_puppetmaster_hosts setting, bypassing therequirement for a registered smart proxy....
upgrade foreman to rails 3.2.13
This commit updates from rails 3.0.x to 3.2.x, main changes include:
Users who uses foreman in production, make sure that you now compileyour assets, e.g...
fixes #2250 API v2 add/remove puppetclasses from hosts and hostgroups
fixes #2324 Refactoring of Host STI
Allows plugins to render a different STI-type edit form and savethe changed type. Also allows the /fact_values upload to specifya type. Adds tests for the STI type changes.
Add localization calls to the subnets and the trenda pages.
There are other changes to the common layouts based on simple testing.
fixes #2291 undefined method 'to_a' for 75:String when creating host WITH taxonomy
Add gettext calls to the locations pages and the user pages.
These pages provide examples for using single translations:
_("Here is a simple")
single substitutions:
_("I like %s") % "pie"
and complex ones:
_("%{character"} should %{action}") % {:character => "Jar Jar Binks", :action => "be erased"}
fixes #2277 - adds spice html5 support
This also adds a newer version of the web socket proxy (where weprobably need to use an external package instead of vendor it).
we still allow users to use the old XPI based spice client (which wouldensure end to end security as well) via a 'new window' button....
fixes #2266 - API doesn't honor 'view_facts' permission
fixes #2202 - add all unassigned actions to appropriate permissions
fixes #2253 adds openstack floating ip support
fixes #2251 - adds openstack image listing
also refactor image list fetching
fixes #2252 - add supports to openstack log console
fixes #2222 hostgroup form can be scoped by multiple taxonomys.
Do not block create and destroy volume if api version is 3.1 or later.
fixes #2221 - non admin user can't set build flag for multiple hosts
fixes #2229 add an IAM role field to a compute image.
This allows use of IAM to control access to AWS services within an instance.
fixes #2198 - add AJAX routes to existing permissions to fix non-admin UI
In 2ac3af69, the automatic authorization of XMLHttpRequests was removed forsecurity reasons, however the controller actions need associating withspecific permissions for non-admin users to use the UI....
fixes #2166 - error when clearing location
fixes #2124 - only include classes from the host current environment.
This patch introduce a new setting, which decide how would foremanaddress a mismatch between host and hostgruop environments.
for example, when puppet classes (directly or indirectly via hostgroups) that do not...
changes to taxonomies_controller
clone action, view, tests
fixes #2033 - Cannot assign a host to an org
Now its possible to change Locations / Organizations only via mass assign
fixes #2001 - Changing Loc or Org after compute resource selection give 500 error
refs #2146 - ensures redirect does not break on api requests too
fixes #2146 - prevent double render
fixes #2151 - use DN environment variable instead of CN
nginx is unable to pass bits of the X.509 subject, only the entire DN, sosupport that as a lowest common denominator.
refs #2069 - enable auth by default
Without authentication, sensitive information and power is available to all,so improve security out of the box.
fixes #2121, #2069 - restrict importers and ENC to puppetmasters and users
CVE-2013-0171: report and fact importers parse YAML directly from the remotehost without authentication. Untrusted YAML can instantiate objects and beused to exploit Foreman.
CVE-2013-0174: external nodes (ENC) output is available to any source and...
fixes #2109 - improve session token security
- adds security:generate token rake task to create static token- generate and cache a token on startup if static token isn't present
Thanks to Sandor Szücs <sandor.szuecs@fu-berlin.de>
fixes #2017 added patch from ticket
fixes #1944 - Listing VMWare virtual machines under Computer resources is slow.
fixes #1814 - converts sp_* attributes into a BMC interface class
this patch also includes the following
refs #1991 - Cache not cleared prevent location / org feature to show up
1. ensures settings cache is removed when app startswe can't remove all cache, with Rails.cache.clear as that might lead to issueswith people using memcache with multiple foreman instances (e.g. we can clear...
renamed to thread_session.rb
fixes #2061 - test if oVirt API has HTTPS redirect
rest_client will refuse to follow redirects on POST requests, so the URL mustbe entered as HTTPS. Don't require HTTPS as dev environments may be HTTP-only.
fixes #2062 - Add max_trends setting
added slash /unattended to other url_for calls
refs #2023 - always write using_storeconfigs default as a boolean
fixes #2030 - define instance variables during ERB evaluation when not using safemode
Thanks to Paavo Pokkinen <paavo.pokkinen@faarao.fi>
fixes #1995 - enable param class ENC by default on Puppet 2.6.5+
fixes #1994 - set vardir for puppet 3, use --configprint
When running Puppet 3 as a non-root user (i.e. foreman), both --confdir and--vardir have to be specified as per Puppet #16637, else SSL settings dependenton vardir will fail.
This adds a new puppetvardir setting used with puppetconfdir, and supports...
replaced default taxonomy migration with a multiple actions for assigning hosts to orgs and locations.
fixes #1886 adds Rackspace V2 support
Based on GregSutcliffe's initial pull request.
Clear the thread values outside of handling request
Adding an around filter to clear the thread values. Without this thereis a risk that the thread value from previous request will be used inother request, which can lead to security issues.
We clear the current user at the beginning of the request (except the...
fixes #1899 require HTTPS URL for oVirt API, now HTTPS-only
Add organization and location to foreman.
This feature allows foreman to provide multi location, multi tenant andmulti organizations capablities.
the idea is that resources within foreman (e.g. hosts, subnets, users,environments etc) can belong to one or more locations and organization,...
fixes #1915 - initialise Puppet in master context
Explicitly specify the run_mode as being 'master' to ensure the config isparsed in a puppetmaster context.
fixes #1637 adds spice support
added vm name and cursor release instruction to the spice console title.this is a follow up to 057d497
fixes #1957 - remove old libvirt hypervisors code
Since foreman 1.0 libvirt hypervisors are now part of compute resourcesthis patch removes the old code and migrate any existing hypervisors tobe libvirt based compute resources.