* Bundle internal NETCONF on RESTCONF: A RESTCONF operation could produce several (up to four) internal NETCONF messages between RESTCONF server and backend. These have now been bundled into one.

* NACM recovery user session is now properly enforced. This means that if `CLICON_NACM_CREDENTIALS` is `except` (default), then a specific `CLICON_NACM_RECOVERY_USER` can make any edits and bypass NACM rules. * If a default value is replaced by an actual value, RESTCONF return values have changed from `204 No Content` to `201 Created` * clixon-config.yang: Removed default valude of CLICON_NACM_RECOVERY_USER
2020-08-11 14:46:53 +02:00 · 2020-08-11 14:46:53 +02:00 · dc1ad560f9
commit dc1ad560f9
parent de85f20415
12 changed files with 217 additions and 261 deletions
--- a/yang/clixon/clixon-config@2020-06-17.yang
+++ b/yang/clixon/clixon-config@2020-06-17.yang
@ -47,7 +47,8 @@ module clixon-config {
 	    "Added: CLICON_CLI_LINES_DEFAULT
             Added enum HIDE to CLICON_CLI_GENMODEL
             Added CLICON_SSL_SERVER_CERT, CLICON_SSL_SERVER_KEY, CLICON_SSL_CA_CERT
-             Added CLICON_NACM_DISABLED_ON_EMPTY";
+             Added CLICON_NACM_DISABLED_ON_EMPTY
+             Removed default valude of CLICON_NACM_RECOVERY_USER";
    }
    revision 2020-04-23 {
 	description
@ -708,7 +709,6 @@ module clixon-config {
 	}
        leaf CLICON_NACM_RECOVERY_USER {
 	    type string;
-	    default "_nacm_recovery";
 	    description
 		"RFC8341 defines a 'recovery session' as outside the scope. Clixon
                 defines this user as having special admin rights to exempt from