FreeNAS / freenas

FreeNAS/freenas 7372e86 — src/middlewared/middlewared/utils/account authenticator.py

2025-04-23 01:52:08 UTC by Andrew Walker on ⎇

add-truenas-authenticator

Fix

Delta		File
+1	-1	src/middlewared/middlewared/utils/account/authenticator.py
+1	-1	1 files

FreeNAS/freenas 12be4ed — src/middlewared/middlewared/utils/account authenticator.py

2025-04-23 00:23:36 UTC by Andrew Walker on ⎇

add-truenas-authenticator

Fix

Delta		File
+3	-2	src/middlewared/middlewared/utils/account/authenticator.py
+3	-2	1 files

FreeNAS/freenas daf7953 — src/middlewared/middlewared/utils/account authenticator.py

2025-04-23 00:00:53 UTC by Andrew Walker on ⎇

add-truenas-authenticator

Fix

Delta		File
+14	-4	src/middlewared/middlewared/utils/account/authenticator.py
+14	-4	1 files

FreeNAS/freenas b78c7e6 — src/middlewared/middlewared/utils/account authenticator.py

2025-04-22 21:29:11 UTC by Andrew Walker on ⎇

add-truenas-authenticator

Fix

Delta		File
+1	-1	src/middlewared/middlewared/utils/account/authenticator.py
+1	-1	1 files

FreeNAS/freenas 0112486 — src/middlewared/middlewared/utils/account authenticator.py

2025-04-22 21:27:28 UTC by Andrew Walker on ⎇

add-truenas-authenticator

Fix

Delta		File
+1	-1	src/middlewared/middlewared/utils/account/authenticator.py
+1	-1	1 files

FreeNAS/freenas 87b9c72 — src/middlewared/middlewared/utils/account authenticator.py

2025-04-22 21:25:05 UTC by Andrew Walker on ⎇

add-truenas-authenticator

Fix

Delta		File
+2	-2	src/middlewared/middlewared/utils/account/authenticator.py
+2	-2	1 files

FreeNAS/freenas 167cd1a — src/middlewared/middlewared/utils/account authenticator.py

2025-04-22 21:19:05 UTC by Andrew Walker on ⎇

add-truenas-authenticator

Fix

Delta		File
+62	-39	src/middlewared/middlewared/utils/account/authenticator.py
+62	-39	1 files

FreeNAS/freenas 4cc8311 — src/middlewared/middlewared/api/base/types user.py, src/middlewared/middlewared/pytest/unit/api/base/types test_user.py

2025-04-22 20:12:58 UTC by Logan Cary on ⎇

NAS-135270

use `accept_params`

Delta		File
+3	-2	src/middlewared/middlewared/pytest/unit/api/base/types/test_user.py
+1	-1	src/middlewared/middlewared/api/base/types/user.py
+4	-3	2 files

FreeNAS/freenas b6ee20d — tests/api2 test_account.py

2025-04-22 19:56:41 UTC by Logan Cary on ⎇

NAS-135270

update user validation tests

Delta		File
+2	-2	tests/api2/test_account.py
+2	-2	1 files

FreeNAS/freenas 2369c15 — src/middlewared/middlewared/plugins etc.py

2025-04-22 19:21:51 UTC by Andrew Walker on ⎇

add-truenas-authenticator

Fix

Delta		File
+1	-0	src/middlewared/middlewared/plugins/etc.py
+1	-0	1 files

FreeNAS/freenas edced0a — src/middlewared/middlewared/etc_files/pam.d middleware-api-key.mako middleware.mako

2025-04-22 19:20:20 UTC by Andrew Walker on ⎇

add-truenas-authenticator

Add pam_limits

Delta		File
+3	-0	src/middlewared/middlewared/etc_files/pam.d/middleware-api-key.mako
+3	-0	src/middlewared/middlewared/etc_files/pam.d/middleware.mako
+6	-0	2 files

FreeNAS/freenas 12d6ea4 — src/middlewared/middlewared/alert/source fips.py

2025-04-22 19:18:46 UTC by themylogin on ⎇

NAS-135336

Address review

Delta		File
+8	-3	src/middlewared/middlewared/alert/source/fips.py
+8	-3	1 files

FreeNAS/freenas dca7720 — src/middlewared/middlewared/alert/source auth.py

2025-04-22 18:51:53 UTC by Brian M on ⎇

order_admin_sessions

Order sessions in AdminSessionAlertSource

Delta		File
+3	-0	src/middlewared/middlewared/alert/source/auth.py
+3	-0	1 files

FreeNAS/freenas eb35cae — src/middlewared/middlewared/plugins/nvmet init.py

2025-04-22 18:33:39 UTC by Brian M on ⎇

NAS-135197

Add missing __init__.py

Delta		File
+0	-0	src/middlewared/middlewared/plugins/nvmet/__init__.py
+0	-0	1 files

FreeNAS/freenas 5744ac4 — src/middlewared/middlewared/api/v25_10_0 audit.py

2025-04-22 18:23:28 UTC by Logan Cary on ⎇

NAS-134129

UUID can be an empty string for some reason

Delta		File
+1	-1	src/middlewared/middlewared/api/v25_10_0/audit.py
+1	-1	1 files

FreeNAS/freenas 8828981 — src/middlewared/middlewared/etc_files/pam.d middleware-api-key.mako

2025-04-22 18:20:23 UTC by Andrew Walker on ⎇

add-truenas-authenticator

Fix

Delta		File
+1	-1	src/middlewared/middlewared/etc_files/pam.d/middleware-api-key.mako
+1	-1	1 files

FreeNAS/freenas d794b43 — tests/api2 test_zzzz_stig.py

2025-04-22 18:16:04 UTC by Mark Grimes via Bugclerk on ⎇

NAS-135481-25.04.1

Remove unnecessary mock removal calls.

(cherry picked from commit 133462ee6f75d8c58f365ac76acbea065a491d4b)

Delta		File
+0	-9	tests/api2/test_zzzz_stig.py
+0	-9	1 files

FreeNAS/freenas 4d15236 — src/middlewared/middlewared/plugins/security update.py, tests/api2 test_zzzz_stig.py

2025-04-22 18:16:04 UTC by Mark Grimes via Bugclerk on ⎇

NAS-135481-25.04.1

Add validation checks for STIG enable.
Add STIG CI tests.

(cherry picked from commit 38196d6e40295d2fda7998c043e08ae13fc33f37)

Delta		File
+91	-22	tests/api2/test_zzzz_stig.py
+19	-19	src/middlewared/middlewared/plugins/security/update.py
+110	-41	2 files

FreeNAS/freenas 8bf13c7 — src/middlewared/middlewared/plugins/security update.py, tests/api2 test_zzzz_stig.py

2025-04-22 18:15:47 UTC by mgrimesix via GitHub on ⎇

master

NAS-135481 / 25.10 / Add validation checks for STIG enable. (#16311)

The features Docker, VM support and TrueNAS Connect are not allowed
under STIG mode.
Moved validation checks for those to the STIG enable command to
facilitate CI testing.

Update the STIG CI test to include the STIG enable validation checks.
Also added CI tests to confirm the features cannot be enabled while in
STIG mode.

Passing CI tests:
http://jenkins.eng.ixsystems.net:8080/job/tests/job/api_tests/4028/

Delta		File
+82	-22	tests/api2/test_zzzz_stig.py
+19	-19	src/middlewared/middlewared/plugins/security/update.py
+101	-41	2 files

FreeNAS/freenas 02cafed — src/middlewared/middlewared/utils/account authenticator.py, tests/api2 test_account_privilege_authentication.py

2025-04-22 18:15:05 UTC by Andrew Walker on ⎇

add-truenas-authenticator

Fix

Delta		File
+0	-10	tests/api2/test_account_privilege_authentication.py
+3	-3	src/middlewared/middlewared/utils/account/authenticator.py
+3	-13	2 files

FreeNAS/freenas 4f25f6a — src/middlewared/middlewared/plugins/apps migration_utils.py upgrade.py, src/middlewared/middlewared/pytest/unit/plugins/apps test_migration_utils.py test_upgrade_values.py

2025-04-22 18:10:26 UTC by Qubad786 via Waqar Ahmed on ⎇

backport-app-config-migrations

Introduce support for app config migrations (#15434)

Delta		File
+411	-0	src/middlewared/middlewared/pytest/unit/plugins/apps/test_migration_utils.py
+192	-0	src/middlewared/middlewared/pytest/unit/plugins/apps/test_upgrade_values.py
+91	-0	src/middlewared/middlewared/plugins/apps/migration_utils.py
+57	-1	src/middlewared/middlewared/plugins/apps/upgrade.py
+751	-1	4 files

FreeNAS/freenas 627e4fb — src/middlewared/middlewared/api/v25_04_0 virt_instance.py, src/middlewared/middlewared/api/v25_04_1 virt_instance.py

2025-04-22 18:00:50 UTC by bugclerk via GitHub on ⎇

stable/fangtooth

NAS-135377 / 25.04.1 / Expand possible incus instance status results in API (by anodos325) (#16289)

This commit adds FROZEN and ERROR as possible incus instance status
since they are mentioned in incus documentation. Lxc additionally
defines state strings of STARTING, STOPPING, FREEZING, and THAWED which
technically possibly surface as instance state. C.f src/lxc/state.c in
lxc codebase.

Original PR: https://github.com/truenas/middleware/pull/16276
Jira URL: https://ixsystems.atlassian.net/browse/NAS-135377

Co-authored-by: Andrew Walker <awalker at ixsystems.com>

Delta		File
+1	-1	src/middlewared/middlewared/api/v25_04_0/virt_instance.py
+1	-1	src/middlewared/middlewared/api/v25_04_1/virt_instance.py
+2	-2	2 files

FreeNAS/freenas d9dd62a — src/middlewared/middlewared/plugins account.py idmap.py, src/middlewared/middlewared/plugins/account_ constants.py

2025-04-22 17:58:35 UTC by bugclerk via GitHub on ⎇

stable/fangtooth

NAS-135375 / 25.04.1 / Add a synthetic container root user (by anodos325) (#16320)

This commit adds a user truenas_container_root that doesn't get written
to passwd and shadow files, but exists in user-related API responses.
This allows users to assign permissions to the root uid in
non-privileged containers and generally have UI look less confusing.

Original PR: https://github.com/truenas/middleware/pull/16319
Jira URL: https://ixsystems.atlassian.net/browse/NAS-135375

---------

Co-authored-by: Andrew Walker <awalker at ixsystems.com>

Delta		File
+41	-0	tests/unit/test_container_root.py
+16	-0	src/middlewared/middlewared/plugins/account_/constants.py
+14	-1	src/middlewared/middlewared/plugins/account.py
+7	-1	src/middlewared/middlewared/plugins/idmap.py
+5	-1	src/middlewared/middlewared/plugins/filesystem.py
+83	-3	5 files

FreeNAS/freenas 82d3471 — src/middlewared/middlewared/plugins account.py idmap.py, src/middlewared/middlewared/plugins/account_ constants.py

2025-04-22 17:52:50 UTC by Andrew Walker via GitHub on ⎇

master

NAS-135375 / 25.10 / Add a synthetic container root user (#16319)

This commit adds a user truenas_container_root that doesn't get written
to passwd and shadow files, but exists in user-related API responses.
This allows users to assign permissions to the root uid in
non-privileged containers and generally have UI look less confusing.

Delta		File
+41	-0	tests/unit/test_container_root.py
+16	-0	src/middlewared/middlewared/plugins/account_/constants.py
+14	-1	src/middlewared/middlewared/plugins/account.py
+7	-1	src/middlewared/middlewared/plugins/idmap.py
+5	-1	src/middlewared/middlewared/plugins/filesystem.py
+83	-3	5 files

FreeNAS/freenas 509d468 — src/middlewared/middlewared/plugins/audit backend.py

2025-04-22 17:34:21 UTC by Caleb St. John via GitHub on ⎇

master

NAS-135471 / 25.10 / convert AuditBackend to new api (#16305)

Convert this private namespace to utilize the new api_method decorator.

---------

Co-authored-by: Logan Cary <logan.cary at ixsystems.com>

Delta		File
+25	-17	src/middlewared/middlewared/plugins/audit/backend.py
+25	-17	1 files

FreeNAS/freenas 4ceb8d9 — src/middlewared/middlewared/plugins account.py idmap.py, src/middlewared/middlewared/plugins/account_ constants.py

2025-04-22 17:25:34 UTC by Andrew Walker on ⎇

NAS-135375

Add a synthetic container root user

This commit adds a user truenas_container_root that doesn't get
written to passwd and shadow files, but exists in user.query
responses. This allows users to assign permissions to the
root uid in non-privileged containers and generally have UI
look less confusing.

Delta		File
+41	-0	tests/unit/test_container_root.py
+14	-1	src/middlewared/middlewared/plugins/account.py
+15	-0	src/middlewared/middlewared/plugins/account_/constants.py
+7	-1	src/middlewared/middlewared/plugins/idmap.py
+5	-1	src/middlewared/middlewared/plugins/filesystem.py
+82	-3	5 files

FreeNAS/freenas ec44c0f — src/middlewared/middlewared/plugins/crypto_ renew_certs.py, src/middlewared/middlewared/plugins/failover_ event.py

2025-04-22 17:09:26 UTC by sonicaj via GitHub on ⎇

master

NAS-135477 / 25.10 / Make sure certs are only renewed on active node (#16308)

This PR adds changes to make sure that certs are only renewed on the
active node and standby/active both do not try to do that.

Delta		File
+6	-0	src/middlewared/middlewared/plugins/crypto_/renew_certs.py
+4	-0	src/middlewared/middlewared/plugins/failover_/event.py
+10	-0	2 files

FreeNAS/freenas 3c2d5af — src/middlewared/middlewared/plugins account.py

2025-04-22 17:01:18 UTC by Andrew Walker on ⎇

add-unprivileged-root

Fix

Delta		File
+3	-1	src/middlewared/middlewared/plugins/account.py
+3	-1	1 files

FreeNAS/freenas 51941bd — src/middlewared/middlewared/api/v25_10_0 virt_instance.py, src/middlewared/middlewared/plugins/virt instance.py

2025-04-22 16:55:26 UTC by M. Rehan on ⎇

NAS-135413

Allow running containers in privileged mode

Delta		File
+15	-1	src/middlewared/middlewared/api/v25_10_0/virt_instance.py
+9	-2	src/middlewared/middlewared/plugins/virt/instance.py
+24	-3	2 files

FreeNAS/freenas 08ba76f — src/middlewared/middlewared/plugins/audit backend.py

2025-04-22 16:53:31 UTC by Logan Cary on ⎇

audit-be-api

address reviews

Delta		File
+7	-8	src/middlewared/middlewared/plugins/audit/backend.py
+7	-8	1 files