oidplus
alarming
autosfx
aysalia
calllib
checksum-tools
colormanager
cryptochat
currency_converter
decoder
delphiutils
distributed
dpcstudio
dpg2
fastphp
fileformats
filter_foundry
forest
gridgame
ht46f47_simulator
indexer_suite
ipe_artfile_utils
javautils
jumper
lightgame
logviewer
musikbox
mystic_house
oidconverter
oidinfo_api
oidinfo_new_design
personal-webbase
php_antispam
php_clientchallenge
php_guestbook
php_utils
plumbers
prepend
recyclebinunit
simple_log_event
sokoban
spacemission
stackman
userdetect2
uuid_mac_utils
vgwhois
vnag
webcounter
winbugtracker
yt_downloader
BlueGrey
calm
Elegant
Català-Valencià – Catalan
中文 – Chinese (Simplified)
中文 – Chinese (Traditional)
Česky – Czech
Dansk – Danish
Nederlands – Dutch
English – English
Suomi – Finnish
Français – French
Deutsch – German
עברית – Hebrew
हिंदी – Hindi
Magyar – Hungarian
Bahasa Indonesia – Indonesian
Italiano – Italian
日本語 – Japanese
한국어 – Korean
Македонски – Macedonian
मराठी – Marathi
Norsk – Norwegian
Polski – Polish
Português – Portuguese
Português – Portuguese (Brazil)
Русский – Russian
Slovenčina – Slovak
Slovenščina – Slovenian
Español – Spanish
Svenska – Swedish
Türkçe – Turkish
Українська – Ukrainian
Oëzbekcha – Uzbek
Subversion Repositories
oidplus
oidplus
/
trunk
/
doc
/
developer_notes
/
server_secret.md
– Rev 1439
Rev
Show changed files
|
Details
|
Compare with Previous
|
Blame
|
RSS feed
Filtering Options
From rev
To rev
Max revs
Search history for
Show All
Rev
Age
Author
Path
Log message
Diff
1439
2023-12-02 22:51:21
daniel-marschall
/trunk/
Introduced support for PHP 8.3
oidplus.viathinksoft.com is now
www.oidplus.com
1322
2023-07-03 14:17:33
daniel-marschall
/trunk/doc/developer_notes/
1305
2023-06-18 16:17:39
daniel-marschall
/trunk/
Simplified web browser login: Regular "PHP Session login" was removed and replaced by JWT cookie login (previously known as "remember me").
If you had previously disabled JWT_ALLOW_LOGIN_USER or JWT_ALLOW_LOGIN_ADMIN, please enable them again.
JWT tokens now contain registered claims (OIDs).
1298
2023-05-30 00:06:43
daniel-marschall
/trunk/
Security Feature: JWT token can now be invalidated by changing the Server Secret (in the base configuration). The update invalidates all JWT once. You need to log-in again.
1283
2023-05-18 21:50:11
daniel-marschall
/trunk/
makeAuthKey and validateAuthKey can now be used to make temporary keys with limited lifetime.
makeAuthKey and makeSecret now accept array inputs
1282
2023-05-18 00:23:38
daniel-marschall
/trunk/
Plugins can no longer access the SERVER_SECRET base configuration settings through OIDplusBaseConfig. Instead, makeAuthKey and makeSecret must be used. The bundled plugins are already updated.
1207
2023-04-15 02:29:09
daniel-marschall
/trunk/
Documentation update