OPNSense/core ce2abdesrc/opnsense/www/js/widgets Certificates.js

by Monviech via GitHub on ⎇
dashboard: Certificates.js adjustments for f90e544 (#8526)

* dashboard: Use search link for certificates not in the trust model

* dashboard: Use toLocaleDateString to only display the expiry date but not the exact time.

* dashboard: Show the commonname of a certificate if it exists. Since certificates from external sources all have the same description, they would not be easily distinguished otherwise.

* Fix style

* dashboard: The value of hidden items must be changed to uuid to ensure uniqueness when hiding certificates

* dashboard: Simplify hiddenItemOptions value
DeltaFile
+20-8src/opnsense/www/js/widgets/Certificates.js
+20-81 files

OPNSense/core 10d217fsrc/opnsense/www/js/widgets Certificates.js

by Monviech on ⎇
dashboard: Simplify hiddenItemOptions value
DeltaFile
+2-2src/opnsense/www/js/widgets/Certificates.js
+2-21 files

OPNSense/core d3c5aa2src/etc/inc auth.inc

by Franco Fichtner on ⎇
system: refactor vip access
DeltaFile
+3-7src/etc/inc/auth.inc
+3-71 files

OPNSense/core e6a4bdesrc/etc/inc util.inc

by Franco Fichtner on ⎇
system: cleanup unused since 945bd66a3dc8
DeltaFile
+0-35src/etc/inc/util.inc
+0-351 files

OPNSense/core 4971d4esrc/etc/inc/plugins.inc.d ipsec.inc, src/opnsense/mvc/app/controllers/OPNsense/IPsec/forms settings.xml

by Ad Schellevis via Franco Fichtner on ⎇
VPN: IPsec: Mobile Clients - move charon attributes to "Advanced settings"

PR: https://github.com/opnsense/core/issues/8349 (#8380)

(cherry picked from commit a893cdc7a559d651b315ff4ca1dc1d82dba34e23)
(cherry picked from commit 0b1b0cb93215cc7184463ef5e62a9fe782970b14)
DeltaFile
+3-324src/www/vpn_ipsec_mobile.php
+138-0src/opnsense/mvc/app/models/OPNsense/IPsec/Migrations/M1_0_4.php
+14-122src/etc/inc/plugins.inc.d/ipsec.inc
+132-0src/opnsense/mvc/app/controllers/OPNsense/IPsec/forms/settings.xml
+83-1src/opnsense/mvc/app/models/OPNsense/IPsec/IPsec.xml
+36-4src/opnsense/mvc/app/models/OPNsense/IPsec/IPsec.php
+406-4515 files not shown
+427-49011 files

OPNSense/core 868a74esrc/etc/inc interfaces.inc util.inc, src/opnsense/mvc/app/models/OPNsense/IPsec/Menu Menu.xml

by Franco Fichtner on ⎇
interfaces: cleanup spurious functions regarding VIP access

We do this for different reasons, but mainly for code maintenance
and simplicity.  It also fixes a few aquire/display bugs with
overlapping linl-local VIPs across interfaces, but not all.
DeltaFile
+38-60src/etc/inc/interfaces.inc
+20-10src/www/vpn_openvpn_server.php
+0-27src/etc/inc/util.inc
+10-8src/www/vpn_ipsec_phase1.php
+10-7src/www/vpn_openvpn_client.php
+1-1src/opnsense/mvc/app/models/OPNsense/IPsec/Menu/Menu.xml
+79-1136 files

OPNSense/core d7638b2src/www vpn_openvpn_server.php

by Franco Fichtner on ⎇
foobar
DeltaFile
+1-1src/www/vpn_openvpn_server.php
+1-11 files

OPNSense/core 78b7e18src/www vpn_openvpn_server.php

by Franco Fichtner on ⎇
openvpn: foo
DeltaFile
+20-10src/www/vpn_openvpn_server.php
+20-101 files

OPNSense/core a4937e3src/opnsense/mvc/app/models/OPNsense/IPsec/Menu Menu.xml, src/www vpn_ipsec_phase1.php vpn_openvpn_client.php

by Franco Fichtner on ⎇
ipsec/openvpn: refactor away legacy getters and one menu fix
DeltaFile
+10-8src/www/vpn_ipsec_phase1.php
+10-7src/www/vpn_openvpn_client.php
+1-1src/opnsense/mvc/app/models/OPNsense/IPsec/Menu/Menu.xml
+21-163 files

OPNSense/core 20b0295src/opnsense/www/js/widgets Certificates.js

by Monviech on ⎇
dashboard: The value of hidden items must be changed to uuid to ensure uniqueness when hiding certificates
DeltaFile
+3-3src/opnsense/www/js/widgets/Certificates.js
+3-31 files

OPNSense/core a8d96d6src/www vpn_ipsec_phase1.php

by Franco Fichtner on ⎇
ipsec: refactor away legacy getters
DeltaFile
+12-7src/www/vpn_ipsec_phase1.php
+12-71 files

OPNSense/core da4b4c9src/opnsense/www/js/widgets Certificates.js

by Monviech on ⎇
Fix style
DeltaFile
+2-2src/opnsense/www/js/widgets/Certificates.js
+2-21 files

OPNSense/core b5c0adbsrc/opnsense/www/js/widgets Certificates.js

by Monviech on ⎇
dashboard: Show the commonname of a certificate if it exists. Since certificates from external sources all have the same description, they would not be easily distinguished otherwise.
DeltaFile
+5-0src/opnsense/www/js/widgets/Certificates.js
+5-01 files

OPNSense/core 82a2fcdsrc/www services_router_advertisements.php

by Robin Müller via Franco Fichtner on ⎇
radvd: fix list of source addresses on overlapping link-locals (#8517)

(cherry picked from commit 25d629fcd33d76910cc499160f29e4c878e6ac95)
(cherry picked from commit adf95bc108bbb68c8f2fa00f02aabbac9f941d18)
(cherry picked from commit 97da2221d7e9ba7714258afecb17cdfc0d787bda)
DeltaFile
+7-6src/www/services_router_advertisements.php
+7-61 files

OPNSense/core 6a73a27src/opnsense/www/js/widgets Certificates.js

by Monviech on ⎇
dashboard: Use toLocaleDateString to only display the expiry date but not the exact time.
DeltaFile
+5-2src/opnsense/www/js/widgets/Certificates.js
+5-21 files

OPNSense/core 9e213c2src/opnsense/www/js/widgets Certificates.js

by Monviech on ⎇
dashboard: Use search link for certificates not in the trust model
DeltaFile
+7-3src/opnsense/www/js/widgets/Certificates.js
+7-31 files

OPNSense/core 6063dc6src/opnsense/mvc/app/views/layout_partials base_dialog.volt base_form.volt

by Ad Schellevis via Franco Fichtner on ⎇
mvc: templates - implement <type>ignore</type> in forms.

In some cases it's practical to document the field so grids may use them, but skip them on input processing as the information is not that relevant to ask (or show using an info type)

(cherry picked from commit 98e7a16dce0c270105c74799f67f27d47a5cf4a4)
DeltaFile
+2-1src/opnsense/mvc/app/views/layout_partials/base_dialog.volt
+2-1src/opnsense/mvc/app/views/layout_partials/base_form.volt
+4-22 files

OPNSense/core f7e845csrc/opnsense/mvc/app/controllers/OPNsense/CaptivePortal/Api AccessController.php, src/opnsense/mvc/app/library/OPNsense/Auth Radius.php

by Stephan de Wit via Franco Fichtner on ⎇
radius: improved RFC alignment (#8458)

- Adds proper Termination Cause handling, requires addition of `delete_reason` column in the captiveportal sqlite database.
- Implements `Acct-Input|Output-Gigawords` accounting handling (Fixes https://github.com/opnsense/core/issues/6712)
- implements `Called|Calling-Station-Id`. (Fixes https://github.com/opnsense/core/issues/7844)
        - `Called-Station-Id` implemented via additional optional input field
        - `Calling-Station-Id` requires an extra preauth hook, which in general is useful to handle per-session authentication properties.
- While here, silence output of pf during state kills when client is disconnected
- `NAS-IP-Address` isn't added, RFC2865 states it should be either `NAS-Identifier` of `NAS-IP-Address`.

Since it touches this area, perhaps we can remove the deprecated `$zoneid` param in the captive portal SessionController.

(cherry picked from commit ab48c5afb608af373316c0313f0f1355185c02ce)
(cherry picked from commit 4eca08abb74fbcdd0386b69ca9a7790fb3c689e5)
DeltaFile
+74-4src/opnsense/mvc/app/library/OPNsense/Auth/Radius.php
+24-9src/opnsense/mvc/app/controllers/OPNsense/CaptivePortal/Api/AccessController.php
+19-0src/www/system_authservers.php
+10-4src/opnsense/scripts/OPNsense/CaptivePortal/cp-background-process.py
+10-3src/opnsense/scripts/OPNsense/CaptivePortal/lib/db.py
+4-4src/opnsense/scripts/OPNsense/CaptivePortal/lib/pf.py
+141-246 files not shown
+163-3312 files

OPNSense/core aff7372src/opnsense/mvc/app/library/OPNsense/Auth Radius.php

by Stephan de Wit via Franco Fichtner on ⎇
radius: use Mesage Authenticator by default (https://github.com/opnsense/core/issues/7983)

(cherry picked from commit 8bd35fe138ac60255d5b2112a0702198e576f1a9)
DeltaFile
+1-1src/opnsense/mvc/app/library/OPNsense/Auth/Radius.php
+1-11 files

OPNSense/core e4f0e92src/opnsense/mvc/app/controllers/OPNsense/TrafficShaper/Api ServiceController.php, src/opnsense/scripts/shaper setup.sh

by Stephan de Wit via Franco Fichtner on ⎇
shaper: move pipe & queue configuration to dnctl service (#8404)

(cherry picked from commit 3bf818348ca7e306ab4fd5e80a9eca68f98c2167)
(cherry picked from commit d52f6ca1f2c3b463f0b0ca64f2fa547524aac0a1)
(cherry picked from commit fd98874ce78505dbf94ab7b5a7db9ac8b39057ca)
(cherry picked from commit f59c938a580b9473f255ffceb46a376a519f9f15)
(cherry picked from commit 0d8f57f3161b317c4c295d8eedb74567656d189b)
DeltaFile
+0-47src/opnsense/service/templates/OPNsense/IPFW/ipfw.conf
+45-0src/opnsense/service/templates/OPNsense/Shaper/dnctl.conf
+22-17src/opnsense/mvc/app/controllers/OPNsense/TrafficShaper/Api/ServiceController.php
+29-0src/opnsense/scripts/shaper/setup.sh
+7-8src/opnsense/service/templates/OPNsense/IPFW/rc.conf.d
+13-0src/opnsense/service/templates/OPNsense/Shaper/rc.conf.d
+116-727 files not shown
+141-8613 files

OPNSense/core 5ffe269src/etc/inc/plugins.inc.d captiveportal.inc, src/opnsense/mvc/app/controllers/OPNsense/CaptivePortal/Api AccessController.php

by Stephan de Wit via Franco Fichtner on ⎇
Captive Portal: migrate to pf (#8368)

(cherry picked from commit d08addc25c42b0d53e9fd229e2ea642438184b69)
(cherry picked from commit e1a0278b17af5ba8fa6a2dd08f4316337f5b84bd)
(cherry picked from commit ffc5d4ae659589d8bf4ae98022527ad1d4bc1192)
(cherry picked from commit d32ec31f79148ca29d9d84d73b0bf21df3253245)
DeltaFile
+0-188src/opnsense/scripts/OPNsense/CaptivePortal/lib/ipfw.py
+172-0src/etc/inc/plugins.inc.d/captiveportal.inc
+101-0src/opnsense/scripts/OPNsense/CaptivePortal/lib/pf.py
+61-21src/opnsense/scripts/OPNsense/CaptivePortal/cp-background-process.py
+0-81src/opnsense/service/templates/OPNsense/IPFW/ipfw.conf
+66-4src/opnsense/mvc/app/controllers/OPNsense/CaptivePortal/Api/AccessController.php
+400-29429 files not shown
+547-39535 files

OPNSense/core d711defsrc/etc/inc auth.inc

by Franco Fichtner on ⎇
system: small audit of auth.inc

(cherry picked from commit 7dae89eadf2712b2f1376bca051a29fde5850231)
DeltaFile
+42-25src/etc/inc/auth.inc
+42-251 files

OPNSense/core b7115e9src/etc/inc/xmlrpc legacy.inc

by Ad Schellevis via Franco Fichtner on ⎇
xmlrpc: extend nosync support to keep backup items for new cases

PR: https://github.com/opnsense/core/issues/8394

(cherry picked from commit fc6e169a470b22b2c7d159a3f95796afbf80f2ac)
(cherry picked from commit 8e64f0dffb884b7304bc1d49b5e493a0f5911a4f)
(cherry picked from commit bbe8cbb49a01dd05497a715697ca63ff85d6d292)
DeltaFile
+19-17src/etc/inc/xmlrpc/legacy.inc
+19-171 files

OPNSense/core 7210f01src/opnsense/mvc/app/models/OPNsense/Dnsmasq Dnsmasq.php

by Monviech via GitHub on ⎇
dnsmasq: Implement a light validation for option6 values (#8520)

* dnsmasq: Implement a light validation for option6 values as they require to be wrapped inside square brackets if they contain an IPv6 address

* dnsmasq: Improve the IPv6 bracket check, also handle multiple ipv6 addresses that are comma separated, use isIpv6Address()

* dnsmasq: Put IPv6 value check inline since dhcp-match and dhcp-option have been unified in master.

* Update src/opnsense/mvc/app/models/OPNsense/Dnsmasq/Dnsmasq.php

Co-authored-by: Ad Schellevis <AdSchellevis at users.noreply.github.com>

* Update src/opnsense/mvc/app/models/OPNsense/Dnsmasq/Dnsmasq.php

Co-authored-by: Ad Schellevis <AdSchellevis at users.noreply.github.com>

* dnsmasq: trim value directly

---------

Co-authored-by: Ad Schellevis <AdSchellevis at users.noreply.github.com>
DeltaFile
+21-0src/opnsense/mvc/app/models/OPNsense/Dnsmasq/Dnsmasq.php
+21-01 files

OPNSense/core 0d388f9src/opnsense/mvc/app/models/OPNsense/Dnsmasq Dnsmasq.php

by Monviech via GitHub on ⎇
Update src/opnsense/mvc/app/models/OPNsense/Dnsmasq/Dnsmasq.php

Co-authored-by: Ad Schellevis <AdSchellevis at users.noreply.github.com>
DeltaFile
+1-1src/opnsense/mvc/app/models/OPNsense/Dnsmasq/Dnsmasq.php
+1-11 files

OPNSense/core fa0d2e8src/opnsense/mvc/app/models/OPNsense/Dnsmasq Dnsmasq.php

by Monviech via GitHub on ⎇
Update src/opnsense/mvc/app/models/OPNsense/Dnsmasq/Dnsmasq.php

Co-authored-by: Ad Schellevis <AdSchellevis at users.noreply.github.com>
DeltaFile
+1-1src/opnsense/mvc/app/models/OPNsense/Dnsmasq/Dnsmasq.php
+1-11 files

OPNSense/core 905b990src/opnsense/scripts/filter read_log.py, src/opnsense/service/conf/actions.d actions_filter.conf

by Ad Schellevis on ⎇
filter: replace update_params for argparse
DeltaFile
+11-9src/opnsense/scripts/filter/read_log.py
+2-2src/opnsense/service/conf/actions.d/actions_filter.conf
+13-112 files

OPNSense/core 14ed17esrc/opnsense/mvc/app/models/OPNsense/Dnsmasq Dnsmasq.php

by Monviech on ⎇
dnsmasq: Add comment to IPv6 bracket trim
DeltaFile
+1-0src/opnsense/mvc/app/models/OPNsense/Dnsmasq/Dnsmasq.php
+1-01 files

OPNSense/core 207bddcsrc/opnsense/mvc/app/controllers/OPNsense/TrafficShaper IndexController.php, src/opnsense/mvc/app/controllers/OPNsense/TrafficShaper/Api SettingsController.php

by Monviech via GitHub on ⎇
TrafficShaper: Implement base_bootgrid_table and base_apply_button (#8524)
DeltaFile
+13-107src/opnsense/mvc/app/views/OPNsense/TrafficShaper/index.volt
+47-0src/opnsense/mvc/app/controllers/OPNsense/TrafficShaper/forms/dialogPipe.xml
+32-0src/opnsense/mvc/app/controllers/OPNsense/TrafficShaper/forms/dialogQueue.xml
+29-0src/opnsense/mvc/app/controllers/OPNsense/TrafficShaper/forms/dialogRule.xml
+3-16src/opnsense/mvc/app/controllers/OPNsense/TrafficShaper/Api/SettingsController.php
+6-0src/opnsense/mvc/app/controllers/OPNsense/TrafficShaper/IndexController.php
+130-1236 files

OPNSense/core 368598e. plist

by Ad Schellevis on ⎇
plist
DeltaFile
+2-0plist
+2-01 files