aboutsummaryrefslogtreecommitdiffstats
path: root/src/libcharon/sa/ikev1/tasks/xauth.c
Commit message (Collapse)AuthorAgeFilesLines
* Use standard unsigned integer typesAndreas Steffen2016-03-241-1/+1
|
* libhydra: Move kernel interface to libcharonTobias Brunner2016-03-031-1/+0
| | | | This moves hydra->kernel_interface to charon->kernel.
* xauth: Call authorize() hook also when xauth-noauth is usedTobias Brunner2015-11-091-2/+8
| | | | Fixes #1138.
* ikev1: Defer Mode Config push after CHILD adoption when using XAuthMartin Willi2014-08-251-2/+21
|
* ikev1: Allow late connection switching based on XAuth usernameTobias Brunner2014-06-181-6/+0
|
* payload: Use common prefixes for all payload type identifiersMartin Willi2014-06-041-7/+7
| | | | | The old identifiers did not use a proper namespace and often clashed with other defines.
* xauth: add a configuration string option to be passed to XAuth instancesMartin Willi2013-09-031-1/+1
| | | | | | The configuration string is appended to the XAuth backend name, separated by a colon. The configuration string is passed untouched to the backend, where it can change the behavior of the XAuth module.
* Added xauth-noauth pluginTobias Brunner2013-03-191-29/+37
| | | | | | | | This XAuth backend does not do any authentication of client credentials but simply sends a successful XAuth status to the client, thereby concluding the XAuth exchange. This can be useful to fallback to basic RSA authentication with clients that can not be configured without XAuth authentication.
* Implement late peer config switching after XAuth authenticationMartin Willi2012-07-261-15/+80
| | | | | | | If additional authentication constraints, such as group membership, is not fulfilled by an XAuth backend, we search for another peer configuration that fulfills all constraints, including those from phase1.
* Check if XAuth round complies to configured authentication roundMartin Willi2012-07-261-7/+18
|
* Merge auth config items added from XAuth backends to IKE_SAMartin Willi2012-07-261-0/+1
|
* Enforce uniqueids=keep based on XAuth identityMartin Willi2012-06-251-0/+6
|
* Don't send XAUTH_OK if a hook prevents SA to establishMartin Willi2012-06-251-4/+14
|
* Add missing XAuth name variable when complaining about missing XAuth backendMartin Willi2012-06-251-1/+1
|
* Adopt children as XAuth initiator (which is IKE responder)Martin Willi2012-06-141-2/+2
|
* Remove executable flag from source files.Tobias Brunner2012-05-181-0/+0
|
* Store authentication info of a XAUTH round on IKE_SAMartin Willi2012-03-221-0/+16
|
* Invoke authorization hooks for IKEv1 connectionsMartin Willi2012-03-201-4/+19
|
* Try to detect reauthentication as responder and adopt children to new SAMartin Willi2012-03-201-0/+3
|
* Establish IKE_SA only once as XAuth responderMartin Willi2012-03-201-1/+0
|
* Set a condition flag if peer has been authenticated using XAuthMartin Willi2012-03-201-0/+1
|
* Setting Mode Cfg identifier for CFG_ACK messages.Clavister OpenSource2012-03-201-0/+7
|
* Implemented migration of XAuth taskMartin Willi2012-03-201-0/+18
|
* Separated libcharon/sa directory with ikev1 and ikev2 subfoldersMartin Willi2012-03-201-0/+399
generated by cgit v1.2.3 (git 2.25.1) at 2025-07-29 04:53:33 +0000