| Rev |
Age |
Author |
Path |
Log message |
Diff |
| 1373 |
2023-08-05 17:20:44 |
daniel-marschall |
/trunk/ |
COOKIE_DOMAIN baseconfig setting is highly recommend to '' to avoid bricking the login |
|
| 1344 |
2023-07-29 19:23:06 |
daniel-marschall |
/trunk/ |
Cookie Path/Domain now respects HTTP_X_FORWARDED_HOST (however, Cookie Path is "/" in that case, because the server cannot know the relative path being behind the proxy) |
|
| 1340 |
2023-07-27 23:58:51 |
daniel-marschall |
/trunk/includes/classes/ |
Made sure that Cookies are placed for the system directory and not for root '/', since there could be problems if there is already a directory-cookie overwriting the new root-cookie |
|
| 1130 |
2023-03-26 00:38:14 |
daniel-marschall |
/trunk/ |
Another large bunch of type-safety changes |
|
| 1116 |
2023-03-23 23:09:25 |
daniel-marschall |
/trunk/ |
BIG CHANGE: All methods have received a PHPdoc comment and a lot of parameter and return types have been added (as far as PHP 7.0 allows)
!!! PLEASE NOTE THAT THE NEW VERSION OF OIDPLUS IS NOT COMPATIBLE WITH OLD THIRD PARTY PLUGINS (EXCEPT THE ONES THAT ARE BUNDLED WITH OIDPLUS)
!!! IF YOU HAVE THIRD PARTY PLUGINS INSTALLED (OR WRITTEN YOURSELF), THEN YOU *WILL* RECEIVE ERROR MESSAGES AFTER THE UPDATE
!!! AND NEED TO CHANGE THE METHOD SIGNATURES IN THESE PLUGINS TO MAKE THEM WORK AGAIN. (We can help you with this task if you need help!)
Please note that due to the amount of changes, there could have been a few bugs introduced; please send all bug reports via GitHub or email
and if you have the possibility, it is recommended to test the version of a test system before applying the update on a productive system.
Thank you very much! |
|
| 1086 |
2023-02-26 01:12:29 |
daniel-marschall |
/trunk/ |
Avoid calling *.class.php files directly to avoid PHP errors (Github Issue #4) |
|
| 1050 |
2022-12-21 01:13:04 |
daniel-marschall |
/trunk/ |
Huge change in internal code structure!
All OIDplus classes are now in the class namespace "ViaThinkSoft\OIDplus".
!!! WARNING:
!!! All plugins MUST put their classes in a namespace and the constant "INSIDE_OIDPLUS" must not be used anymore.
!!! If you have a third-party plugin installed which is NOT bundled with OIDplus, you MUST update it.
!!! Recommendation: Remove the plugin first, then update OIDplus, then ask the author to change the plugin.
!!! If you have not installed any third-party plugins, then it is safe to update now. |
|
| 974 |
2022-10-01 20:21:07 |
daniel-marschall |
/trunk/ |
Fix bug where HTTP was not possible after a HTTPS call (Chrome blocks secure CSRF cookie overwrite). HTTPS is now enforced if the page was previously loaded using HTTPS |
|
| 847 |
2022-05-27 20:36:06 |
daniel-marschall |
/trunk/includes/ |
BUGFIX: No login sessions could be created using PHP 7.0 (Bug introduced in SVN Rev 711) |
|
| 816 |
2022-04-05 16:29:54 |
daniel-marschall |
/trunk/includes/classes/ |
|
|
| 812 |
2022-04-05 00:11:59 |
daniel-marschall |
/trunk/ |
Added baseconfig settings COOKIE_DOMAIN and COOKIE_PATH |
|
| 811 |
2022-04-04 21:58:34 |
daniel-marschall |
/trunk/ |
Fixed out-of-the-box bug that prevented redirection to setup/ if userdata/baseconfig/config.inc.php was missing |
|
| 808 |
2022-03-25 21:11:34 |
daniel-marschall |
/trunk/ |
Fixed problem with cookie.path in combination with reverse-proxy |
|
| 806 |
2022-03-25 00:56:45 |
daniel-marschall |
/trunk/ |
Base-config setting EXPLICIT_ABSOLUTE_SYSTEM_URL has been removed. Its functionality has now been merged with the setting CANONICAL_SYSTEM_URL. Use this instead. |
|
| 801 |
2022-03-24 16:15:23 |
daniel-marschall |
/trunk/ |
Changed OIDplus::webpath() method to include canonical paths |
|
| 799 |
2022-03-22 14:43:26 |
daniel-marschall |
/trunk/ |
Fixed issue with OAuth/PHPSessions not working. Bug introduced in svn-778 (13 march 2022) due to the change of the webpath(...,false) behavior. |
|
| 730 |
2022-01-23 22:10:52 |
daniel-marschall |
/trunk/ |
"ImplementsFeature" is now available for all PHP classes of OIDplus, not just Plugin classes.
Therefore, OID-WHOIS can now also receive WHOIS attributes from Objects (not just the Object Plugin) or the OIDplusRA class. |
|
| 580 |
2021-05-17 19:23:50 |
daniel-marschall |
/trunk/ |
Cookies now get the "secure" flag if OIDplus is visited from HTTPS connection |
|
| 564 |
2021-05-10 20:46:59 |
daniel-marschall |
/trunk/ |
Proper fix for the CSRF Token issue with OAuth (BUG#0000213) |
|
| 557 |
2021-04-25 22:06:14 |
daniel-marschall |
/trunk/ |
Cookie SAMESITE policy can now be configured in the base configuration file.
New clas "OIDplusCookieUtils".
In shebang, using "env php" instead of "/usr/bin/php". |
|