phpldapadmin

Author	SHA1	Message	Date
Franky Van Liedekerke	46cc4a1b13	Take into account empty arguments If no argument is given to the function call, don't try to pass an empty array as some php functions don't allow arguments (like the time function)	2021-12-10 15:09:18 +11:00
Maarten	45aa1e5208	Added script comment for the Autofill A flag	2021-12-10 15:06:36 +11:00
Maarten	02b047c1f5	Bug fix: typo in regex	2021-12-10 15:06:36 +11:00
Maarten	6d4aff8733	Added optional delimiter to /K autofill function	2021-12-10 15:06:36 +11:00
Scott Shambarger	00683b3ea7	Added TLS client certificate support Adds configuration for TLS client certificates to secure TLS connection (requires PHP 7.1+ to use). Updates use of ldap_set_option to report errors if settings fail. Modifies connection logic to fail if connection preparation fails (eg. to avoid connections over insecure links if requested TLS fails).	2021-12-10 15:02:31 +11:00
Scott Shambarger	da69ebf06a	Added SASL EXTERNAL authentication support New auth_type 'sasl_external'. Login is hard coded as 'external'	2021-12-10 14:59:02 +11:00
Deon George	0c334f0385	Fix for issue #103 - hexdec() causes an deprecation notice when invalid chars are used	2020-09-19 17:09:29 +10:00
Nic Bernstein	f4c8c3d31e	SF Bug #1008 getContainerPath doesn't properly traverse to baseDN and back & #1009 - return_ldap_hash should not return container object in result set	2020-08-31 08:49:02 +10:00
Andy Beefeater	e45e71fd08	SF Feature #356 - HTMLTree icons formatting	2020-08-31 08:48:49 +10:00
Deon George	0011184a3f	Documenting OID 1.3.6.1.1.22 - Thank you. Closes #102	2020-08-30 22:27:03 +10:00
Gurvinder Dadyala	bdfd68c3b6	Added Bcrypt support (#116 ) * Set minimum PHP version to 5.5.0\| Bcrypt Support * Added Bcrypt hash support * Update Install.md	2020-08-30 21:58:50 +10:00
Armin Leuprecht	fb437b037e	Decode plainpassword before check (#115 ) When the user's password contains HTML special chars the password check would always fail if the the given plainpassword is not decoded first.	2020-08-30 21:57:40 +10:00
Bennet Bleßmann	34d4f20222	Fixes usage of deprecated array/string access syntax. (#97 ) PHP 7.4 Compatibility.	2020-08-30 21:56:25 +10:00
JamesCordell	0b65747110	Changes required so the sudoRole objectClass will present a link so members can be modified by default. (#101 )	2020-02-20 09:17:37 +11:00
Jakub Filak	4661aa2114	Hooks fixes (#99 ) * repace deprecated each with foreach I tried to enable the example.php hooks and the use of the keyword each was causing crashes in the docker image osixia/phpldapadmin:0.9.0 * check if DEBUG_ENABLED is defined I enabled the hooks example.php and I started getting crashes caused by undefined constant. Tested with the docker image osixia/phpldapadmin:0.9.0	2020-02-20 09:17:01 +11:00
sshambar	0a57b2f80e	Added appearance option show_authz (#94 ) Enabling displays the authorization ID rather than the authentication ID, similar to using ldapwhoami. Requires PHP 7.2+	2020-02-20 09:14:18 +11:00
sshambar	0fe1758572	Add SASL PLAIN authentication support (#92 ) Adds a new sasl mech 'plain' which converts all simple authentication methods to SASL PLAIN. NOTE: doesn't use auth_type 'sasl' as credentials may come from login form, stored in cookies etc...	2020-02-20 09:12:39 +11:00
Noone404	4eb3737d31	Added option to use template string for bind DN (#90 ) * Language update from launchpad * Added login option 'bind_dn_template'	2020-02-20 09:11:17 +11:00
Genaro Contreras Gutierrez	cbdc0dacd6	Auth Form wiht Google reCAPTCHA (#87 ) * reCaptcha config * config reCaptcha * check reCAPTCHA * add reCAPTCHA to form login * config attributes for reCAPTCHA * Function to verify request with reCAPTCHA * doc reCaptcha	2020-02-20 09:04:20 +11:00
Genaro Contreras Gutierrez	c87571f6b7	Fix error and set by default to preventXSS	2019-07-31 08:21:14 -07:00
Genaro Contreras Gutierrez	0b10c30c79	other usage of function preventXSS Other example of usage: preventXSS(get_request('cmd','REQUEST')) Additionally, the $ preventXSS parameter of the get_request function can set the default to true and in the specific fields set the parameter to false	2019-07-30 08:49:41 -07:00
Genaro Contreras Gutierrez	c22c98c463	update get_request when an error occurs Example to use to prevent XSS attack from get_request get_request('cmd','REQUEST',false,null,true)	2019-07-30 08:44:10 -07:00
Genaro Contreras Gutierrez	25cbb26e1d	update function get_request to preventXSS The XSS prevent function was created and used	2019-07-30 08:38:14 -07:00
Genaro Contreras Gutierrez	08c21fe7ca	Prevent XSS attack since function get_request The $preventXSS parameter was added to the get_request function to avoid XSS attacks. It was not set by default as $preventXSS=true, because it can affect fields such as passwords. Using "htmlspecialchars" and "addslashes" functions of PHP.	2019-07-30 08:29:17 -07:00
Deon George	7b1f6b5132	Fix for PHP 7.3 - deprecated continue in switch	2019-05-14 15:00:28 +10:00
Deon George	3c0ca27477	Remove SF branding	2019-04-21 23:37:10 +10:00
Deon George	511ead3ec6	Revert #63 - Add attribute not rendering correctly	2019-04-20 15:39:48 +10:00
Deon George	e37b498de1	PHP 7.2 compatibility fixes - closes #64	2019-04-19 22:48:22 +10:00
Deon George	29d7d4b2f7	Fixes #31 - Glue entries are not browsable through phpldapadmin	2019-04-19 21:01:02 +10:00
Deon George	c494078550	Closes pull request #22 and fixes #18 - preg_replace_callback changes	2019-04-19 20:08:53 +10:00
Deon George	c1af05f403	Merge pull request #63 from dago/renderfix Fixes for translation of "Add new attribute"	2019-04-18 12:34:00 +10:00
Deon George	49ef60f26b	Merge pull request #62 from spagu/patch-1 Fix php7.2 errors for function __autoload and create_function as they were deprecated.	2019-04-18 12:31:49 +10:00
Deon George	aa11e318ec	Merge pull request #60 from NHellFire/php7.1 Use OpenSSL for blowfish when available (fixes #58)	2019-04-18 12:16:08 +10:00
Michael	7569423f11	Update functions.php Since openLDAP >=2.1.2,ldap_explode_dn turns unprintable chars (in the ASCII sense, UTF8 encoded) into \<hexcode>.	2018-07-17 19:59:11 +08:00
Dagobert Michelsen	6c85d61525	Fix invocation of layout in TemplateRenderer	2018-04-20 12:33:58 +02:00
spagu	884cce1475	Update functions.php	2018-04-19 11:10:12 +01:00
NHellFire	53e005c1f4	Use OpenSSL for blowfish when available (fixes #58 )	2018-02-11 07:22:36 +00:00
Deon George	708bc5ed83	Merge pull request #37 from mr-GreyWolf/patch-1 Update functions.php	2016-10-30 16:53:05 +08:00
Deon George	e46579b34e	Merge pull request #34 from gulikoza/master Fix moving ldap entries and login error with 'fallback_dn'	2016-10-30 16:52:22 +08:00
Paweł Tomulik	ee9034f24c	add support for SHA-256 and SHA-512 via crypt(3)	2016-10-08 21:24:33 +02:00
mr-GreyWolf	599d55700d	Update functions.php	2016-03-30 23:07:02 +04:00
gulikoza	0b8375fd2a	Add additional check that full dn has been entered on login. Fixes 'invalid dn syntax (34) for user' error when fallback_dn set and username was not found while trying to use it as dn.	2016-01-24 11:52:21 +01:00
jsdevel	0491916d90	Changing the sourceforge logo to be protocol relative. * This allows the browser to resolve the URL against the protocol the user used, not what a reverse proxy used.	2015-12-05 23:02:11 -07:00
Devon Hubner	19114385fc	Changed password_hash to pla_password_hash in a few places where it was still password_hash.	2014-10-07 14:25:32 -04:00
robgloess	d4c2fb52ab	Update TemplateRender.php Fixed typo on 1682 - parse issue, non escaped " ' " causing error to be thrown	2014-09-30 22:28:09 +01:00
Marc Laporte	ba90f86e7b	typos	2014-07-25 23:04:40 -04:00
Ivo van der Meer	c736ecd8c2	Bugfix: fixed call to renamed function pla_password_hash.	2014-06-04 10:48:06 +02:00
Ben Chavet	5a7edc892f	Use preg_replace_callback instead of /e in preg_replace to fix E_DEPRECATED warnings	2014-05-29 18:57:44 +00:00
Mohamad Elrashidin Bin Sajeli	b082cf1742	Changed preg_replace to preg_replace callback	2014-05-08 20:40:57 +08:00
Mohamad Elrashidin Bin Sajeli	e673df3ba8	Changed password_hash to pla_password_hash	2014-05-08 20:22:30 +08:00

1 2 3 4 5

226 Commits