* added tests for revokeCollection and revokeDatabase
* optimized user permission test
* ui selection bugfix
* fixed ldap ui login
* login view
* Authentication refactoring
* localstorage fallback if user config is not available
* Fixing permission resolution test
* Adding missing import
* local storage queries now supported
* disabled collection task check for ldap
* added internal ldapEnabled function and ldap config to the ui
* more db creation tests
* removed console logs
* render fix
* Various authentication related fixes
* exec ldap test also for cluster
* Adding support to refresh user rights from external auth sources
* ldap test howto comment
* Handling roles more correctly
* jwt
* login view
* First part of rework of LDAP documentation.
* test roles in a ldap environment
* Changing role handling
* Finish revision of the LDAP chapter in the manual.
* Fixing user header
* Fixing some slight issues with LDAP users and roles
* Removing unused code
* Removing unused code
* added ldap test
* fixing a bug in restuserhandler
* more ldap tests
* ldap tests
* ldap tests
* optimized ldap testing, added cluster support, fixed some auth tests
* ldap cleanup test
* ldap tests
* auth tests
* ldap test
* Changing permission defaults
* revert change
* updated user helper test
* rm of try catch block connection
* Removing FeatureCacheFeature
* Changed permission resolution according to discussion
* updated the docs to clarify the permission resolution and the intricacies of LDAP users
* Fixing wrong permissions check in handling of PUT in ResUserHandler
* Using revision ID when replacing users
* Adding basic replace test
* tests
* Fixing some outstanding issues
* Fixing test setup, optimizing some stuff
* Fixing permission resolution rules, testsuite setup, etc
* Fix deadlock
* Adding error message for keyspace, slightly changing test setup
* Removing remaining mentions of FeatureCacheFeature
* Fix jslint
* Fixing some failed tests
* Fixing cluster authentication issue, red tests
* Fixing ldap testsuite, adding trace logging
* Fixint ldap tesuite setup and LDAP recognition
* Fixing an assert
* Cleanup, adding changelog entry
* fix typo
* Fixing dump_authentication test
* improvements found during code review
* oops
* updated CHANGELOG
* Fixing broken handling, disallowing adding of local users when disabled
* added tests for ldap search mode
* Fixing testInvalidGrants
(cherry picked from commit bc7ea2aaa29a9ed0974898f487e8a318f24912f1)
* Removing undefined auth level externally
(cherry picked from commit 70859f43ae6fd694fdbf70f669fbfdafc58e7913)
* Fixing previous commit
(cherry picked from commit 2fbcffd2ed657862ef9fb5e6d45201a6ec8ada69)
* more use of sessionstorage
* intentionally removed `after` methods from tests
because they are executed before the tests start
no cleanup is performed right now after the authentication tests
however, a cleanup is done at start of every test
* ldap tests all modes
* fix LDAP test invocation
* Added roles transformation to ldap test suite
* Fix compilation of community version.
* Imrpved the ldap testsuites by unifying their options
* fix permission problems for system collections
* Improved LDAP configuration documentation.
* Grunt.
* fixed some ro/rw display issues
* fixed some ro/rw display issues part 2
* grunt build
* bump version number
* Fixed typos in LDAP manual
Added a REST API for user management
The REST API exposes the functionality available in module "users" for HTTP access.
The following methods are available:
* GET /_api/user/username: fetch user information
* POST /_api/user: create new user
* PUT /_api/user: replace an existing user
* PATCH /_api/user: (partially) update an existing user
* DELETE /_api/user: remove an existing user
Additionally, a module "crypto" is introduced and exposed for Javascript actions.
The crypto module provides the following functions:
* require("org/arangodb/crypto").md5();
* require("org/arangodb/crypto").sha256();
* require("org/arangodb/crypto").rand();
Simon
Frank Celler
Jan
jsteemann
Max Neunhoeffer