* added tests for revokeCollection and revokeDatabase
* optimized user permission test
* ui selection bugfix
* fixed ldap ui login
* login view
* Authentication refactoring
* localstorage fallback if user config is not available
* Fixing permission resolution test
* Adding missing import
* local storage queries now supported
* disabled collection task check for ldap
* added internal ldapEnabled function and ldap config to the ui
* more db creation tests
* removed console logs
* render fix
* Various authentication related fixes
* exec ldap test also for cluster
* Adding support to refresh user rights from external auth sources
* ldap test howto comment
* Handling roles more correctly
* jwt
* login view
* First part of rework of LDAP documentation.
* test roles in a ldap environment
* Changing role handling
* Finish revision of the LDAP chapter in the manual.
* Fixing user header
* Fixing some slight issues with LDAP users and roles
* Removing unused code
* Removing unused code
* added ldap test
* fixing a bug in restuserhandler
* more ldap tests
* ldap tests
* ldap tests
* optimized ldap testing, added cluster support, fixed some auth tests
* ldap cleanup test
* ldap tests
* auth tests
* ldap test
* Changing permission defaults
* revert change
* updated user helper test
* rm of try catch block connection
* Removing FeatureCacheFeature
* Changed permission resolution according to discussion
* updated the docs to clarify the permission resolution and the intricacies of LDAP users
* Fixing wrong permissions check in handling of PUT in ResUserHandler
* Using revision ID when replacing users
* Adding basic replace test
* tests
* Fixing some outstanding issues
* Fixing test setup, optimizing some stuff
* Fixing permission resolution rules, testsuite setup, etc
* Fix deadlock
* Adding error message for keyspace, slightly changing test setup
* Removing remaining mentions of FeatureCacheFeature
* Fix jslint
* Fixing some failed tests
* Fixing cluster authentication issue, red tests
* Fixing ldap testsuite, adding trace logging
* Fixint ldap tesuite setup and LDAP recognition
* Fixing an assert
* Cleanup, adding changelog entry
* fix typo
* Fixing dump_authentication test
* improvements found during code review
* oops
* updated CHANGELOG
* Fixing broken handling, disallowing adding of local users when disabled
* added tests for ldap search mode
* Fixing testInvalidGrants
(cherry picked from commit bc7ea2aaa29a9ed0974898f487e8a318f24912f1)
* Removing undefined auth level externally
(cherry picked from commit 70859f43ae6fd694fdbf70f669fbfdafc58e7913)
* Fixing previous commit
(cherry picked from commit 2fbcffd2ed657862ef9fb5e6d45201a6ec8ada69)
* more use of sessionstorage
* intentionally removed `after` methods from tests
because they are executed before the tests start
no cleanup is performed right now after the authentication tests
however, a cleanup is done at start of every test
* ldap tests all modes
* fix LDAP test invocation
* Added roles transformation to ldap test suite
* Fix compilation of community version.
* Imrpved the ldap testsuites by unifying their options
* fix permission problems for system collections
* Improved LDAP configuration documentation.
* Grunt.
* fixed some ro/rw display issues
* fixed some ro/rw display issues part 2
* grunt build
* bump version number
* Fixed typos in LDAP manual
* fix some deadlocks found by evil lock manager (tm)
* fix duplicate lock
* fix indentation
* ensure proper lock dependencies
* fix lock acquisition
* removed useless comment
* do not lock twice
* create either a V8 transaction context or a standalone transaction context, depending on if we are called from within V8 or not
* AQL micro optimizations
* use explicit constructor
* only use V8DealerFeature's ConditionLocker for acquiring a free V8 context
entering and exiting the selected context is then done later on without having to hold the ConditionLocker
* remove some recursive locks
* Disable custom deadlock detection when Thread Sanitizer is enabled
* Changing ifdef's
* grr
* broke gcc
* Using atomic for ApplicationServer::_server
* fix premature unlock
* add some asserts
* honor collection locking in cluster
* yet one more lock fix
* removed assertion
* some more bugfixes
* Fixing assert
(cherry picked from commit 1155df173bfb67303077fbe04ee8d909517bfd21)
* Switching from ttl to supervision based failover mechanism
* Allowing canceling of ongoing actions
* refactored asyncjobmanager
* refactoring some code
* adding read-only flag
* catching some exceptions to reduce log pollution, removing unnecessary code, removing tests for _changeMode
* fixing "createsANewDatabaseWithAnInvalidUser"
* auth = off does not longer make everyone superuser
* Fixing cluster_sync and maybe resilience
* remove memory zone remainders
* remove useless calls
* attempt to fix non-deterministic CRC test
* attempt to fix non-deterministic replication tests
* fix document removal with multiple documents in cluster
* attempt to fix non-determinism of tests
* fix privilege checks for accessing collections by collection id, not by name
Simon
Michael Hackstein
Jan
Frank Celler
Manuel B
jsteemann
Jan Christoph Uhde