gnh1201/seeddms-code
1
0
Fork 0
mirror of https://git.code.sf.net/p/seeddms/code synced 2024-10-06 08:02:07 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
3,432 Commits 7 Branches 76 Tags 30 MiB
8ebe59c399
Commit Graph

48 Commits

Author SHA1 Message Date
Uwe Steinmann
1e691c2451 check early for guest login 
even before any other authenitcation methods
 2016-08-30 07:57:06 +02:00
Uwe Steinmann
f890b23ccc put authentication into its own class 2016-08-10 15:52:55 +02:00
Uwe Steinmann
b3cbd5825c remove old comment 2016-08-10 08:49:24 +02:00
Uwe Steinmann
b8fd3b67f2 fix line indenting 2016-08-10 08:45:58 +02:00
Uwe Steinmann
5d05057774 treat ldap auth like database auth 
count login failures, check for guest user, etc.
 2016-08-10 08:04:52 +02:00
Uwe Steinmann
6303973618 fix copyright in header 2016-08-09 07:34:30 +02:00
Uwe Steinmann
bc3450015a some code cleanup 2016-04-04 09:00:08 +02:00
Uwe Steinmann
fb98eb948d fix line indenting 2016-04-04 08:49:50 +02:00
Uwe Steinmann
e5bd281d28 check password even for guests if set 2016-03-23 12:32:47 +01:00
Uwe Steinmann
c43c5e64eb ldap search can be filtered 2016-01-19 15:30:54 +01:00
Uwe Steinmann
eda80242ea some reorganization of email notification 2015-11-25 16:49:09 +01:00
Uwe Steinmann
18e46f0d95 redirect to url with absolute path 
using a relative url won't work if the apache rewrites the url, e.g.
/Login/<hash> will be rewritten to /seeddms/op/op.Login.php
Redirecting to ../op/op.Login.php will result in a url /op/op.Login.php
which does not exists
 2015-06-10 08:31:13 +02:00
Uwe Steinmann
ad3a3b2c52 allow to add additional authentication before ldap 2015-06-10 08:24:00 +02:00
Uwe Steinmann
46d7ecf80d do not even check for guest user, if disabled 2015-02-26 11:47:28 +01:00
Uwe Steinmann
760da5e2b4 check if pwd is passed in _POST 2014-07-24 07:53:08 +02:00
Uwe Steinmann
4fa324f99e change deletion of old sessions 
the time when an old session is deleted is taken from the cookie
lifetime. If set to 0 it will be after 1 week
 2014-05-22 06:40:47 +02:00
Uwe Steinmann
cfe5d1561c set LDAP_OPT_REFERRALS in case of AD 2014-04-15 15:32:43 +02:00
Uwe Steinmann
5b0a4ea614 trim referuri 2014-03-21 08:11:12 +01:00
Uwe Steinmann
52e24892f6 turn off http only cookies if large file upload is enabled (Bug #132) 2014-03-13 12:51:48 +01:00
Uwe Steinmann
773cf3d121 do not exit in _printErrorMsg() anymore 
this disabled the login failure count
 2014-03-04 08:31:17 +01:00
Uwe Steinmann
92fc50fcce set httponly cookie 2014-02-26 22:59:29 +01:00
Uwe Steinmann
41469a4570 clean up and test ldap code 2014-02-01 21:52:45 +01:00
Uwe Steinmann
ea27bd41fd connect to ldap server which doesn't allow anonymous bind 2013-07-31 22:00:51 +02:00
Uwe Steinmann
b5a1050c05 jump to right folder after login 
if no default page after login is set, then a redirection to
out.ViewFolder.php takes place. The folderid was always set to 1,
which may not be right. Now it uses the root folder id from the ѕettings.
 2013-04-19 08:45:59 +02:00
Uwe Steinmann
745226e7e4 set global var theme from login form before calling first err msg 2013-02-26 09:44:50 +01:00
Uwe Steinmann
73c6ff9427 major name change from letodms to seeddms 2013-02-14 12:10:53 +01:00
steinm
c1bfb1f89e - added comment with explaination why the ѕession has to be deleted after logout 2013-02-06 17:33:56 +00:00
steinm
48ae9e0ef4 - removed html code from error msg 2013-02-03 07:25:12 +00:00
steinm
2b3321df7c use cookie lifetime from settings 2013-01-24 10:17:16 +00:00
steinm
11499ca484 link to out.Logout.php doesn't have to prefixed with httprootdir 
simplified error message
 2012-12-14 08:04:40 +00:00
steinm
d80c68ad51 - count login failures and disable account if a certain number is exceeded 
(can be configured in the settings)
 2012-08-28 06:31:26 +00:00
steinm
312f43e12c - translated german comment 2012-07-18 12:07:56 +00:00
steinm
77d05a607e - do not use sanitizeString() anymore 2012-01-12 16:57:23 +00:00
steinm
a027d7c962 - remove sanitizeString() where possible 2011-12-02 18:44:42 +00:00
steinm
8250b79ebc - use _REQUEST instead of _POST and _GET 2011-12-01 21:35:42 +00:00
steinm
4ce91b17cf eck if $settings->_ldapBaseDN is set in order to prevent php warnings 2011-09-12 07:25:56 +00:00
steinm
a915dccadf - use global logger 2011-05-16 15:44:59 +00:00
steinm
7ac94283ba - call sanitizeString() on data from ldap server 2011-04-11 06:31:10 +00:00
steinm
3e1d956fba - do not include LetoDMS_Core.php anymore it is now include bei inc.DBInit.php 2011-01-20 12:39:25 +00:00
steinm
8a84bc3b51 - rename all classes belonging to the core of LetoDMS into LetoDMS_Core_xxx 
- move them all into LetoDMS_Core
 2011-01-20 08:18:37 +00:00
steinm
6d5724c2bc - do not include inc.DBAccess.php because it is included by inc.ClassDMS.php 2011-01-14 19:43:10 +00:00
steinm
c3030165ae - use new class LetoDMS_Session instead of accessing the database directly 2011-01-11 09:08:04 +00:00
steinm
4fc45c65ae - drop isAdmin and isGuest in user management and replaced it with 
a 'role'
 2010-12-05 20:29:33 +00:00
steinm
a029cd22c2 - filterAccess() and filterUsersByAccess() are now static functions in 
LetoDMS_DMS and inc.AccessUtils.php is included in inc.ClassDMS.php
 2010-11-22 20:42:19 +00:00
steinm
4678218f1a - moved function to admin users and groups in LetoDMS_DMS 2010-11-15 12:01:21 +00:00
steinm
cfd3eaae06 - first step to get rid of global variables from all files in inc/ 
- added new Class LetoDMS_DMS which represents the DMS, contains
  all settings for the DMS and the database connection. A document
	and a folder have a reference to the DMS
 2010-11-12 22:47:41 +00:00
steinm
73f4e23933 - took over changeѕ from stable release 2.0.2 2010-11-05 21:44:05 +00:00
steinm
b5bc621318 - move all sources into trunk 2010-10-29 13:19:51 +00:00