Commit Graph

32 Commits

Author SHA1 Message Date
Andrew Dolgov 6359259dbb simplify internal authentication code and bump default algo to SSHA-512 2021-03-01 15:24:18 +03:00
Andrew Dolgov 2ae0b7059f cleanup some defined-stuff 2021-02-23 09:01:27 +03:00
Andrew Dolgov 09e9f34bb4 add UserHelper::find_user_by_login() and rewrite some user checks to invoke it instead of going through PDO 2021-02-11 10:22:27 +03:00
Andrew Dolgov 7af8744c85 authentication: make logins case-insensitive (force lowercase) 2021-02-11 09:57:57 +03:00
Andrew Dolgov 51d2deeea9 fix hierarchy of authentication modules, make everything extend Auth_Base and implement hook_auth_user() for pluginhost 2021-02-08 19:11:31 +03:00
Andrew Dolgov 68b0380118 add placeholder authentication via app passwords if service is passed
forbid logins via regular passwords for services
remove AUTH_DISABLE_OTP
2019-11-01 13:03:06 +03:00
Andrew Dolgov df5d2a0665 pluginhost: do not connect via legacy DB api until requested
log all initiated legacy database connections
2017-12-03 14:49:18 +03:00
Andrew Dolgov c9d5c26041 auth/base: PDO
functions: fix small pdo-related bug
2017-12-01 17:40:53 +03:00
Andrew Dolgov ea79a0e033 remove some redundant php closing tags 2017-04-26 20:24:18 +03:00
Andrew Dolgov 7b55001eee fix various issues reported by static analysis
update gitlab-ci config
2017-04-26 15:29:22 +03:00
Andrew Dolgov ea46d90eee auth_base: choose random password if not supplied by auth module 2013-05-07 12:36:09 +04:00
Rasmus Lerdorf 6f7798b643 Fixing bugs found by static analysis 2013-05-07 00:35:10 -07:00
Andrew Dolgov 8cb5c64d62 fix auth_base referencing dbh which was not present 2013-04-18 15:36:54 +04:00
Andrew Dolgov d9c85e0f11 classes: use OO DB interface 2013-04-17 20:12:14 +04:00
Andrew Dolgov a42c55f02b fix blank character after opening bracket in function calls 2013-04-17 18:34:18 +04:00
Andrew Dolgov a0ed0d38d4 auth_remote: fix typo 2013-04-17 18:27:41 +04:00
Andrew Dolgov 6322ac79a0 remove $link 2013-04-17 16:48:41 +04:00
Andrew Dolgov 3972bf5981 db_escape_string: specify link parameter for consistency; sessions: do not force-close db connection in _close() 2013-03-22 09:14:55 +04:00
Andrew Dolgov 0f28f81f89 move authentication modules to plugins/ 2012-12-27 15:14:44 +04:00
Andrew Dolgov 04cdc8023d add IMAP authenticator module (closes #485) 2012-12-27 10:26:04 +04:00
Andrew Dolgov d1e31c7a74 Revert "only enable OTPHP on php version 5.3+"
This reverts commit 1835f145a8.
2012-09-15 17:17:44 +04:00
Andrew Dolgov d031f69813 Revert "auth internal: fix otp check clause"
This reverts commit 72d0e9b33f.
2012-09-15 17:17:38 +04:00
Andrew Dolgov 72d0e9b33f auth internal: fix otp check clause 2012-09-14 02:54:32 +04:00
Andrew Dolgov 1835f145a8 only enable OTPHP on php version 5.3+ 2012-09-14 02:52:49 +04:00
Andrew Dolgov 2d6847495f fix OTP 2012-09-10 19:18:44 +04:00
Andrew Dolgov ec78654f4e add auth_base check_password() 2012-09-04 12:46:08 +04:00
Andrew Dolgov 3ca8af7fd8 require entering password before enabling/disabling otp 2012-09-04 12:39:33 +04:00
Andrew Dolgov b8cdc39433 focus input field in otp form 2012-09-04 12:08:50 +04:00
Andrew Dolgov 02cd6de128 api: add workaround to disable OTP 2012-09-03 22:32:24 +04:00
Andrew Dolgov 4e70344bbf auth internal: fix login screen warning 2012-09-03 18:53:19 +04:00
Andrew Dolgov fb70f26ed9 implement one time passwords using TOTP 2012-09-03 18:33:46 +04:00
Andrew Dolgov 369dbc19d6 rework class system to use subdirectories
add placeholder plugin/hook system
2012-08-17 14:22:33 +04:00