History log of /conch/ (Results 1 - 25 of 2065)
Revision (<<< Hide revision tags) (Show revision tags >>>)Date Author Comments
(<<< Hide modified files)
(Show modified files >>>)
b9c2014110-Jul-2019 Karen Etheridge

split these routes into their own files, for clearer documentation

Revision tags: v2.31.1, v2.31.0
1912bc2502-Jul-2019 Karen Etheridge

docs: pod markup fixes, minor wording improvements

530afe4d27-Jun-2019 Karen Etheridge

docs: add references to all endpoints from Conch::Route

4274ee4027-Jun-2019 Karen Etheridge

docs: fixes to referenced json schemas

Revision tags: v3.0.0-a2
e2c2cfc425-Jun-2019 Karen Etheridge

docs: fix entries regarding authorization

079272f304-Jul-2019 Karen Etheridge

docs: we test responses, not requests

c6639c8802-Jul-2019 Karen Etheridge

docs: reflect current status in README

b2a685d426-Jun-2019 Karen Etheridge

ignore doc changes that are in the index (e.g. during a rebase)

7d1f810325-Jun-2019 Karen Etheridge

remove outdated comment

this was done in c2f72f2bf3.

8542484b25-Jun-2019 Karen Etheridge

docs: add missing link

373396fb04-Jul-2019 Karen Etheridge

reuse the login token if it has a lot of life left

closes #829.

964c2a1104-Jul-2019 Karen Etheridge

expire both the session and the token, not one or the other

The token can't possibly be invalid at this point, since we already
authenticated with it.

2897f81504-Jul-2019 Karen Etheridge

clear out expired session tokens no matter which auth method is used

122797a704-Jul-2019 Karen Etheridge

check for user session validity and consistency

Revision tags: v2.29.1, v2.29.0, v3.0.0-a1, v2.30.0
0997e73814-May-2019 Karen Etheridge

remove bespoke and unnecessary password handling code

We still use Blowfish encryption, but with a higher cost parameter that is
more suitable to a modern environment (on my machine, a c

remove bespoke and unnecessary password handling code

We still use Blowfish encryption, but with a higher cost parameter that is
more suitable to a modern environment (on my machine, a check takes ~4s).

All existing password entries in the database will still work. Unicode
passwords continue to function.

show more ...

0e4fffe226-Jun-2019 Karen Etheridge

consolidate response generation when creating a login JWT

...and also check for errors (although none are expected here)

e3693c5d03-May-2019 Karen Etheridge

user_session_token now has a uuid primary key

token_hash is dropped; we store the token uuid in the JWT claims instead.

Since we are fully rotating secrets and the claims payload is

user_session_token now has a uuid primary key

token_hash is dropped; we store the token uuid in the JWT claims instead.

Since we are fully rotating secrets and the claims payload is changing, all
existing tokens are invalidated and so the entire user_session_token database
is purged.

closes #761.

show more ...

89897a3b13-May-2019 Karen Etheridge

drop support for breaking up the JWT and putting part of it in a cookie

closes #778.

27f2152708-May-2019 Karen Etheridge

drop support for basic auth (user+password in URL)

closes #762.

e48085e403-Jul-2019 Karen Etheridge

device.links

- store links from device report
- include links in GET requests for devices
- allow searching for a link in GET /device?link=:value
- new endpoints:
POST /d

device.links

- store links from device report
- include links in GET requests for devices
- allow searching for a link in GET /device?link=:value
- new endpoints:
POST /device/:device_id_or_serial_number/links
DELETE /device/:device_id_or_serial_number/links

closes #825.

show more ...

4a69c63008-Jul-2019 Karen Etheridge

drop device_neighbor.want_switch, .want_port

They have never been copied from reports to the database, and no validations use
them. They are also not included in current device reports.

5239a4a608-Jul-2019 Karen Etheridge

drop device_nic.speed

It has never been copied from reports to the database, and no validations use
it. It is also not included in current device reports.

9ec25fe208-Jul-2019 Karen Etheridge

drop device_disk.temp

This data is regurgitated in Device-related responses, but it is more
appropriately held by realtime monitoring systems, just like the data that was
kept in dev

drop device_disk.temp

This data is regurgitated in Device-related responses, but it is more
appropriately held by realtime monitoring systems, just like the data that was
kept in device_environment. (see #791.)

show more ...

ced79c9307-Jun-2019 Karen Etheridge

drop device_environment table

After storing report data into it, we never use the data again.
closes #791.

7cd42b6704-Jun-2019 Karen Etheridge

drop preservation of invalid device reports

It is recommended to now run 'bin/conch thin_device_reports'.

closes #804.

12345678910>>...83