Subversion Repositories oidplus

Rev

Go to most recent revision | Show changed files | Details | Compare with Previous | Blame | RSS feed

Filtering Options

Rev Age Author Path Log message Diff
566 2021-05-14 16:07:03 daniel-marschall /trunk/ Automated AJAX requests are now protected via a JWT, which is signed and doesn't contain the user's password anymore. The old method (username+password+antiBruteforceUnlockKey) is still accepted for backwards compatibility.
REMOVED: OIDplusSessionHandler->simulate
Created new class "OIDplusAuthContentStore" to make "OIDplusAuthUtils" more flexible		  
563 2021-05-09 20:32:36 daniel-marschall /trunk/ OAuth plugins display warning if SameSite policy is "Strict". A different approach follows later. (BUG#0000213)  
557 2021-04-25 22:06:14 daniel-marschall /trunk/ Cookie SAMESITE policy can now be configured in the base configuration file.
New clas "OIDplusCookieUtils".
In shebang, using "env php" instead of "/usr/bin/php".		  
555 2021-04-23 17:28:56 daniel-marschall /trunk/ Cookie handling is now in function op_setcookie() instead setcookie().
Now using SameSite=Strict (experimental)		  
511 2021-01-18 01:13:07 daniel-marschall /trunk/ Security: Added "INSIDE_OIDPLUS" constant to include files to avoid generating error messages when an include file is accessed directly
Updated copyright notices to 2021		  
496 2020-12-12 20:29:51 daniel-marschall /trunk/ Large refactoring of path functions.
DEPRECATED: OIDplus::basePath() becomes OIDplus::localpath()
DEPRECATED: OIDplus::getSystemUrl(X) becomes OIDplus::webpath(null, X)
OIDplus::webpath(X) becomes OIDplus::webpath(X, true)		  
465 2020-11-13 13:43:58 daniel-marschall /trunk/ OIDplus can now also run without OpenSSL installed  
435 2020-10-17 19:47:26 daniel-marschall /trunk/includes/classes/ Resolve endless recursion when an IP address changed during an active session  
426 2020-10-03 18:19:34 daniel-marschall /trunk/  
424 2020-10-02 22:22:14 daniel-marschall /trunk/ New security feature: CSRF Tokens.
ATTENTION TO PLUGIN DEVELOPERS: You need to add "csrf_token:csrf_token" to your JavaScript's AJAX request fields!		  
360 2020-08-23 00:28:31 daniel-marschall /trunk/ LARGE UPDATE: Made everything multilingual; Translation to German!  
277 2020-04-25 02:27:11 daniel-marschall /trunk/ Introducing new plugin architecture (manifest.ini)  
263 2020-04-19 14:19:13 daniel-marschall /trunk/ Refactoring: Moved business logic out of the OIDplusConfig class. Validation functionalities of config keys are now implemented as callback to the prepareConfigKey function  
261 2020-04-18 16:38:21 daniel-marschall /trunk/ Large refactoring: "config.inc.php" is now in format 2.1; the configuration settings are now stored in a class OIDplusBaseConfis and can therefore be altered in automated test environments.
Characters "###" inside a query now get replaced by the table prefix.		  
250 2020-04-14 22:46:54 daniel-marschall /trunk/ Further improved object oriented design; added class diagram and database connectivity diagram for easier understanding  
230 2020-03-23 01:35:25 daniel-marschall /trunk/ OOP  
227 2020-03-20 22:27:50 daniel-marschall /trunk/ Various fixes and OOP changes  
179 2019-08-22 16:32:41 daniel-marschall /trunk/ Small fixes  
112 2019-05-17 21:27:53 daniel-marschall /trunk/  
87 2019-04-12 21:13:52 daniel-marschall /trunk/includes/classes/  

←Prev12Next→

Show All