Subversion Repositories oidplus

Rev

Go to most recent revision | Show changed files | Details | Compare with Previous | Blame | RSS feed

Filtering Options

Rev Age Author Path Log message Diff
625 2021-06-12 23:10:32 daniel-marschall /trunk/ LDAP: Added multi-domain support  
624 2021-06-11 16:23:10 daniel-marschall /trunk/ LDAP: The search for RA/Admin group membershop can now also include sub-groups  
623 2021-06-11 11:11:28 daniel-marschall /trunk/ LDAP: Removed feature LDAP_ADMIN_IS_OIDPLUS_ADMIN; instead introduced settings LDAP_ADMIN_GROUP and LDAP_RA_GROUP  
620 2021-06-10 16:16:05 daniel-marschall /trunk/ LDAP authentication plugin: The main authentication now works using UPN (userPrincipalName) instead of the mail address of the user. The control user is not required in the base configuration anymore, and there is no requirement in adding email addresses for the domain users.  
617 2021-06-02 00:03:52 daniel-marschall /trunk/ Added new high-security feature RA Password Pepper (use with extreme caution! Existing passwords will become invalid)
RA password generation: BCrypt "cost" parameter can now be configured.		  
609 2021-05-29 23:09:04 daniel-marschall /trunk/ The administrator account can now have more than one valid password.
webwhois.php is now disabled if the WHOIS plugin is disabled		  
585 2021-05-23 17:36:08 daniel-marschall /trunk/ Very large refactoring of login methods; JWT methods encapsulated
"Remember me" (JWT cookie) and regular logins (PHP session) cannot be mixed anymore (which didn't work anyway)		  
583 2021-05-22 11:32:35 daniel-marschall /trunk/ Added JWT TTL (time to live) config value  
579 2021-05-17 17:51:20 daniel-marschall /trunk/ Login "remember me" feature (using JWT authentication)  
572 2021-05-15 21:50:39 daniel-marschall /trunk/ Added possibility to disable JWT token authentication in the base configuration  
570 2021-05-15 17:00:51 daniel-marschall /trunk/ Security: JWTs are now signed using RSA if OpenSSL is available.
Security: If not, then the key of JWT (which is the server secret) is processed via PBKDF2		  
566 2021-05-14 16:07:03 daniel-marschall /trunk/ Automated AJAX requests are now protected via a JWT, which is signed and doesn't contain the user's password anymore. The old method (username+password+antiBruteforceUnlockKey) is still accepted for backwards compatibility.
REMOVED: OIDplusSessionHandler->simulate
Created new class "OIDplusAuthContentStore" to make "OIDplusAuthUtils" more flexible		  
557 2021-04-25 22:06:14 daniel-marschall /trunk/ Cookie SAMESITE policy can now be configured in the base configuration file.
New clas "OIDplusCookieUtils".
In shebang, using "env php" instead of "/usr/bin/php".		  
502 2021-01-03 21:19:54 daniel-marschall /trunk/ Improved ODBC and PDO database plugins in order to support more database drivers.
EXPERIMENTAL: Support for Microsoft Access database
Small bugfixes
Improved database connectivity test cases		  
482 2020-12-02 20:55:41 daniel-marschall /trunk/ New optional LDAP base config setting: LDAP_USER_FILTER  
471 2020-11-17 17:11:51 daniel-marschall /trunk/ Fixed several problems with designs in inverted color mode and dark-theme browser plugins  
470 2020-11-16 16:45:31 daniel-marschall /trunk/ Small things  
456 2020-10-27 01:23:03 daniel-marschall /trunk/ Security: Admin passwords can now be BCrypt instead of SHA3-512
Security: BCrypt is now the default auth method for newly created RAs		  
436 2020-10-17 19:48:02 daniel-marschall /trunk/ NEW FEATURE: Facebook authentication  
432 2020-10-15 22:13:23 daniel-marschall /trunk/ NEW FEATURE: Google OAuth2 authentication  

←Prev12Next→

Show All