946db58d3e
EAP errors now correctly displayed in Event Viewer
2017-01-31 12:37:19 +01:00
0b4e4571b6
WideCharToMultiByte() and MultiByteToWideChar() optimization
2016-11-07 13:53:17 +01:00
271e062be2
Auditing of CryptProtectData() enabled
2016-11-07 11:06:33 +01:00
cebcf7506e
Redundant std::string to const char* conversion in exception constructors cleaned
2016-11-04 14:50:12 +01:00
ff2871f126
WIN1250 >> UTF-8
2016-11-01 07:02:45 +01:00
4bbc752995
Discrete output of credentials to event log centralized
...
# Conflicts:
# lib/EapHost/src/Credentials.cpp
# lib/EapHost/src/StdAfx.h
# lib/Events/res/EventsETW.man
2016-10-25 13:45:00 +02:00
1ccf97b6d7
ppResult >> pResult
2016-10-24 13:35:46 +02:00
76729d51cc
Code clean-up
2016-10-03 14:49:17 +02:00
c0b51f767c
ID 3. C style pointer casting from security audit fixed
2016-10-03 11:40:30 +02:00
b6adb2a850
Common members from config_method_with_cred moved to parent config_method
2016-09-29 11:23:22 +02:00
3983b0933e
Clean-up
2016-09-28 10:59:48 +02:00
832af1b633
Support for KPH password encryption added
2016-09-27 11:44:04 +02:00
27ea8802e0
<Password> element is stored encrypted now in profile configuration XML
...
(closes #18 )
2016-09-26 10:20:14 +02:00
79cc1af86f
Clean-up and XML handling enhancement:
...
- XML helper functions always return objects by winstd::com_obj or winstd::bstr reference now to ensure proper release by caller
- get_element_value()/put_element_value() can optionally return reference to the XML object if required
- WinStd macros to simplify dplhandle<> and handle<> inherited classes reused by non-copyable classes
2016-09-23 14:43:31 +02:00
0ab18017cd
Pre-shared >> Configured credentials, Own >> Stored credentials
2016-09-21 09:43:02 +02:00
641c9b6932
Credentials are no longer stored using method name (TLS/PAP/MSCHAPv2) but with level/type identifier
2016-09-06 15:39:41 +02:00
c765954c0f
"Last Authentication Failed" flag extended to support finer feedback, why last authentication failed
2016-09-06 14:10:02 +02:00
c9b192932b
MSCHAPv2 development continues...
2016-09-04 21:51:40 +02:00
4ffccaf6b4
Support for vendor-specific Diameter AVP added
2016-09-04 17:56:00 +02:00
0095ebbff6
Provider identity is now coherent to draft-winter-opsawg-eap-metadata-02
2016-09-02 19:24:47 +02:00
ac3ff2d3ca
Diameter AVP generation moved to method_noneap::append_avp()
2016-09-02 14:45:01 +02:00
7a3d4e0947
Common PAP and MSCHAPv2 code merged in intermediate base class method_noneap
2016-09-02 14:24:23 +02:00
198b9a576e
Maximum packet size parameter is now optional
2016-09-02 10:19:39 +02:00
844b185887
EAP packet classes organized in hierarchy now
2016-09-01 10:25:33 +02:00
98bd9f1935
Clean-up
2016-09-01 09:04:39 +02:00
6b2a71cc63
<UserName> is no longer created for empty identities
2016-09-01 05:55:39 +02:00
d9bfcc3e49
Credential identities are more carefully prepared for display now
2016-08-31 16:50:12 +02:00
60f1b4ccfb
Pre&post-processing of XML configuration introduced to allow draft-winter-opsawg-eap-metadata-02 compliant XML profiles on the outside, while maintaining internal simplicity
2016-08-31 16:33:19 +02:00
c9be6f4f7b
Support for multiple identity providers of draft-winter-opsawg-eap-metadata XML configuration added
2016-08-31 14:39:27 +02:00
452fa4b9dc
Inserting single-occurrence XML elements with children simplified
2016-08-31 09:48:11 +02:00
68aec5dfb4
Namespace name is static member now
2016-08-31 08:43:03 +02:00
510bbe10f6
Template for creating XML configuration simplified
2016-08-31 00:41:16 +02:00
5dfd079686
Support for multi-provider management added to GUI
2016-08-31 00:36:19 +02:00
858486412e
Confusion between provider ID and provider name resolved
2016-08-30 21:10:10 +02:00
a7c8052ee2
eap::method revised to support nesting, so the PAP method was made a stand-alone method
2016-08-29 20:05:58 +02:00
770b56e2cf
credentials::get_name() now distinguish between empty credentials and blank identity
2016-08-28 20:06:54 +02:00
8ce7154a77
Loading credentials from XML allows <UserName> absence and assumes blank identity in this case now
2016-08-28 15:46:30 +02:00
e1600e5aba
Configuration GUIDs are not required any more
...
This reverts commit 1cb6ca5adb4e8ec3389adc00f2c34dff11b99818.
2016-08-24 18:59:59 +02:00
d1c24efcf0
config_method_with_cred renamed to config_connection to describe it better
2016-08-24 11:39:37 +02:00
1cb6ca5adb
Connection configuration is equipped with GUID now for multiple credential prompt disambiguation later
2016-08-24 11:34:30 +02:00
6835f5279c
Certificate (TLS) credentials support custom identity now
2016-08-24 11:03:18 +02:00
a9baa07227
Error type detection fixed
2016-08-23 22:41:12 +02:00
7b3251a758
Error throwing clean-up
2016-08-23 17:20:04 +02:00
9b997408a1
Switched to Schannel to do the TLS
2016-08-23 13:53:23 +02:00
543dada025
Provider and method lists are arrays now, to allow random access for configuration dialog coming-up
2016-08-17 14:47:15 +02:00
df1d431bd0
- TLS revised (again)
...
- TLS Session resumption issues resolved
- Credential prompt has "Remember" checkbox initially selected when credentials originate from Windows Credential Manager
- Last authentication attempt failure notice is more general and no longer insinuate user credentials are the likely cause of the failure
- Additional log messages added
2016-08-17 11:50:34 +02:00
e9839706b6
TLS clean-up
2016-08-16 16:44:19 +02:00
d8ccf7cbc0
Credential management revised
2016-08-15 17:33:10 +02:00
e34d2ba275
Prefast declaration update
2016-08-15 15:10:42 +02:00
3d6849a523
Peer correctly returns providers configuration instead of method configuration in method_tls::get_result()
2016-08-15 14:13:14 +02:00
