Subversion Repositories oidplus

Rev

Go to most recent revision | Show changed files | Details | Compare with Previous | Blame | RSS feed

Filtering Options

Rev Age Author Path Log message Diff
566 2021-05-14 16:07:03 daniel-marschall /trunk/ Automated AJAX requests are now protected via a JWT, which is signed and doesn't contain the user's password anymore. The old method (username+password+antiBruteforceUnlockKey) is still accepted for backwards compatibility.
REMOVED: OIDplusSessionHandler->simulate
Created new class "OIDplusAuthContentStore" to make "OIDplusAuthUtils" more flexible		  
565 2021-05-13 22:08:23 daniel-marschall /trunk/plugins/ Security: Google OAuth Security Token (JWT) is now verified (optional)  
564 2021-05-10 20:46:59 daniel-marschall /trunk/ Proper fix for the CSRF Token issue with OAuth (BUG#0000213)  
563 2021-05-09 20:32:36 daniel-marschall /trunk/ OAuth plugins display warning if SameSite policy is "Strict". A different approach follows later. (BUG#0000213)  
553 2021-04-23 12:20:17 daniel-marschall /trunk/  
549 2021-04-21 18:00:35 daniel-marschall /trunk/ JavaScript functions of plugins are now put into "namespaces" to avoid name conflicts between plugins
Changed "OIDplus::authUtils()::" to "OIDplus::authUtils()->" everywhere		  
532 2021-03-23 23:15:07 daniel-marschall /trunk/ WebSVN update moved from "update/" into admin login area
New plugin: "VNag version check" (in admin login area)
Discontinued: "File completeness check" tool (will be replaced soon)		  
511 2021-01-18 01:13:07 daniel-marschall /trunk/ Security: Added "INSIDE_OIDPLUS" constant to include files to avoid generating error messages when an include file is accessed directly
Updated copyright notices to 2021		  
496 2020-12-12 20:29:51 daniel-marschall /trunk/ Large refactoring of path functions.
DEPRECATED: OIDplus::basePath() becomes OIDplus::localpath()
DEPRECATED: OIDplus::getSystemUrl(X) becomes OIDplus::webpath(null, X)
OIDplus::webpath(X) becomes OIDplus::webpath(X, true)		  
484 2020-12-04 14:53:25 daniel-marschall /trunk/ OIDplus can now also communicate with HTTPS servers if CURL is wrongly configured (Windows)  
464 2020-11-08 01:15:18 daniel-marschall /trunk/  
463 2020-11-07 14:10:03 daniel-marschall /trunk/ Fixed severe compatibility problems with fresh Linux installations.
Clean setup procedure tested on a fresh Apache+PHP8.0RC3 RaspberryOS (Debian) system		  
440 2020-10-18 21:51:48 daniel-marschall /trunk/  
438 2020-10-18 11:07:08 daniel-marschall /trunk/ Additional plugin verification steps to avoid implementation mistakes  
433 2020-10-16 15:33:37 daniel-marschall /trunk/ Fixed problems in regards changing email addresses when an user is using an alternative login method (OAuth).
Fixed problem where an object could not be transferred to a new RA at Microsoft SQL Server or PostgreSQL ("ifnull" SQL function).		  
432 2020-10-15 22:13:23 daniel-marschall /trunk/ NEW FEATURE: Google OAuth2 authentication