The change history, in order from newest to oldest.
- Added support for parsing of "long pairs" sent by Cisco ASR devices.
- Added support for attributes with comma-separated values. Currently this only applies to the JUNOS "user-permssions" attribute. This is a stop-gap fix as we prepare version 2.0!
- Improved debug logging slightly to help visualize return_pairs and modified a/v pairs using the "av_pairs" config option.
- Python 3 compatibility.
- NSS Group support. Add group
_nssto your default user to get NSS groups for users (Python 3 required).
- Bugfix in config parser to properly report when file can't be found.
- Option-parsing converted to use Python's optparse module.
- Usage docs cleaned up and only displayed when --docs flag is passed.
- LICENSE (GPLv3) file added to project root.
- Change history moved to CHANGELOG.rst.
- Wanted/desired features added to TODO.rst.
- Default log destination to
/dev/nullunless-lis passed.
- Replace manual file logging w/ use of Python's
loggingmodule.
- Catch exception on failed
config.read()for backwards-compat. w/ Python 2.4.
- Error out on no "default service = permit"
- Option to hard code return value (for Procurve)
- Better Nexus Support
- Only send roles to Nexus
- Better av_pair replacement
- Nexus support (av_pair format different)
- Fixed regression
- Added support for replacing A/V pairs.
Added support for other services besides service=shell (ie - they work, by they match on IP/Source only. If you have examples of pairs other than cmd to match on, please bring them to my attention)
- Fixed a mistake in the example. (Thanks to aojea.)
- CRS doesn't send $address when in conf t. Added -fix_crs_bug as as simple/stupid workaround.
Needs a default user. If most of your users have the same access, and you have a default access in tac_plus.conf, you need it here as well.
Did you know a firewall doesn't end it's commands with a <cr>?
Simple typo - a stray 's' botched a deny statement