Rev |
Age |
Author |
Path |
Log message |
Diff |
1182 |
2023-04-08 19:02:11 |
daniel-marschall |
/trunk/ |
Introduced base configuration settings OFFLINE_MODE, as suggested by https://github.com/danielmarschall/oidplus/issues/5 |
|
1169 |
2023-04-06 02:14:30 |
daniel-marschall |
/trunk/ |
Removed limitations for OID max arc size and max depth |
|
1050 |
2022-12-21 01:13:04 |
daniel-marschall |
/trunk/ |
Huge change in internal code structure!
All OIDplus classes are now in the class namespace "ViaThinkSoft\OIDplus".
!!! WARNING:
!!! All plugins MUST put their classes in a namespace and the constant "INSIDE_OIDPLUS" must not be used anymore.
!!! If you have a third-party plugin installed which is NOT bundled with OIDplus, you MUST update it.
!!! Recommendation: Remove the plugin first, then update OIDplus, then ask the author to change the plugin.
!!! If you have not installed any third-party plugins, then it is safe to update now. |
|
1041 |
2022-12-09 20:32:43 |
daniel-marschall |
/trunk/ |
New base-config setting DEFAULT_LANGUAGE (possible values: enus, dede) |
|
1036 |
2022-11-27 00:54:59 |
daniel-marschall |
/trunk/ |
Server errors are now shown to the user instead of error message "SyntaxError: Unexpected token < in JSON at position 0" |
|
1027 |
2022-10-25 00:49:59 |
daniel-marschall |
/trunk/doc/ |
|
|
1016 |
2022-10-21 17:45:33 |
daniel-marschall |
/trunk/ |
Implemented reCAPTCHA V2 Invisible and reCAPTCHA V3 (score based) |
|
1001 |
2022-10-16 03:31:34 |
daniel-marschall |
/trunk/ |
New plugin: hCaptcha |
|
974 |
2022-10-01 20:21:07 |
daniel-marschall |
/trunk/ |
Fix bug where HTTP was not possible after a HTTPS call (Chrome blocks secure CSRF cookie overwrite). HTTPS is now enforced if the page was previously loaded using HTTPS |
|
844 |
2022-05-27 00:30:36 |
daniel-marschall |
/trunk/ |
New object type: Four-Character-Code (FourCC) |
|
814 |
2022-04-05 00:49:02 |
daniel-marschall |
/trunk/ |
PostgreSQL connection can now be established via socket |
|
813 |
2022-04-05 00:26:28 |
daniel-marschall |
/trunk/ |
MySQL connection can now be established via socket |
|
812 |
2022-04-05 00:11:59 |
daniel-marschall |
/trunk/ |
Added baseconfig settings COOKIE_DOMAIN and COOKIE_PATH |
|
807 |
2022-03-25 21:08:54 |
daniel-marschall |
/trunk/ |
Updated SVN-Snapshot (TAR.GZ) update procedure. It now also allows to update systems which are protected by htpasswd. |
|
806 |
2022-03-25 00:56:45 |
daniel-marschall |
/trunk/ |
Base-config setting EXPLICIT_ABSOLUTE_SYSTEM_URL has been removed. Its functionality has now been merged with the setting CANONICAL_SYSTEM_URL. Use this instead. |
|
786 |
2022-03-18 01:03:21 |
daniel-marschall |
/trunk/ |
NEW: Native OCI8 PHP plugin support for Oracle databases! |
|
778 |
2022-03-13 11:31:06 |
daniel-marschall |
/trunk/ |
- Plugins can now control the output of HTTP headers (especially the Content-Security-Policy header)
- Added baseconfig setting CANONICAL_SYSTEM_URL
- Fixed issue with relative paths (OIDplus::webpath(...,fase) over a proxy |
|
713 |
2021-12-26 21:41:08 |
daniel-marschall |
/trunk/ |
Fixed bug in OID-IP (OID WHOIS): Superior detection did not work for non-OIDs. Fixed. |
|
711 |
2021-12-26 18:33:19 |
daniel-marschall |
/trunk/ |
Auth keys (internally used for email verification etc.) now use HMAC instead of normal hash
Added new base config setting RA_PASSWORD_PEPPER_ALGO (dangerous! Only for experts!)
OIDplusSessionHandler.class.php: Improved internal encryption!
ATTENTION
!!! If you are updating from the TAR.GZ distibution channel, then the update *will* temporarily
!!! FAIL with the error message "Authentication failed". Once the error appears, close your
!!! browser window and delete the cookies, then log-in again, and continue the update process.
!!! (The error happens because of the update of the internal session encryption procedure) |
|
702 |
2021-12-26 00:26:02 |
daniel-marschall |
/trunk/ |
New plugin type: CAPTCHA plugins! |
|
625 |
2021-06-12 23:10:32 |
daniel-marschall |
/trunk/ |
LDAP: Added multi-domain support |
|
624 |
2021-06-11 16:23:10 |
daniel-marschall |
/trunk/ |
LDAP: The search for RA/Admin group membershop can now also include sub-groups |
|
623 |
2021-06-11 11:11:28 |
daniel-marschall |
/trunk/ |
LDAP: Removed feature LDAP_ADMIN_IS_OIDPLUS_ADMIN; instead introduced settings LDAP_ADMIN_GROUP and LDAP_RA_GROUP |
|
620 |
2021-06-10 16:16:05 |
daniel-marschall |
/trunk/ |
LDAP authentication plugin: The main authentication now works using UPN (userPrincipalName) instead of the mail address of the user. The control user is not required in the base configuration anymore, and there is no requirement in adding email addresses for the domain users. |
|
617 |
2021-06-02 00:03:52 |
daniel-marschall |
/trunk/ |
Added new high-security feature RA Password Pepper (use with extreme caution! Existing passwords will become invalid)
RA password generation: BCrypt "cost" parameter can now be configured. |
|
609 |
2021-05-29 23:09:04 |
daniel-marschall |
/trunk/ |
The administrator account can now have more than one valid password.
webwhois.php is now disabled if the WHOIS plugin is disabled |
|
585 |
2021-05-23 17:36:08 |
daniel-marschall |
/trunk/ |
Very large refactoring of login methods; JWT methods encapsulated
"Remember me" (JWT cookie) and regular logins (PHP session) cannot be mixed anymore (which didn't work anyway) |
|
583 |
2021-05-22 11:32:35 |
daniel-marschall |
/trunk/ |
Added JWT TTL (time to live) config value |
|
579 |
2021-05-17 17:51:20 |
daniel-marschall |
/trunk/ |
Login "remember me" feature (using JWT authentication) |
|
572 |
2021-05-15 21:50:39 |
daniel-marschall |
/trunk/ |
Added possibility to disable JWT token authentication in the base configuration |
|
570 |
2021-05-15 17:00:51 |
daniel-marschall |
/trunk/ |
Security: JWTs are now signed using RSA if OpenSSL is available.
Security: If not, then the key of JWT (which is the server secret) is processed via PBKDF2 |
|
566 |
2021-05-14 16:07:03 |
daniel-marschall |
/trunk/ |
Automated AJAX requests are now protected via a JWT, which is signed and doesn't contain the user's password anymore. The old method (username+password+antiBruteforceUnlockKey) is still accepted for backwards compatibility.
REMOVED: OIDplusSessionHandler->simulate
Created new class "OIDplusAuthContentStore" to make "OIDplusAuthUtils" more flexible |
|
557 |
2021-04-25 22:06:14 |
daniel-marschall |
/trunk/ |
Cookie SAMESITE policy can now be configured in the base configuration file.
New clas "OIDplusCookieUtils".
In shebang, using "env php" instead of "/usr/bin/php". |
|
502 |
2021-01-03 21:19:54 |
daniel-marschall |
/trunk/ |
Improved ODBC and PDO database plugins in order to support more database drivers.
EXPERIMENTAL: Support for Microsoft Access database
Small bugfixes
Improved database connectivity test cases |
|
482 |
2020-12-02 20:55:41 |
daniel-marschall |
/trunk/ |
New optional LDAP base config setting: LDAP_USER_FILTER |
|
471 |
2020-11-17 17:11:51 |
daniel-marschall |
/trunk/ |
Fixed several problems with designs in inverted color mode and dark-theme browser plugins |
|
470 |
2020-11-16 16:45:31 |
daniel-marschall |
/trunk/ |
Small things |
|
456 |
2020-10-27 01:23:03 |
daniel-marschall |
/trunk/ |
Security: Admin passwords can now be BCrypt instead of SHA3-512
Security: BCrypt is now the default auth method for newly created RAs |
|
436 |
2020-10-17 19:48:02 |
daniel-marschall |
/trunk/ |
NEW FEATURE: Facebook authentication |
|
432 |
2020-10-15 22:13:23 |
daniel-marschall |
/trunk/ |
NEW FEATURE: Google OAuth2 authentication |
|