2.3.15
	+ Fixed password change at user corner
	+ Change KDC port to 8880 to preserve the classic default for user corner
2.3.14
	+ Ignore the LDAP error 'no attributes to update' on save
	+ Instantiate users by uid and groups by gid
	+ Change kerberos ports from 88/464 to 8888/8464. This avoid conflicts
	  and management logic of the heimdal daemons. Kerberos records are added
	  with lower priority over samba ones.
	+ Respect the optionality of the 'salt' field inside the kerberos keys
	  in the 'setKerberosKeys' funcion of the User class.
	+ Do not remove service principals when samba is enabled/disabled. Samba
	  will import the keys
	+ Add method to set the user kerberos keys
	+ Stop samba daemon if module is disabled to ensure that port 88 is free
	+ Initialize kerberos realm in lowercase to match the host domain
	+ User template account default options not longer shown in slave servers
	+ Added users filter by OU
2.3.13
	+ Better password policies for LDAP backend
	+ Added user synchronization with Zentyal Cloud
	+ Removed deprecated conf keys (password hashes selection)
	+ Sync kerberos hashes on master-slave
	+ Resolve slave hostname during registering
	+ Fixed framework changes related regression getting redis keys directly
2.3.12
	+ Ask for the host domain in the wizard instead of the old mode selector
	+ Fixed user name validation
2.3.11
	+ Remove deprecated reference to AD Sync in wizard
	+ Check to make sure that quota has been really assigned logs an error
	  instead of raising an exeception, because some file systems does not
	  support quotas
	+ Adapt lastUid and lastGid to the new API and make them compatible
	  with multiple OUs
2.3.10
	+ Use DataForm::ReadOnly::_content instead of acquirers in LdapInfo
	+ Delete obsolete daemons and attributes regarding old replication
	+ Better error control in _loadACLDirectory
	+ Adapted to new Model management framework
	+ Adapted Password type to new framework
	+ Added NTP as enable dependency
2.3.9
	+ Heimdal Kerberos integration for SSO features
	+ Better validation of user names and groups names. Better message
	  when this validation fails
	+ Added user() and group methods() to EBox::UsersAndGroups
	+ Added quota limit check
	+ Added backup domain for /home
	+ Adapted ldapvi to changes in port
	+ Setup master method can now take a custom password
2.3.8
	+ Restart apache after changing master configuration
	+ Removed all files + code cleaning
	+ Disable user editing in slaves
2.3.7
	+ New modifications() method to allow retrieving modifications made to
	  the LDAP object in the last call to 'save'
	+ Create users without password and set it after that, needed for samba4
	+ Removed auth_type warnings
2.3.6
	+ Use the new unified tableBody.mas instead of tableBodyWithoutActions.mas
2.3.5
	+ Packaging fixes for precise
2.3.4
	+ Updated Standard-Versions to 3.9.2
2.3.3
	+ New master-slave architecture
	+ Image in initial configuration wizard is shown again
2.3.2
	+ Added printableName to service and modified description
	+ Fixed executable permissions in src/scripts
	+ Added checks for small business subscription
	+ Bugfix: lastGid method was calling MINUID and SYSMINUID
	+ Reload nscd before trying to init users and groups
2.3.1
	+ Use Digest::SHA instead of Digest::SHA1 and remove libdigest-sha1-perl
	  dependency which no longer exists on precise
2.3
	+ Commented unused code in cleanUser method
	+ Replaced autotools with zbuildtools
2.2.5
	+ Bugfix: ad-sync can now populate groups with more than 1500 users
	+ Bugfix: do not allow adsync passwords longer than 16 chars to avoid
	  crash in pwdsync-server that keeps respawning
	+ Bugfix: mark apache as changed in enableActions to avoid problems adding
	  users before the new nsswitch conf is available for apache, also do not
	  allow to add users if module is not really enabled after save changes
	+ Make sure the default DN does not contains invalid characters
	+ Do not allow malformed LDAP DNs in Mode
2.2.4
	+ Make LDAP ready after enableActions restarting the service to
	  avoid problems when adding users or groups
	+ Fixed corruption when adding ldap attributes
	+ Also disable apparmor in ad-sync mode
	+ Renamed default adsync username from eboxadsync to adsyncuser
2.2.3
	+ Adapt pwdsync user and password offsets to the new hook implementation
	+ Always ignore ForeignSecurityPrincipals accounts in ad-sync
	+ Added more debug messages and improved existing ones in ad-sync
	+ Avoid warnings trying to get userPrincipalName in ad-sync
	+ Skip machine accounts in ad-sync
	+ Use paged queries in ad-sync
	+ Allow to specify custom DN to bind to Windows Server in ad-sync
	+ Ingore empty users in ad-sync
2.2.2
	+ Fixed validation of secret key length in ADSync Options model
	+ Removed useless validation of AD username in ADSync Options model
	+ Show different error when adding users from Windows with invalid chars
	+ Fixed bug managing slapd on ad-sync
2.2.1
	+ Do not enable ADSync to avoid launching daemon before configuration
	+ Also manage slapd daemon on ad-sync setups
	+ Avoid slave connection to incompatible masters
	+ Added quota change form on slaves
	+ Allowed '\' character in ad-sync username
2.1.14
	+ Fixed regression in usercorner link
2.1.13
	+ Moved apache soap configuration from setConf to enableActions
	+ Init slave users on enable (now home directories are created)
	+ Create LDAP indexes during slave enable
2.1.12
	+ UsersAndGroups::lastUid() now takes also into account non-ldap users
	+ Stop old ldap daemons in reinstall script, needed before changing mode
2.1.11
	+ Use a safer mode() implementation to avoid recursions with ModelManager
2.1.10
	+ Start slapd daemon when a module fails to connect
	+ Help in wizard is show again if no custom_prefix defined
2.1.9
	+ Hide help with link in wizard if custom_prefix defined
	+ Removed /zentyal prefix from URLs
	+ Disable autocompletion in user form
	+ Avoid duplicated restart during postinst
2.1.8
	+ Include quota schema in slaves LDAP (fixes replication)
	+ Do not stop slapd daemons after slave enable
	+ Fixed users and groups retrieval if module is disabled
	+ Manage slapd daemon in master mode
	+ Make the optional 'comment' field to also appear as optional on the UI
	+ Ignore users also in pwdsync-server, not only in the ad-sync script
2.1.7
	+ Set submenu items order for integration with the User Corner menu
	+ Avoid undefined dn warning
2.1.6
	+ Fix adsync mode check for zentyal-users cronjob
	+ Removed bad default value for adsync_dn option
	+ Update wizard pages with new order option
	+ Use Unix socket for LDAP connections on standalone and slave without PAM
2.1.5
	+ Manage zentyal-users cronjob with configuration keys for sync times
	  instead of debian/lucid/zentyal-users.cron.d and src/scripts/ad-sync.cron
	+ Configuration key to not to create homes (usefull on LDAP master servers)
	+ New ad-sync-info to show info of ADsync configuration
	+ Allow multiple BDC for ADsync mode with adsync_bdc confkey
	+ Add ADsync service by default and move port value to a confkey
	+ userInfo() tolerates missing quota LDAP attribute
	+ Added captiveportal to the list of modules in the reinstall script
2.1.4
	+ Moved redis_port_usercorner key to usercorner.conf in zentyal-usercorner
	+ Move users/conf/user-eboxlog.conf to usercorner/conf/usercorner-log.conf
2.1.3
	+ Fixed issues with html html attributes quotation
	+ Allow to specify a base DN to bind to AD
	+ Add locking to slave-sync to avoid spawn multiple instances in the
	  event of not being able to connect to a slave
	+ Do not modify users and groups in AD sync if attributes are not changed
	+ Wipe ignored users in AD sync
	+ Allow contacts synchronization in AD sync
	+ New checks in AD sync to avoid warnings
	+ Added update package list command to reinstall script
2.1.2
	+ Non-editable user fields in slaves no longer appear as editable inputs
	+ Numeric 0 is accepted as value for LDAP users attributes
	+ Minor fixes in default quota from user template
	+ Fixed error when writing ad-sync cron file
	+ Do not allow to create users if their home directory already exists
2.1.1
	+ Quotas are now included in users module
	+ System users don't require password
	+ Fixed bug that allowed to create LDAP users whith the same name
	  than users with UID 0 (like root)
2.1
	+ Separate usercorner module to the new zentyal-usercorner package
	+ Remove zentyal- prefix from rejoin-slave and ldapvi scripts
	+ Move /usr/share/ebox-usersandgroups/ebox-usersandgroups/reinstall
	  to /usr/share/zentyal-users/reinstall
	+ Show enableActions for master also in ad-slave mode
	+ Deleted obsolete migrations and use new initialSetup method
	+ Added locks to prevent overlapping in ad-sync script
	+ Fix slave failed operation string on slave hostname
	+ Replace /etc/ebox/80users.conf with /etc/zentyal/users.conf
	+ Added indexes for common LDAP attributes
	+ Replace /var/log/ebox-usercorner with /var/log/zentyal-usercorner
2.0.10
	+ Now the AD synchronization can be disabled at any moment and a
	  server with AD-slave mode can be master for other Zentyal slaves
	+ New /etc/ebox/ad-sync_ignore.users and ad-sync_ignore.groups files
	  to ignore users and groups in the AD synchronization process
	+ Improved zentyal-ldapvi script that works on slave servers
	+ Creates the default group if not exists during restore
	+ Added restore backup precheck to assure there are not conflicts between
	  system users and Zentyal LDAP users (currently only works for masters)
2.0.9
	+ Make sure to create the base directory for user homes before create them
	+ Reconnect to LDAP on backup restore
	+ Better log messages
	+ Save configuration files during restore
	+ Catch possible SIGPIPE on LDAP reconnect
2.0.8
	+ Fix Samba PDC on slaves
	+ Check for incompatibility between Samba PDC and PAM on slaves
	+ Optimize slave-sync script if there are no pending operations
	+ Remove useless call to mode() on slave-sync script (faster now)
	+ Replica LDAP listens in all interfaces
2.0.7
	+ Added index add mechanism to LdapModule
	+ Fixed NSS DN config in masters
2.0.6
	+ Added zentyal-rejoin-slave to rejoin a slave to its master
	+ Fixed NSS/PAM in slave machines
2.0.5
	+ Removed wrong hooks implementation
2.0.4
	+ Fixed infinite recursion when setting up some models on slave servers
	+ Added support for addUser/delUser hooks
2.0.3
	+ Allow LDAP users and groups up to 128 characters
	+ Show precondition message for user corner on slave servers
	+ Unconfigure ftp and zarafa in reinstall script
	+ Do not show adsync debug messages if debug is disabled in config
	+ Allow more than one dot in usernames
2.0.2
	+ Fixed master/slave synchronization issues
	+ Remove userjournal dir when removing a slave
	+ Added lock during module enable to avoid initialization problems
	+ Fixed AD slave synchronization task
2.0.1
	+ Fixed incorrect LDAP binding in some cases
2.0
	+ Fixed user journal dir creation on master
	+ Fixed failed login error on user corner
	+ Default login_shell under PAM Settings UI instead of 80users.conf
	+ Replaced /bin/false with /usr/sbin/nologin as default shell
1.5.10
	+ Some refactorizations centered in safer LDAP connections and defensive
	  code
1.5.9
	+ More info link added in wizard
1.5.8
	+ Zentyal rebrand
1.5.7
	+ Removed NSS in slave configurations
	+ Nasty bug page replaced by the new eBox error page
1.5.6
	+ Fixed user corner access problems with redis server
1.5.5
	+ LDAP master creation optimized and less error-prone
1.5.4
	+ Bug fix: adding a user name with spaces no longer fails
1.5.3
	+ Move NSS from ebox-samba to ebox-usersandgroups
	+ Home directories are under /home now
	+ New options to configure shell and home directory umask
	+ New setup wizard
1.5.2
	+ Bug fix: fixed dbus init for usercorner
1.5.1
	+ Bug fix: fixed nasty bug with the last version of openldap in lucid
	+ Bug fix: do not call processDir if there are no slaves in slave-sync
	+ Bug fix: ebox-usersandgroups-reinstall now unconfigures all ldap modules
	+ Bug fix: updateSchema() returns unless the schema to update is
	  available
	+ Bug fix: Set proper owner and permissions when updating a schema
	+ Bug fix: some problems with the AD synchronization solved
	+ Bug fix: userscorner title icon
	+ Bug fix: addUser() now checks if the user already exists as a
	  system user
	+ Removed deprecated executable 'import-from-ldif'
	+ Bug fix: addUser() now checks for password argument
	+ Bug fix: when restoring we use the new users DN to init users
1.5
	+ Bug fix: don't try to contact slaves from within a slave when groups
	  are updated
	+ Use built-in EBox::ThirdParty::Apache2::AuthCookie
1.4.2
	+ Bug fix: fix wrong migration number
1.4.1
	+ Bug fix: surround LDAP migration with a try/catch to make sure the rest
	  it is run
	+ Bug fix: do not allow \w with localized characters as LDAP schema does not
	  allow them for home directory attribute. (Closes #1713)
1.4
	+ Allow the master to pass extra parameters in SOAP calls to slaves
1.3.17
	+ Bug fix: Set style for login page in user corner
1.3.16
	+ Bug fix: keep menu open on LDAP Info
1.3.15
	+ Add support for ldaps
	+ Add support for slaves running Apache in ports different than 443
	+ Allow to remove slaves from slave list
	+ Added ebox-usersandgroups-reinstall to easily reset the LDAP mode
	+ Bug fix: issue with user deletion in French (Closes #1651)
	+ Bug fix: anonymous connection for getting DN is retried several
	  times, this fixes a bug when restoring configuration backup
1.3.14
	+ Synchronize all the users from the AD and not only from CN=Users
	+ Add operation name and username on updateGroup
	+ Add slave notification for group modify and delete
	+ Change button order to "Add" and "Add and Edit" in Add User
	  template. If users press return in the form it adds a new user
	  and stays on the same page.
1.3.13
	+ Usability enhancements: (Closes #1649)
		* Create a unique Users And Group Folder
		* Unify Add User/Edit User in a single page
		* Unify Add Group/Edit Group in a single page
		* Two buttons: "Add and Edit" and "Add"
		* Add breadcrumbs
	+ Add UserTemplate composite to configure default options that are used when
	  a new user is created
	+ Add defaultUserModel to LdapUserBase.pm
	+ Specify folder for SlaveInfo
	+ Add menu entry with information about LDAP including password
	+ Change enableActions to use the new LDAP default structure from Karmic
1.3.12
	+ Add EBox::Ldap::lastModificationTime to know when the master LDAP
	  database was modified for the last time
	+ Index uid and memberUid to avoid some warnings and improve performance,
	  plus remove some old code and fix some broken one in that part of the code
	+ Bugfix: disable edition of users and groups in ad-slave mode
	+ Don't allow modification of ldap password in Mode model if
	  it has been autogenerated by the eBox installer
	+ Add page title
	+ Separate the Windows AD options in a different model
	+ Fixed the warning of "Edit User" when there are no users in a slave
	+ Remove 'optional' from remote in Mode and also useless validateRow
1.3.10
	+ Use disableApparmorProfile from EBox::Module::Service twice.
	  First in enableActions. And also in setConf to avoid issues
	  if apparmor is installed after users is enabled.
1.3.9
	+ Bugfix: return empty array in usedFiles if it's not master mode
1.3.8
	+ Bugfix: fixed wrong disable of fields in selecting ad-slave in Mode model
1.3.7
	+ Synchronization with Windows Active Directory (#1443)
1.3.6
	+ Use anonymous bind to fetch dn
1.3.5
	+ Disable slapd apparmor profile in enableActions
	+ Reload nscd when adding users and groups
	+ Bugfix: backup bug report now works again
	+ Bugfix: slave-sync does not try to real journal dir when not
	  configured or in slave mode. Journal dir created on
	  master's setup.
1.3.0
	+ eBox LDAP architecture now supports a master-slave configuration
	+ bugfix: Update usercorner service when there is a change on the port number
1.1.30
	+ Added widget to manage group belonging from Edit User page
	+ Fixed backup/restore problem with paswords and given/last names
	+ Changed the way users are stored in LDAP, added givenName in addition
	  to sn, now cn=givenName+sn instead of cn=uid, this fixes a
	  incompatibility bug with eGroupware
	+ In the Edit User interface now Name and Last name are separate
	fields
	+ Usercorner web server certificate can be changed via the CA module
1.1.20
	+ New release
1.1.10
	+ Make slapd listen only on 127.0.0.1
1.1
	+ Added bind v2 compability needed by squid auth, slapd conf
	  regenerated and daemon restarted in postinst to commit possibles
	  changes in configuration
	+ Added group model
	+ Use the new ids() and row() API to optimize the management of hundreds of
	users
	+ Allow dashes in user and group names
	+ Initial release of UserCorner which allow users to change their password
	+ Store multiple password hashes and scrap clear text passwords
0.12.100
	+ Restore backup is more robust: inexistent users in a group are
	  ignored
	+ Make and restore backup more robust: removed slapd.conf
	  parameters in both slapadd and slapcat invokations, so we can use
	  the module with sldap with configuration in the directory itself
0.12.99
	+ New release
0.12.1
	+ Bugfix: Remove eBox system users when restoring backup. This solves
	  an issue restoring backups from 0.12
0.12
	+ Use the new EBox::Model::Row api
	+ Check if there is any added user and show a message
	  in case there isn't any.
	+ Restore users reading from ldiff and adding them through
	  eBox API
	+ Set password-hash in slapd.conf to make password changes from samba sync
	  the user password
0.11.101
	+ New release
0.11.100
	+ onInstall() functionality moved to migration script
	+ Fixed several typos
0.11.99
	+ Remove use of Apache::Singleton
0.11.3
	+ Check used uid's on every posixAccount object under dc=ebox,
	  instead of only under ou=Users,dc=ebox. This solves nasty issues
	  with Samba PDC when adding machines and creating users with
	  repeated uid
0.11.2
	+ Do not generate a new LDAP password if it already exists
0.11.1
	+ Fix issue with module naming which prevented backups from being
	restored
0.11
	+ Initial Ubuntu packaging
	+ bugfix. fix issue with module naming which prevented backups from being
	  restored
0.10.99
	+ Create pseudo-model to use the users table with Ajax
0.10
	+ Allow dots in user names
0.9.100
	+ New release
0.9.99
	+ Bugfix in EBox::Ldap
0.9.3
	+ New release
0.9.2
	+ New release
0.9.1
	+ Make OpenLDAP listen on internal interfaces
0.9
	+ Added Polish translation
	+ Added Aragonese translation
	+ Added Dutch translation
	+ Added German translation
0.8.99
	+ New release
0.8.1
	+ Minor workaround. Create slapd run directory in case it does not
	  exist
0.8
	+ Fix message
0.7.99
	+ Add extended backup support for LDAP
	+ Performance tuning to slapd
	+ Some minor code improvements
	+ Quota now allows unlimited space and i-nodes number
0.7.1
	+ Add delObjectclass (useful for ldap clean actions)
	+ Detect and recover when ldap connection is broken (#25)
	+ Make EBox::Ldap a singleton class
	+ Initial factoring
	+ Use of ebox-sudoers-friendly
0.7
	+ New public release
0.6
	+ Move to client
	+ API documented using naturaldocs
	+ Update install
	+ Update debian scripts
	+ Use new syntax to define ACLs for ldap
	+ Add function to create system users
	+ Move ldap db under ebox directory
0.5.2
	+ Fix some packaging issues
0.5.1
	+ Convert module to new menu system
0.5
	+ Initial release
