Commit Graph

407 Commits

Author SHA1 Message Date
Deon George
2ccc1d3b83 Framework update and updates from other projects,remove leenooks/laravel
Framework updates, and hack to get CI testing working
2021-12-11 00:24:00 +11:00
Deon George
88eb35a567 Some CSS fixes, to fix rendering the sitemap when the sidebar is collapsed 2021-12-11 00:24:00 +11:00
Deon George
0b867abbac Reorganise docker CI configuration 2021-12-11 00:24:00 +11:00
Deon George
48131c1b4e Fix showing DN icon for RootDSE, fix readme git clone 2021-12-11 00:24:00 +11:00
Deon George
851010d6d5 Add icons for each DN based on objectClass 2021-12-11 00:24:00 +11:00
Deon George
2a099e2dc4 Move getBaseDN to Entry class, some cleanup 2021-12-10 23:51:49 +11:00
Deon George
4ef074fac4 More unit testing, setup for localisation 2021-12-10 23:51:48 +11:00
Deon George
b043e3bc93 OID update, fix sidebar icon rendering 2021-12-10 23:51:48 +11:00
Deon George
902330e734 Added home screen note, renamed custom login note to html 2021-12-10 23:51:48 +11:00
Deon George
cec8775f8e Composer updates 2021-12-10 23:51:48 +11:00
Deon George
d20a17d3fe Added server info 2021-12-10 23:51:48 +11:00
Deon George
db61e0d1ce Login validation, user profile icon 2021-12-10 23:51:48 +11:00
Deon George
c549d28340 Change query() to children() - expose hassuborinates 2021-12-10 23:51:48 +11:00
Deon George
1ebdffa358 Fixes for testing now that we are using directorytree/ldaprecord-laravel 2021-12-10 23:51:48 +11:00
Deon George
15ff508429 Swap out adldap2/adldap2 for directorytree/ldaprecord-laravel 2021-12-10 23:51:48 +11:00
Deon George
f323be3d7f Start on fetching DN from server 2021-12-10 23:51:48 +11:00
Deon George
130ae005a3 Added Architect UI 2021-12-10 23:51:48 +11:00
Deon George
e89b4d3287 Updated composer dependancies 2021-12-10 23:51:48 +11:00
Deon George
7a195bb844 Improved tree rendering 2021-12-10 23:51:48 +11:00
Deon George
6620b9147e API query and CI to build the docker demo image
Remove unused CI, removed some debugging for the demo
2021-12-10 23:51:48 +11:00
Deon George
de4fa04d3b Start of tree being rendered by API/AJAX calls 2021-12-10 23:51:48 +11:00
Deon George
1e3e4b2196 Setup CI testing 2021-12-10 23:51:47 +11:00
Deon George
f3282bed38 Framework upgrade to Laravel 7 2021-12-10 23:51:47 +11:00
Deon George
f8717480fd CSS/JS updates, initial page rendering 2021-12-10 23:51:47 +11:00
Deon George
4c90ce11f2 Initial login working 2021-12-10 23:51:47 +11:00
Deon George
ed7087c802 Initial Laravel Base 2021-12-10 23:51:47 +11:00
Deon George
fc7ab06358 Fix broken git command in readme - closes #124 2021-12-10 15:05:13 +11:00
Deon George
a4924f7453 Updated README with info on PLA v2 2020-09-12 22:41:52 +10:00
Deon George
0011184a3f Documenting OID 1.3.6.1.1.22 - Thank you. Closes #102 2020-08-30 22:27:03 +10:00
Deon George
aa5be41b06 Add autocomplete=off - closes #122 2020-08-30 22:09:52 +10:00
Gurvinder Dadyala
bdfd68c3b6
Added Bcrypt support (#116)
* Set minimum PHP version to 5.5.0| Bcrypt Support
* Added Bcrypt hash support
* Update Install.md
2020-08-30 21:58:50 +10:00
Armin Leuprecht
fb437b037e
Decode plainpassword before check (#115)
When the user's password contains HTML special chars
the password check would always fail if the
the given plainpassword is not decoded first.
2020-08-30 21:57:40 +10:00
Bennet Bleßmann
34d4f20222
Fixes usage of deprecated array/string access syntax. (#97)
PHP 7.4 Compatibility.
2020-08-30 21:56:25 +10:00
JamesCordell
0b65747110
Changes required so the sudoRole objectClass will present a link so members can be modified by default. (#101) 2020-02-20 09:17:37 +11:00
Jakub Filak
4661aa2114
Hooks fixes (#99)
* repace deprecated each with foreach

I tried to enable the example.php hooks and the use of the keyword each
was causing crashes in the docker image osixia/phpldapadmin:0.9.0

* check if DEBUG_ENABLED is defined

I enabled the hooks example.php and I started getting crashes caused by
undefined constant.

Tested with the docker image osixia/phpldapadmin:0.9.0
2020-02-20 09:17:01 +11:00
sshambar
0a57b2f80e
Added appearance option show_authz (#94)
Enabling displays the authorization ID rather than the authentication ID,
similar to using ldapwhoami.  Requires PHP 7.2+
2020-02-20 09:14:18 +11:00
sshambar
0fe1758572
Add SASL PLAIN authentication support (#92)
Adds a new sasl mech 'plain' which converts all simple authentication
methods to SASL PLAIN.  NOTE: doesn't use auth_type 'sasl' as
credentials may come from login form, stored in cookies etc...
2020-02-20 09:12:39 +11:00
Noone404
4eb3737d31
Added option to use template string for bind DN (#90)
* Language update from launchpad

* Added login option 'bind_dn_template'
2020-02-20 09:11:17 +11:00
Genaro Contreras Gutierrez
cbdc0dacd6
Auth Form wiht Google reCAPTCHA (#87)
* reCaptcha config

* config reCaptcha

* check reCAPTCHA

* add reCAPTCHA to form login

* config attributes for reCAPTCHA

* Function to verify request with reCAPTCHA

* doc reCaptcha
2020-02-20 09:04:20 +11:00
Deon George
8f4ced96f9 Release 1.2.5 2019-08-20 22:24:40 +10:00
Deon George
722fefad1c
Merge pull request #84 from nayo/patch-2
Fix error and set by default to preventXSS. Closes #84 and #85
2019-08-07 16:34:53 +10:00
Genaro Contreras Gutierrez
c87571f6b7
Fix error and set by default to preventXSS 2019-07-31 08:21:14 -07:00
Deon George
cb9c0cce3e
Merge pull request #82 from nayo/patch-1
Function to prevent XSS attacks
2019-07-31 07:38:06 +08:00
Genaro Contreras Gutierrez
0b10c30c79
other usage of function preventXSS
Other example of usage:
preventXSS(get_request('cmd','REQUEST'))

Additionally, the $ preventXSS parameter of the get_request function can set the default to true and in the specific fields set the parameter to false
2019-07-30 08:49:41 -07:00
Genaro Contreras Gutierrez
c22c98c463
update get_request when an error occurs
Example to use to prevent XSS attack from get_request

get_request('cmd','REQUEST',false,null,true)
2019-07-30 08:44:10 -07:00
Genaro Contreras Gutierrez
25cbb26e1d
update function get_request to preventXSS
The XSS prevent function was created and used
2019-07-30 08:38:14 -07:00
Genaro Contreras Gutierrez
08c21fe7ca
Prevent XSS attack since function get_request
The $preventXSS parameter was added to the get_request function to avoid XSS attacks.
It was not set by default as $preventXSS=true, because it can affect fields such as passwords.

Using "htmlspecialchars" and "addslashes" functions of PHP.
2019-07-30 08:29:17 -07:00
Deon George
1bd14ddf68 Removed reference to missing function - closes #65 2019-07-15 14:49:52 +10:00
Deon George
95411c05e1 Release 1.2.4 2019-05-14 15:01:32 +10:00
Deon George
7b1f6b5132 Fix for PHP 7.3 - deprecated continue in switch 2019-05-14 15:00:28 +10:00