Subversion Repositories oidplus

- Default language selection: Either always en-US, or automatical selection depending on browser language, or depending on admin setting (e.g. german companies offer a german repository by default)?

- Default language selection: Either always en-US, or automatical selection depending on browser language, or depending on admin setting (e.g. german companies offer a german repository by default)?

- BCrypt

- BCrypt

	Make #rounds and length of admin password configurable (pre-baseconfig?)

	Make #rounds and length of admin password configurable (pre-baseconfig?)

	Include dev/bcrypt_cost_calculator somewhere in the configuration page?

	Include dev/bcrypt_cost_calculator somewhere in the configuration page?

	... At least give a hint to the documentation, so they know how to run the tool and how to enter the cost in the configuration (for RA and Admin)

	... At least give a hint to the documentation, so they know how to run the tool and how to enter the cost in the configuration (for RA and Admin)

SECURITY Improvements:

SECURITY Improvements:

- Small security issue: A visitor can check which plugins are installed by either entering a "goto" command (e.g. "oidplus:vnag_version_check")

- Small security issue: A visitor can check which plugins are installed by either entering a "goto" command (e.g. "oidplus:vnag_version_check")

  and see which error message appears, or they could try to enter "plugin/adminPages/..." using the web browser and see if the result is HTTP 200 or HTTP 404.

  and see which error message appears, or they could try to enter "plugin/adminPages/..." using the web browser and see if the result is HTTP 200 or HTTP 404.