d0kuhn/mosquitto
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
2,989 Commits 1 Branch 0 Tags 11 MiB
b9a842a394
Commit Graph

35 Commits

Author SHA1 Message Date
Roger A. Light
3ab0a9a3fd mosquitto_ctrl dynsec init uses open( , O_EXCL | O_CREAT) 
This allows us to refuse to open an existing file, without a race
condition.
 2023-08-16 14:01:21 +01:00
Roger A. Light
4ca294fd9c Warn on lax permissions on sensitive files. 
- Broker will log warnings if sensitive files are world readable/writable, or
  if the owner/group is not the same as the user/group the broker is running
  as. In future versions the broker will refuse to open these files.
 2023-08-16 14:01:21 +01:00
Roger A. Light
96931643a4 Use strings.h for strcasecmp, except on Windows. 
Closes #2420. Thanks to Frédéric Fauberteau.
 2022-02-24 12:02:16 +00:00
Roger A. Light
a1a190b482 Pointless whitespace tidy. 2021-10-05 15:20:37 +01:00
Roger A. Light
77af2ecefe Fix mosquitto_ctrl dynsec setDefaultACLAccess command not working. 2021-08-30 22:28:51 +01:00
Roger Light
e1c8f09372 Remove C++ style comments. 2021-04-25 22:26:12 +01:00
Roger A. Light
0446bba7df Fix some conversion warnings. 2021-04-19 09:37:20 +01:00
Roger A. Light
3ac2c3ee09 Improve mosquitto_ctrl documentation. 2021-03-26 10:42:18 +00:00
Roger Light
2de8c15bc9 Minor build fixes. 2021-03-21 09:18:43 +00:00
Roger A. Light
706a1f3f29 Fix more minor compiler warnings. 2021-01-21 13:33:54 +00:00
Roger A. Light
a4389fc9ce Fix SPDX identifiers: EDL-1.0 -> BSD-3-Clause. 
The two licenses are the same.
 2021-01-20 11:46:18 +00:00
Roger A. Light
9c4b9a0311 ctrl: Error if new passwords don't match. 
Produce an error when requesting a new password if both
attempts do not match.

Closes #2011. Thanks to Willem Eradus.
 2021-01-15 12:30:42 +00:00
Roger A. Light
370cec5edd Fixes for lots of minor build warnings highlighted by Visual Studio. 2021-01-09 21:06:08 +00:00
Roger Light
5b3acfe3cc Fix mosquitto_ctrl dynsec getGroup not showing roles. 
Closes #1997. Thanks to Willem Eradus.
 2021-01-07 23:36:56 +00:00
Roger A. Light
791c63372b Fix cjson include paths. 2020-12-04 22:15:19 +00:00
Roger A. Light
d6fe93aa51 ctrl: --force not supported. 2020-12-02 20:39:07 +00:00
Roger A. Light
26ffe1300a Various Windows build fixes. 2020-12-02 19:49:14 +00:00
Roger A. Light
3731535298 Add SPDX license identifiers. 2020-12-01 20:46:56 +00:00
Roger A. Light
584cf51ba7 Update to EPL-2.0 2020-11-25 17:34:21 +00:00
Roger A. Light
f83fcc8535 Fix Coverity Scan issues. 
1436866
1436865
1436864
1436862
1436857
1436856
1436852
1436851
 2020-11-24 00:47:30 +00:00
Roger A. Light
04d53e8919 ctrl: Give helpful message when initialising dynsec. 2020-11-18 11:46:23 +00:00
Roger A. Light
b06c5cd88f dynsec: Add setClientId command. 2020-11-17 14:58:23 +00:00
Roger A. Light
4b3c76d97a mosquitto_ctrl: Allow optional client and password when creating a client. 2020-11-07 23:49:00 +00:00
Roger A. Light
aafb75b6bc Ctrl: Fix use of ints in cJSON. 2020-11-04 13:58:40 +00:00
Roger A. Light
9785896eea Ctrl: Report errors on invalid args, don't try to connect. 2020-11-03 18:15:46 +00:00
Roger A. Light
97385f522b Ctrl: Client only deals with a payload string, not cJSON. 2020-11-01 22:11:32 +00:00
Roger A. Light
866c395dcc Dynsec: Add "disabled" property for getClient/listClients. 2020-10-30 12:35:34 +00:00
Roger A. Light
66d16280d8 dynsec: Add enableClient disableClient commands. 2020-10-29 15:17:12 +00:00
Roger A. Light
98815c5037 ctrl: Ask for passwords if not given. 
Applies to login user, init, createClient, and setClientPassword.
 2020-10-29 14:35:50 +00:00
Roger A. Light
df30b6c9d4 Dynsec: add getAnonymousGroup and getDefaultACLAccess commands 2020-10-29 11:38:34 +00:00
Roger A. Light
c9cb10a079 ctrl: get* output for dynsec. 2020-10-29 09:59:07 +00:00
Roger A. Light
1e2ba03754 ctrl: Give dynsec init user more rights. 
Subscribe and receive from $SYS/#
Subscribe and receive from #
 2020-10-28 11:50:52 +00:00
Roger A. Light
a1ad4cfcc4 Dynsec: Rename ACL types for clarity. 
publishBrokerToClient -> publishClientReceive
publishClientToBroker -> publishClientSend
 2020-10-28 11:03:44 +00:00
Roger A. Light
004bd3c5cd Dynsec: Set default behaviour to be less restrictive. 
Publish broker to client and unsubscribe are now allowed by default. With Publish client to broker and subscribe denied by default there is still no way a client can exchange messages, but it is now easier to administer.
 2020-10-28 11:03:44 +00:00
Roger A. Light
fdff255916 New dynamic security plugin. 2020-10-27 00:54:55 +00:00