soledad.git/server, branch debian/platform-0.7 [soledad] freeze debian version 2015-06-01T19:53:29+00:00 drebs drebs@leap.se 2015-06-01T19:08:40+00:00 393b795bfdcf85089cd00b3caf64d7f6381b4d7d 






[pkg] fold in changes
2015-06-01T17:54:27+00:00

drebs
drebs@leap.se

2015-06-01T17:54:27+00:00

9fb1c47ca7da06d6feef6846b812aec28128ed78












[pkg] bump version of server dependency on common
2015-05-14T14:59:31+00:00

drebs
drebs@leap.se

2015-05-14T14:52:20+00:00

340b0dcfbc0a819738a28f9c803fdbf848754897

soledad-common versions before 0.6.5 do not contain the fix for #6833 and thus
will not work with most recent server. That is why we have to bump this
soledad-server dependency on soledad.common.





soledad-common versions before 0.6.5 do not contain the fix for #6833 and thus
will not work with most recent server. That is why we have to bump this
soledad-server dependency on soledad.common.







[fix] remove unneded params to CouchServerState
2015-04-09T15:20:19+00:00

drebs
drebs@leap.se

2015-04-09T15:20:19+00:00

5a9eac4ba0d4ddc419fdaaee4d08dbc7d8115294

This commit removes some leftover code from a time when Soledad Server used to
check for permissions on certain databases when starting (i.e. shared and
tokens databases). This was later removed as correct permissions enforcement
was relayed to tapicero.

Closes: #6833.





This commit removes some leftover code from a time when Soledad Server used to
check for permissions on certain databases when starting (i.e. shared and
tokens databases). This was later removed as correct permissions enforcement
was relayed to tapicero.

Closes: #6833.







[fix] add explicit dependency on leap.common
2015-03-19T14:58:12+00:00

drebs
drebs@leap.se

2015-03-19T13:57:54+00:00

74dec41c1d99ae8d4a4a79a7cb0d5c3c9f40cbae

In the past, we wanted dependency on leap.common to be optional, but now
because of the explicit use of the config path prefix and signaling, we want
to enforce dependency on leap.common.





In the past, we wanted dependency on leap.common to be optional, but now
because of the explicit use of the config path prefix and signaling, we want
to enforce dependency on leap.common.







[fix] add/fix dependency on twisted
2015-03-19T14:52:44+00:00

drebs
drebs@leap.se

2015-03-19T12:54:38+00:00

4b78cf9da0874501fa123a02b53d7650e8dfcdf1

Add dependency on twisted for Soledad Client. Also remove minimum twisted
version for Soledad Server because debian stable currently distributes 12.0.0
and pypi currently distributes 15.0.0.

Closes: #6797





Add dependency on twisted for Soledad Client. Also remove minimum twisted
version for Soledad Server because debian stable currently distributes 12.0.0
and pypi currently distributes 15.0.0.

Closes: #6797







[feat] use monthly tokens database
2015-03-19T14:16:10+00:00

drebs
drebs@leap.se

2015-03-11T17:33:10+00:00

cf3c5018820f982ae64c2e062391b0a3b6e52f21

Any solead release that includes this commit will be incompatible with LEAP
Platform < 0.6.1 because only from that version on the platform implements the
ephemeral monthly tokens databases.

Closes: #6785.





Any solead release that includes this commit will be incompatible with LEAP
Platform < 0.6.1 because only from that version on the platform implements the
ephemeral monthly tokens databases.

Closes: #6785.







Fix soledad initscript uid and gid.
2015-03-09T18:26:12+00:00

drebs
drebs@leap.se

2015-03-09T18:22:17+00:00

61a56f2ee301212d96c2d95a21d524bc06b3a677












Fix server initscript location (#6557).
2014-12-16T16:47:21+00:00

drebs
drebs@leap.se

2014-12-16T16:47:21+00:00

e909a218efb0ad31f413c47c90303f44f6906158












Use SSL negotiation.
2014-12-02T23:22:18+00:00

Kali Kaneko
kali@leap.se

2014-12-02T23:22:18+00:00

31eeafd715f407c61d8de4e6555241a1de33fba1

Although the API can be misleading, PROTOCOL_SSLv23 selects the highest
protocol version that both the client and server support. Despite the
name, this option can select “TLS” protocols as well as “SSL”.

In this way, we can use TLSv1.2 (PROTOCOL_TLSv1 will *only* give us TLS
v1.0)

In the client side, we try to disable SSLv2 and SSLv3 options
explicitely.

The python version in wheezy does not offer PROTOCOL_TLSv1_2 nor
OP_NO_SSLv2 or OP_NO_SSLv3 (It's new in 2.7.9)





Although the API can be misleading, PROTOCOL_SSLv23 selects the highest
protocol version that both the client and server support. Despite the
name, this option can select “TLS” protocols as well as “SSL”.

In this way, we can use TLSv1.2 (PROTOCOL_TLSv1 will *only* give us TLS
v1.0)

In the client side, we try to disable SSLv2 and SSLv3 options
explicitely.

The python version in wheezy does not offer PROTOCOL_TLSv1_2 nor
OP_NO_SSLv2 or OP_NO_SSLv3 (It's new in 2.7.9)