Commit Graph

  • 7390064eba - updated documentation steinm 2012-09-11 13:01:05 +0000
  • 81c0bd8a7e - output name and login of user in lists steinm 2012-09-11 13:00:43 +0000
  • 1b2e450bb7 - fixed sql statement steinm 2012-09-11 12:59:47 +0000
  • 3658b08358 - prevent sql injection attacks steinm 2012-09-11 12:58:30 +0000
  • 9412479354 - output name and login in all user lists steinm 2012-09-11 12:57:13 +0000
  • e87a32e6d0 - set dms of group object steinm 2012-09-11 12:55:54 +0000
  • 14755b838a - prevent xss attack - no need to decodeString() in javascript anymore steinm 2012-09-11 12:55:29 +0000
  • 24d41c956d - prevent xss attack steinm 2012-09-11 12:54:43 +0000
  • 8a20cbbbc1 - do not use PDO by default steinm 2012-09-11 12:54:15 +0000
  • 88941129b7 - added inc.DBAccessPDO.php steinm 2012-09-11 12:53:44 +0000
  • b9fee2f9c6 - added inc.DBAccessPDO.php steinm 2012-09-11 12:53:20 +0000
  • f6df8ea9eb - fixed sending of mails when notifier is changed steinm 2012-09-11 12:52:42 +0000
  • 52fbc5bc29 - fixed more xss security holes steinm 2012-09-11 12:51:46 +0000
  • de8a438678 - set Lucene_Analysiser to utf8 steinm 2012-09-05 21:05:10 +0000
  • 5e11a14c42 - fixed possible xss security holes steinm 2012-09-05 21:00:14 +0000
  • 71d0efd1f1 - fixed possible xss security holes steinm 2012-09-05 20:59:12 +0000
  • 3a9d93afc5 - set default encoding of lucene to utf8 steinm 2012-09-05 20:58:27 +0000
  • d30fa0b141 - merge from trunk with lots of security fixes steinm 2012-08-31 08:49:33 +0000
  • b380915e9e - updated branch 3.4.x from trunk steinm 2012-08-31 07:48:51 +0000
  • 863e608dba - added changes for 3.3.8 steinm 2012-08-31 07:47:47 +0000
  • 1ce0bcc831 - added encryption key steinm 2012-08-31 07:47:07 +0000
  • f14c15ee50 - fixed security hole steinm 2012-08-31 07:44:25 +0000
  • 07b7578190 - allow to check forms with GET Request steinm 2012-08-31 07:43:43 +0000
  • 2a11ab47bc - new function to create and check formular tokens for POST Requests steinm 2012-08-29 20:49:42 +0000
  • da2e00e96b - new method getId() steinm 2012-08-29 20:42:33 +0000
  • 322d4e78d9 - added encryption key steinm 2012-08-29 20:42:13 +0000
  • 258315b6be - fixed sql statement to insert a new user steinm 2012-08-29 20:40:56 +0000
  • 452221fe2b - lots of fixes to prevent CSRF attacks steinm 2012-08-29 20:37:22 +0000
  • 54273250d4 - removed very old installation instrucations steinm 2012-08-28 13:20:39 +0000
  • 680579ada7 - removed very old update script steinm 2012-08-28 13:19:10 +0000
  • bc71431d01 - branch for next version 3.4.0 steinm 2012-08-28 09:41:53 +0000
  • 7878b8ec59 - changed order of table definitions steinm 2012-08-28 09:40:14 +0000
  • c0fe231b4e - set version to 3.4.0 steinm 2012-08-28 09:19:50 +0000
  • 72cc3a4bf6 - added changes for 3.3.7 and 3.4.0 steinm 2012-08-28 09:19:07 +0000
  • decd9f8e14 - simple webservice steinm 2012-08-28 08:48:56 +0000
  • c1462b7e73 - additional database driver based on PDO steinm 2012-08-28 08:47:17 +0000
  • e9380b045b - reordered changelog entries steinm 2012-08-28 08:46:17 +0000
  • 1392e9fbf7 - delete entries from table tblUserPasswordRequest and tblUserPasswordHistory when user is deleted steinm 2012-08-28 07:48:59 +0000
  • e3d13bc6c8 - new version 3.3.7 steinm 2012-08-28 07:47:47 +0000
  • bfa1524b62 - added link back to installation steinm 2012-08-28 07:46:56 +0000
  • 7eb1173ebe - added new configuration parameters steinm 2012-08-28 07:46:19 +0000
  • c6e0689cff - add _ADOdbPath to include_path - new version 3.4.0 - output error if dir for configuration file could not be found steinm 2012-08-28 07:45:40 +0000
  • 9240c4b2f7 - sync with create_tables-innodb.sql steinm 2012-08-28 07:43:58 +0000
  • ada9d9980e - added ENGINE to table definition steinm 2012-08-28 07:43:36 +0000
  • 106a0bfce8 - added new tables tblUserPasswordHistory steinm 2012-08-28 07:40:31 +0000
  • 2e93357df0 - added constraint steinm 2012-08-28 07:39:47 +0000
  • 9ec3fbc898 - files to update from version 3.3.0 to 3.4.0 steinm 2012-08-28 07:33:10 +0000
  • fa5bdbd753 - added new attributes $_pwdExpiration, $_loginFailures, $_isDisabled steinm 2012-08-28 07:31:31 +0000
  • 43e7cb9d47 - replace mktime() by time() - better error checking steinm 2012-08-28 07:30:27 +0000
  • 912b7f5d42 - replace mktime() by time() - better error checking steinm 2012-08-28 07:29:39 +0000
  • 6f955f1b83 - added method getDocumentsLockedByUser($user) - pass new parameters to constructor of LetoDMS_Core_User steinm 2012-08-28 07:28:16 +0000
  • 6d759854c6 - added jquery plugin which runs ajax command for calculating password strength steinm 2012-08-28 07:26:11 +0000
  • f36cb73c53 - update to jquery 1.7.2 steinm 2012-08-28 07:25:21 +0000
  • ce2843ef6e - handle new settings for password strength, expiration - prevent some XSS attacs steinm 2012-08-28 07:24:32 +0000
  • 7d4c363e5a - output password expiration steinm 2012-08-28 07:22:25 +0000
  • a9d8f415ae - prevent XSS attac steinm 2012-08-28 07:21:56 +0000
  • f4489d6a73 - some minor code formating - added copyright notice steinm 2012-08-28 07:21:15 +0000
  • a3a42bb451 - some initial coding for auto completion steinm 2012-08-28 07:20:41 +0000
  • 75c2adcfc6 - prevent XSS attacs steinm 2012-08-28 07:18:00 +0000
  • 4bb7c9307f - check password strength - allow password change only if current password is entered steinm 2012-08-28 07:09:23 +0000
  • a68a78ceab - check for password strength - ask for current password before setting a new one steinm 2012-08-28 07:00:19 +0000
  • 8eac512855 - prevent XSS attack in showtree() steinm 2012-08-28 06:39:15 +0000
  • 1b29ae6bd8 - Script for which is called when the login process detects a to old password steinm 2012-08-28 06:37:58 +0000
  • 59506d46e0 - check if password has expired steinm 2012-08-28 06:36:33 +0000
  • 99d6b0b12f - fixed security wholes (mostly possible sql injections) steinm 2012-08-28 06:35:43 +0000
  • 36dc571aa5 - added more configuration settings for password handling, stopwords file and user listing steinm 2012-08-28 06:34:21 +0000
  • d80c68ad51 - count login failures and disable account if a certain number is exceeded (can be configured in the settings) steinm 2012-08-28 06:31:26 +0000
  • 282938c93c - check for password strength and if it was previously used before setting a new one (can be turned of in th settings) steinm 2012-08-28 06:30:20 +0000
  • 8ba211914e - simple class to manage the former passwords of a user steinm 2012-08-28 06:28:42 +0000
  • 134b9becb5 - calculate password strength - take into account new settings for disabling a user steinm 2012-08-28 06:27:22 +0000
  • d2692de44a - class to calculate the password strength steinm 2012-08-28 06:25:52 +0000
  • 6e75d18ac7 - documents that cannot be seen by the user are no longer taken into account steinm 2012-08-28 06:24:05 +0000
  • 530b1cebdb - set maxDirID to 0 steinm 2012-08-28 06:22:28 +0000
  • ea520de642 - some new styles steinm 2012-08-28 06:19:14 +0000
  • 4c75f38190 - many new phrases for new features steinm 2012-08-28 06:16:21 +0000
  • 36b270ec88 - fixed spanish translation steinm 2012-08-08 09:03:54 +0000
  • 312f43e12c - translated german comment steinm 2012-07-18 12:07:56 +0000
  • 0af1c8cec4 - replace ereg_replace() by preg_replace() steinm 2012-07-18 12:06:47 +0000
  • c7f3e33c73 - added more issues to Todo list steinm 2012-07-18 12:05:46 +0000
  • 504b6ce60c - added lots of changes done in 3.3.x series steinm 2012-07-06 10:57:56 +0000
  • acaaac7b69 - check if expiritation is set before doing any action steinm 2012-07-06 10:57:22 +0000
  • d9f83a155d - fixed creation of dump file steinm 2012-07-06 10:03:25 +0000
  • e704adab00 - do a second reverse lookup for object on DELETE steinm 2012-07-02 06:53:42 +0000
  • 020165de17 - do not list groups/users for which an entry in the acl already exists steinm 2012-05-08 08:10:08 +0000
  • ef0200acdc - ignore some files when calling phpdoc steinm 2012-05-08 08:07:07 +0000
  • 07b1a9bc67 - added debug mode steinm 2012-05-08 08:05:37 +0000
  • fe01a6e29b - if a document/folder has access rights based on a group, then the highest access right will be used (not the one first assigned) steinm 2012-05-08 08:04:50 +0000
  • ede1f4a992 - include Log.php after Settings has been read - set db client encoding to utf8 steinm 2012-05-08 08:03:48 +0000
  • 46bf243ba8 - move added of adodb path to include path from DBInit.php to Settings.php steinm 2012-05-08 08:02:06 +0000
  • 40db3387de - added header for phpdoc steinm 2012-05-08 08:00:38 +0000
  • bce4acba40 - secure settings.xml steinm 2012-04-30 15:13:47 +0000
  • e3637c6ecd - more documentation on how to install the additional software steinm 2012-04-27 13:25:35 +0000
  • 1538f7e2e1 - fixed output of found documents steinm 2012-04-26 20:27:57 +0000
  • 000ceaf1ac - some minor variable name changes to be more consistent steinm 2012-04-26 20:26:56 +0000
  • 043fcfdd1e major overhaul of russian translation steinm 2012-04-23 10:48:37 +0000
  • 8822f19556 - fixed lots of old installation instructions steinm 2012-04-17 06:42:37 +0000
  • 6a2b101dd1 - settings.xml has replace old config file steinm 2012-04-16 19:38:29 +0000
  • 122da09a18 - searchConfigFilePath() uses getConfigDir() to get configuration directory steinm 2012-04-16 19:37:46 +0000
  • 53c7829806 - no need to put '/' after LetoDMS_Document::getDir() steinm 2012-04-11 11:30:58 +0000
  • 33e24bc749 - fixed bug in LetoDMS_Core_Document::getPath() steinm 2012-03-28 06:32:14 +0000