Arthur Schiwon
d3ce2cacd6
OC_User: handle success properly
2012-05-01 14:40:56 +02:00
Arthur Schiwon
8a69116e94
OC_User: don't say password changed when it is not true
2012-05-01 13:40:01 +02:00
Frank Karlitschek
f0701f75a9
tiny typo
2012-04-30 13:08:08 +02:00
Florian Preinstorfer
b86f2069ff
Fix a session fixation vulnerability
...
- regenerate the session for every successful login
- properly destroy a session
Further information can be found on:
https://en.wikipedia.org/wiki/session_fixation
2012-04-12 19:15:38 +02:00
Robin Appelman
ea8f71a19c
Merge branch 'master' into encryption
2012-02-25 16:36:58 +01:00
Robin Appelman
e039015ca1
prevent errors when a user backends gives an invalid result
2012-02-24 23:54:38 +01:00
Robin Appelman
b3a974d8bb
only trigger hooks for the default filesystem view
2012-02-21 20:48:48 +01:00
Robin Appelman
f1cbb9effc
initial integration of encryption
2012-02-21 20:48:48 +01:00
Michael Gapczynski
b6d66c4727
Remove the keys in preferences when a user is deleted - Thanks rogerc
2012-01-04 15:19:16 -05:00
Georg Ehrke
534b6f3a09
Fix whitespace username
2012-01-02 11:49:53 +01:00
Florian Pritz
c7d4e72341
set cookie secure if forcessl is enabled
...
This also moves session_start in lib/base.php down a bit because we need
OC::$SERVERROOT to get the config settings.
Signed-off-by: Florian Pritz <bluewind@xinu.at>
2011-09-24 18:42:00 +02:00
Bartek Przybylski
94696ea7de
remember changed not to store password in cookie
2011-09-18 15:05:53 +02:00
Bartek Przybylski
68e7666293
Changed behaviour of remember checkbox
2011-09-18 09:15:30 +02:00
Robin Appelman
ee0954b236
fix issue with login being case insensitve
2011-08-25 21:51:13 +02:00
Frank Karlitschek
aa582ec43a
more work on encryption
2011-08-11 17:49:36 +02:00
Robin Appelman
1f1498ceca
remove Log completely
2011-08-10 14:03:54 +02:00
Jakob Sack
bafd684eb6
Renaming classes :-)
2011-07-29 21:36:03 +02:00
Jakob Sack
e69079f935
Further improvements
2011-07-27 20:04:42 +02:00
Jakob Sack
f5c0dbd947
Use autoload
2011-07-27 19:07:28 +02:00
Bartek Przybylski
c5776fdae4
remember login added
2011-07-20 15:04:14 +02:00
Robin Appelman
8b76590f5d
fix creating users
2011-06-23 18:23:47 +02:00
Dominik Schmidt
3b2fcd356f
Use new user backend API
2011-06-23 15:24:09 +02:00
Robin Appelman
83958ebd4b
add oc_user::getUser to get the user id of the loggedin user
2011-06-22 12:50:57 +02:00
Robin Appelman
ee0f1490e1
Multiply changes to user system
...
keeping tracked of the logged in user is no longer done by the active backend but by oc_user directly instead
multiply backends can be active at the same time, allowing alternative authentication procedures like openid or tokens to be used next to the regular user system
2011-06-21 19:28:46 +02:00
Jakob Sack
da30671ec4
More error checking in user management
2011-04-18 12:39:28 +02:00
Jakob Sack
f22c05deab
Check for existance of group- and usernames, don't mix OC_USER and OC_GROUP!
2011-04-18 11:48:52 +02:00
Jakob Sack
b37fb9142f
Added tons of Hooks to OC_USER and OC_GROUP
2011-04-18 11:39:29 +02:00
Jakob Sack
1fe5f5a2df
Better documentation for OC_USER
2011-04-18 10:41:01 +02:00
Jakob Sack
c4287162c4
Some work on the fancy user management
2011-04-17 01:04:23 +02:00
Jakob Sack
8465f76e7e
Use OC_CONFIG where possible
2011-04-16 12:18:42 +02:00
Robin Appelman
232654cb60
get rid of the oc_require and friends
2011-04-16 10:12:53 +02:00
Jakob Sack
149793f2e7
First version of the new user management
2011-04-15 17:14:02 +02:00
Jakob Sack
132695ceb1
Start of the refactoring. Commit is quite big because I forgot to use git right from the beginning. Sorry.
2011-03-01 23:20:16 +01:00