Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

v1.5.0 Fixes & Features #243

Merged
merged 78 commits into from
Oct 11, 2022
Merged

v1.5.0 Fixes & Features #243

merged 78 commits into from
Oct 11, 2022

Conversation

jaredhendrickson13
Copy link
Owner

@jaredhendrickson13 jaredhendrickson13 commented Jun 6, 2022

@jaredhendrickson13 jaredhendrickson13 added needs testing Features or fixes that require further testing work in progress PRs or Issues that are currently in progress labels Jun 6, 2022
@jaredhendrickson13
Copy link
Owner Author

Development Build 0

pfSense 2.5:

pkg add https://github.com/jaredhendrickson13/pfsense-api/files/8884577/pfSense-2.5-pkg-API-1.5_0dev_0.zip && /etc/rc.restart_webgui

pfSense 2.6:

pkg add https://github.com/jaredhendrickson13/pfsense-api/files/8884578/pfSense-2.6-pkg-API-1.5_0dev_0.zip && /etc/rc.restart_webgui

pfSense Plus 22.01:

pkg add https://github.com/jaredhendrickson13/pfsense-api/files/8884579/pfSense-22.01-pkg-API-1.5_0dev_0.zip && /etc/rc.restart_webgui

pfSense-2.5-pkg-API-1.5_0dev_0.zip
pfSense-2.6-pkg-API-1.5_0dev_0.zip
pfSense-22.01-pkg-API-1.5_0dev_0.zip

@jaredhendrickson13
Copy link
Owner Author

Build 41f1934

Build Installation

pkg add https://github.com/jaredhendrickson13/pfsense-api/files/9630901/pfSense-pkg-API-0.0_0dev_41f193446ae215d9df3a4b4fbda6013b9d147127.zip && /etc/rc.restart_webgui

pfSense-pkg-API-0.0_0dev_41f193446ae215d9df3a4b4fbda6013b9d147127.zip

only allow pfsense 2.6.0+/22.05+ to use the initiate field on /api/v1/services/ipsec/apply
as the necessary function is only available on these versions and pfsense 2.5.x is nearing
eol.
adds the update_available field to the GET /api/v1/system/package endpoint
@jaredhendrickson13
Copy link
Owner Author

Build 8edd42e

Build Installation

pkg add https://github.com/jaredhendrickson13/pfsense-api/files/9693009/pfSense-pkg-API-0.0_0dev_8edd42e88aff6f893ddda7cfb813ca9d2b5d55de.zip && /etc/rc.restart_webgui

pfSense-pkg-API-0.0_0dev_8edd42e88aff6f893ddda7cfb813ca9d2b5d55de.zip

@jaredhendrickson13 jaredhendrickson13 linked an issue Oct 4, 2022 that may be closed by this pull request
@jaredhendrickson13 jaredhendrickson13 removed the work in progress PRs or Issues that are currently in progress label Oct 4, 2022
@jaredhendrickson13
Copy link
Owner Author

Build e33d64c

Build Installation

pkg add https://github.com/jaredhendrickson13/pfsense-api/files/9718681/pfSense-pkg-API-0.0_0dev_e33d64c09f33706fe2ac0f2b6e950f166ca24594.zip && /etc/rc.restart_webgui

pfSense-pkg-API-0.0_0dev_e33d64c09f33706fe2ac0f2b6e950f166ca24594.zip

@jaredhendrickson13 jaredhendrickson13 added the work in progress PRs or Issues that are currently in progress label Oct 7, 2022
* feat: implement login protection

adds the enable_login_protection field to the api ui page and
/api/v1/system/api. this field toggles enabling login protection
for api authentication. this will help prevent brute force
attacks against api endpoints

* fix: check if enable_login_protection is empty

on the api ui page, we were evaluating a base variable which
erroneously set or unset the variable

* fix: default auth logs username

login protection requires the username to be set in order to work.
this sets the default username to 'unknown' if no username could
be found

* chore: enable login protection by default

* tests: added login protection test

* lint: fixed import order for tests

* tests: just expect login protection timeout

before the test_login_protection test expected requests to start failing at a
specific point, but this does not work with all login protection configs and
situations. it now just expects the requests to start to timeout after many
failed auth attempts
* feat: generate api tokens via api

allows clients to generate new api tokens from the
/api/v1/access_token endpoint

* docs: updated auth docs

updates readme and openapi docs to state api tokens can
now be updated via api endpoint. also adds section
outlining the purpose of login protection and
how to disable it if needed

* chore: adjust login protection verbage in ui

clarifies that disabling API login protection will not
disble api protection system-wide, only within the api

* tests: added api token auth tests

* tests: fixed order of imports in token tests

* docs: fixed formatting in openapi.yml

the login protection section was missing a trailing newline that bolded the
entire section
@jaredhendrickson13 jaredhendrickson13 linked an issue Oct 8, 2022 that may be closed by this pull request
jaredhendrickson13 and others added 2 commits October 8, 2022 12:22
* feat: added /api/v1/system/version/upgrade

this endpoint allows clients to check for available pfsense upgrades
but does not apply them.

* fix: add use_cache to query excludes

* tests: test version upgrade resp times

* docs: add new priv to system version

adds priv page-system-update-settings to allow /api/v1/system/version calls
specifies which versions support the 'initiate' field on
/api/v1/services/ipsec/apply. currently 2.5.x does not
support this field because the function to do so did
not exist
@jaredhendrickson13 jaredhendrickson13 removed the work in progress PRs or Issues that are currently in progress label Oct 9, 2022
@jaredhendrickson13
Copy link
Owner Author

Build v1.5.0-rc0

Build Installation

pkg add https://github.com/jaredhendrickson13/pfsense-api/files/9742237/pfSense-pkg-API-1.5_0_rc0.zip && /etc/rc.restart_webgui

pfSense-pkg-API-1.5_0_rc0.zip

@jaredhendrickson13 jaredhendrickson13 merged commit 0740084 into master Oct 11, 2022
@jaredhendrickson13 jaredhendrickson13 deleted the v150 branch October 11, 2022 04:44
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment