summaryrefslogtreecommitdiff
path: root/inc/auth.php
Commit message (Collapse)AuthorAge
* introduced http_status() for sending HTTP status code FS#1698Andreas Gohr2013-02-16
| | | | | | | It seems, some servers require a special Status: header for sending the HTTP status code from PHP (F)CGI to the server. This patch introduces a new function (adopted from CodeIgniter) for simplifying the status handling.
* Merge branch 'master' into futureAndreas Gohr2013-02-03
|\ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * master: (162 commits) fixed revision JS for images upgraded SimplePie to 1.3.1 FS#2708 removed obsolete browser plugin (migrate does it) adjust spacing to match standard 1.4em grid added comment on use of whitelist vs blacklist Updated idfilter() function for IIS use var and remove suggestions when needed Use variable for maximum number of suggestions for quicksearch. And hide suggestions when search field is emptied, or when no suggestion are found. added 'home' class to first link in hierarchical breadcrumbs reduced required max width to go into tablet mode re-added linear gradients for firefox added missing styling for disabled form elements (FS#2705) fixed acronyms in italics (FS#2684) improved print styles (includes fixes for FS#2645 and FS#2707) basic styles improvements Greek language update Use list in acl help text, for more structure Galician language update touch the config on save, even if no changes were made unwind the width narrowing commit put some whitespace between form submit button and fieldset bottom border ... Conflicts: lib/plugins/config/admin.php lib/plugins/config/settings/config.class.php
| * Merge branch 'subscription' Pull Request #125Andreas Gohr2013-01-26
| |\ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * subscription: (25 commits) link directly to subscription management in mails only use mailfromnobody for bulk mails added missing context for list mails readded mailfromnobody to subscription sending correctly escape diffs in HTML mails fixed lists in HTML mails simplified subscription->add() code a bit comment adjusted removed unused vars removed data parameter in subscription_handle_post() fixed tests some reformatting added compatibility function moved registration notification to subscription class fixed merge error in inc/auth.php consolidate more notification code in subscription class minor cleanup initialize new subscriptions with current time fixed subscription management correctly check if subscriptions are enabled ...
| | * moved registration notification to subscription classAndreas Gohr2012-11-30
| | |
| | * fixed merge error in inc/auth.phpAndreas Gohr2012-11-30
| | | | | | | | | | | | merged the wrong change here
| | * Merge branch 'master' into subscriptionAndreas Gohr2012-11-30
| | |\ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * master: (175 commits) some coding style improvements added .idea project folder to gitignore use correct setUp method and parent calls. Correct German plugin manager translation (download != install) correct return in sendDigest() Fix case-insensitive match in ACL checking GeSHi update to 1.0.8.11 ignore empty header on mail sending remove empty BCC/CC mail headers Galician language update some welcome page changes Combine subsequent calls to strtr into a single transformation changed semicolon to colon in link to welcome page to make it less confusing fixed wrong sidebar showing in namespaces when sidebar is disabled Typo fix for TL;DR removed a bunch of outdated and irrelevant networking acronyms added another place to look for logo to make it more consistent (FS#2656) French language update Czech language update compat js findPosX/y more closely mimic historical function ... Conflicts: inc/auth.php inc/common.php inc/subscription.php lib/exe/indexer.php
| | * | consolidate more notification code in subscription classAndreas Gohr2012-09-21
| | | | | | | | | | | | | | | | This is untested and probably broken currently
| * | | Made auth_aclcheck always return intGuillaume Turri2013-01-06
| | |/ | |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The returned type is important in particular when we deal with xmlrpc. Indeed, this value is directly returned to the client eg when the wiki.getAllPages method is queried. Currently the 'perms' attribute may be either an int or a string, and its up to the xmlrpc client to resolve it (although Dokuwiki's documentation only tells it can be an int). This patch makes sure we'll always return perms as int.
| * | Fix case-insensitive match in ACL checkingKazutaka Miyasaka2012-11-25
| | | | | | | | | | | | | | | | | | | | | ACL checking of DokuWiki is currently always case-sensitive regardless of auth backend setting ($auth->isCaseSensitive). This commit enables case-insensitive match in the same way of auth_isMember().
* | | Merge branch 'master' into futureAndreas Gohr2012-11-04
|\| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * master: (45 commits) TarLib code cleanup TarLib: fixed appending in non-dynamic mode fixed third method of adding files in TarLib fix lone zero block in TarLib created archives fix use of constructor in TarLib Slovak language update Korean language update Latvian language update removed redundant variables in tpl_include_page() (because of 3ff8773b) added cut off points for mobile devices as parameters to style.ini Corrected typo: ruke -> rule Persian language update Spanish language update russian language update Kazach language update correctly check hash parameter in media dispatcher FS#2648 avoid broken browser_uid on IE Removed acronyms for "Perl" and "PERL" as Perl is not an acronym. See http://learn.perl.org/faq/perlfaq1.html#Whats-the-difference-between-perl-and-Perl- Made striplangs.php executable release preparations ...
| * | avoid broken browser_uid on IEAndreas Gohr2012-10-18
| | | | | | | | | | | | | | | | | | | | | Internet Explorer 8 (and maybe others) seem to use different capitalization in the ACCEPT_CHARSET header between "normal" requests and AJAX requests. This causes a browser UID mismatch and thus an unecessary reauthentication.
* | | changed default auth to authplainAndreas Gohr2012-10-06
| | | | | | | | | | | | | | | | | | We need to decide how to handle the renaming of the auth classes. Should this be done automatically somehow? Or is an admin expected to fix this manually when updating?
* | | Merge remote-tracking branch 'janschumann/master' into futureAndreas Gohr2012-10-06
|\ \ \ | |/ / |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This merge fixes all conflicts but is otherwise untested and might break funktionality in the auth system somewhere. It NEEDS MAJOR TESTING! Some refactoring of the auth plugins is still needed: * move to PHP5 style * fix comments * add plugin.info.txt * janschumann/master: Refactored auth system: All auth methods are now introduced as plugins. Bugfix: auth types are now correcty added Setup auth system from plugins Added Auth-Plugin-Prototype to autoload Load auth types from plugins in settings_authtype class Added prototype for Auth-Plugins added plugin type 'auth' Conflicts: inc/auth.php inc/auth/pgsql.class.php inc/init.php inc/load.php lib/plugins/auth.php lib/plugins/authad/auth.php lib/plugins/authldap/auth.php lib/plugins/authmysql/auth.php lib/plugins/authplain/auth.php
| * | Refactored auth system: All auth methods are now introduced as plugins.Jan Schumann2012-02-20
| | |
| * | Setup auth system from pluginsJan Schumann2012-01-03
| | |
* | | Prevent access to undefined $auth variableMichael Hamann2012-08-24
| | |
* | | more $INPUT use FS#2577Andreas Gohr2012-08-24
| |/ |/|
* | fixed ACL loading after the recent changes/messupAndreas Gohr2012-06-30
| |
* | fixed group wildcards and added testsAndreas Gohr2012-06-30
| |
* | removed another occurance of the obsolete config optionAndreas Gohr2012-06-29
| |
* | simplified %GROUP% wildcard supportAndreas Gohr2012-06-29
| |
* | Merge branch 'master' of git://github.com/Aorimn/dokuwiki into pull-request-76Andreas Gohr2012-06-29
|\ \ | | | | | | | | | | | | | | | | | | | | | | | | * 'master' of git://github.com/Aorimn/dokuwiki: Change default groupwildcards option to 0 not to change behavior of Added support for the %GROUP% wildcard. Conflicts: inc/auth.php
| * | Added support for the %GROUP% wildcard.romain2012-01-30
| |/ | | | | | | | | | | %GROUP% is the same as %USER% except it's done on each group a user is in. %USER% and %GROUP% cannot be mixed on an ACL line.
* | some code cleanup and php docsAndreas Gohr2012-06-25
| |
* | Input wrapper for auth.phpAndreas Gohr2012-06-24
| |
* | code cleanupAndreas Gohr2012-06-24
| |
* | Merge branch 'master' into htmlmailAndreas Gohr2012-04-15
|\ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * master: (382 commits) Romanian language update Marathi language update Arabic Language Update when there's not enough space for images, make sure they stay proportional (might be FS#2480) added minimal RTL print styles (part of FS#2185) moved plugins' rtl.css to their style.css counterpart (part of FS#2185) removed all browser-specific gradients as the recently (in 42ff6730) introduced svg makes them unnecessary removed comments from accidentally commented lines in tpl_includeFile() removed obsolete template file added tpl_includeFile() to core Make getTitle method in remote interface public Changed an error code in XML-RPC interface. This error hasn't anything to do with the rest of the -32600 errors. BG: language update Korean language update fixed performance issues with gradient in Firefox (which also added gradient support for IE9) (FS#2447) deleted very old (and unused) images added accidentally removed '<?php' back in (was in 57fc5edd) wrapped X-UA-Compatible meta tag with conditional comments added explanation to todo in _forms.css removed problematic 'overflow: hidden' from lists again ('unfixes' FS#1950) ... Conflicts: inc/auth.php inc/load.php
| * \ Merge branch 'master' of https://github.com/dom-mel/dokuwiki into ↵Andreas Gohr2012-03-23
| |\ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | pull-request-87 * 'master' of https://github.com/dom-mel/dokuwiki: (38 commits) removed requires, changed conf check in xmlrpc.php removed require_once for autoloaded fulltext.php updated comment added dokuwiki.getXMLRPCAPIVersion and wiki.getRPCVersionSupported added RPC_CALL_ADD event. replaced $HTTP_RAW_POST_DATA with http_get_raw_post_data function changed error code for unauthorized method calls. typo fixes moved plugin and core method calls to seperate function corrected comment added getapi methods to remote plugin removed unused class fixed testcase refactored RemoteAccessDenied to RemoteAccessDeniedException adjusted test cases delegate file and date transformation to remote library treat null as empty array added missing getTime added missing getVersion set login as public method ...
| | * \ Merge branch 'master' of https://github.com/splitbrain/dokuwikiDominik Eckelmann2012-03-14
| | |\ \ | | | | | | | | | | | | | | | | | | | | Conflicts: lib/exe/xmlrpc.php
| | * \ \ Merge branch 'master' of github.com:dom-mel/dokuwikiDominik Eckelmann2011-11-19
| | |\ \ \ | | | | |/ | | | |/|
| | * | | use correct phpdoc @return tag.Dominik Eckelmann2011-10-22
| | | | |
| * | | | coding style updatesAndreas Gohr2012-03-16
| | |_|/ | |/| |
| * | | Merge branch 'resetpassword'Andreas Gohr2012-03-10
| |\ \ \ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | No longer autogenerate passwords for password reset when $conf['autopasswd'] is disabled. Instead allow to change the password online. * resetpassword: added a timelimit for password reset tokens removed commented line use correct lang string for password mismatch removed outdated language string. it has to be retranslated German translation for password reset honor autopasswd setting for resend password Conflicts: inc/lang/no/lang.php inc/lang/sl/lang.php
| | * | | added a timelimit for password reset tokensAndreas Gohr2012-02-19
| | | | | | | | | | | | | | | | | | | | | | | | | passwords now need to be reset within 3 days of requesting the password change mail
| | * | | use correct lang string for password mismatchAndreas Gohr2012-02-17
| | | | |
| | * | | honor autopasswd setting for resend passwordAndreas Gohr2011-10-31
| | |/ / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | When autopasswd is disabled, the resend password option now asks for a new password instead of autogenerating a new one and sending it by mail. Note to translators: the wording for btn_resendpwd and resendpwd changed to be more universal. English and German language files where updated - other languages need to be adjusted. Conflicts: inc/lang/en/lang.php
| * | / use in_array to filter groups instead of preg_grep for aclDominik Eckelmann2011-12-20
| | |/ | |/| | | | | | | | | | the usage of preg_grep can result in "regular expression is too large" warnings, which leads to errors in auth_aclcheck.
| * | Use mailprefix also for registration and resend password notification mails ↵lupo492011-11-12
| |/ | | | | | | (FS#2366)
* / Replaced mail_send calls with new Mailer classAndreas Gohr2011-11-12
|/
* Merge pull request #19 from gbirke/masterDominik Eckelmann2011-08-18
|\ | | | | Make cookie path configurable
| * If cookiedir is configured, use it.Gabriel Birke2011-01-02
| | | | | | | | If $conf['cookiedir'] is set, use this setting instead of DOKU_REL.
* | stay logged in when updating your passwordAndreas Gohr2011-04-11
| | | | | | | | | | | | This functionality broke in recent updates to the cookie handling. This patch makes it work again. Binding to the session is now a functionality of auth_cookiesalt()
* | bind non-sticky logins to the session id FS#2202Andreas Gohr2011-03-19
| |
* | store session pass as hashAndreas Gohr2011-03-19
| | | | | | | | | | This avoids having the blowfish encrypted pass stored together with the decryption key on the same server.
* | improved actionOK and its useAnika Henke2011-02-22
| |
* | refactored passowrd hashing functions to a classAndreas Gohr2011-01-22
| | | | | | | | | | | | | | | | | | | | | | | | this splits the long auth_cryptPassword() function into many member functions of a new class PassHash which should make it more maintainable and reusable for other projects. This also adds two new methods djangomd5 and djangosha1 as used by the popular python framework Django. Maybe the auth_cryptPassword() and auth_verifyPassword() functions should be deprecated in favor of using the class directly?
* | Handle renamed authorization variablesMichael Hamann2011-01-15
| | | | | | | | | | | | | | | | Sometimes (when using rewriting with the workaround for CGI mode described at http://www.besthostratings.com/articles/http-auth-php-cgi.html) the HTTP_AUTHORIZATION variable is renamed, this change detects this renaming and uses the renamed variable.
* | Added support for Wordpress' password hashing FS#2134Andreas Gohr2011-01-15
| |
* | Merge branch 'master' of github.com:splitbrain/dokuwikiAdrian Lang2011-01-14
|\ \
| * | Fix handling of case in auth_isMember; add and fix test casesAdrian Lang2010-12-21
| |/
generated by cgit v1.2.3 (git 2.25.1) at 2024-05-23 03:53:55 +0000