Commit Graph

  • 73b7795bc0 Fixes #21 - Undefined variable: _SESSION Deon George 2019-04-18 23:17:24 +1000
  • c1af05f403
    Merge pull request #63 from dago/renderfix Deon George 2019-04-18 12:34:00 +1000
  • 49ef60f26b
    Merge pull request #62 from spagu/patch-1 Deon George 2019-04-18 12:31:49 +1000
  • aa11e318ec
    Merge pull request #60 from NHellFire/php7.1 Deon George 2019-04-18 12:16:08 +1000
  • f3aad72b57
    Merge pull request #66 from MichaelIT/master Deon George 2019-04-18 11:58:12 +1000
  • 6a55d808a2
    Merge pull request #69 from RoyChaudhuri/master Deon George 2019-04-18 11:56:25 +1000
  • aec5053f55
    Merge pull request #71 from anarcat/CVE-2017-11107 Deon George 2019-04-18 11:54:45 +1000
  • 4484129a41
    Fix multiple XSS in file htdocs/entry_chooser.php (CVE-2017-11107) Antoine Beaupré 2018-10-31 14:03:34 -0400
  • 2e43cf95b9 Fix for bug #68, exit after redirect response when URI parameter is received by index.php Roy Chaudhuri 2018-09-17 15:45:42 +0100
  • 7569423f11
    Update functions.php Michael 2018-07-17 19:59:11 +0800
  • 5c0f787fbf Add URL for translation Dagobert Michelsen 2018-04-20 13:10:20 +0200
  • 6c85d61525 Fix invocation of layout in TemplateRenderer Dagobert Michelsen 2018-04-20 12:33:58 +0200
  • 884cce1475
    Update functions.php spagu 2018-04-19 11:10:12 +0100
  • 53e005c1f4 Use OpenSSL for blowfish when available (fixes #58) NHellFire 2018-02-11 07:22:36 +0000
  • 733a10a1c5 Merge pull request #40 from PatrickBaus/master Deon George 2016-10-30 16:53:36 +0800
  • 708bc5ed83 Merge pull request #37 from mr-GreyWolf/patch-1 Deon George 2016-10-30 16:53:05 +0800
  • e46579b34e Merge pull request #34 from gulikoza/master Deon George 2016-10-30 16:52:22 +0800
  • 4fefe2aa8c Merge pull request #42 from ptomulik/crypt-sha Deon George 2016-10-30 16:47:44 +0800
  • ee9034f24c add support for SHA-256 and SHA-512 via crypt(3) Paweł Tomulik 2016-10-08 21:24:33 +0200
  • 61af45e872 Enabled HTTP_X_FORWARDED_PROTO header detection. It was disabled for testing. Patrick Baus 2016-08-11 02:45:18 +0200
  • dd6e9583a2 Fixed request smuggling vulnerability. See: https://www.owasp.org/index.php/OWASP_Periodic_Table_of_Vulnerabilities_-_HTTP_Request/Response_Smuggling According to https://www.w3.org/TR/XMLHttpRequest/#the-setrequestheader%28%29-method, the header should be ignored anyway if those properties were set. Patrick Baus 2016-08-11 01:48:12 +0200
  • 665dbc2690 Fixed detection of SSL encryption, when a reverse proxy is used, that does the encryption. If the server sets the HTTP_X_FORWARDED_PROTO header to 'https' or the HTTP_X_FORWARDED_SSL header to 'on' SSL encryption is assumed Patrick Baus 2016-08-11 01:32:41 +0200
  • 599d55700d Update functions.php mr-GreyWolf 2016-03-30 23:07:02 +0400
  • 726190e5b8 Fix moving entries when confirm['copy'] is set. gulikoza 2016-01-24 11:56:44 +0100
  • 0b8375fd2a Add additional check that full dn has been entered on login. gulikoza 2016-01-24 11:37:43 +0100
  • fa88250f0e Merge pull request #32 from jsdevel/fixing-sflogo-protocol-for-reverse-proxies Deon George 2015-12-07 16:56:41 +1100
  • 0491916d90 Changing the sourceforge logo to be protocol relative. jsdevel 2015-12-04 00:52:12 -0700
  • 0941331781 Updated for new Gitlab SANDPIT.new Deon George 2015-09-29 16:27:04 +1000
  • c004a291d7 Merge pull request #19 from scollin/master Deon George 2015-02-23 12:40:32 -0800
  • 54191d7ffb Fix some monitor information problems Sébastien Collin 2015-01-30 13:56:29 +0100
  • 9e283f369f Merge pull request #13 from DevoKun/master Deon George 2014-10-08 12:30:58 +1100
  • 19114385fc Changed password_hash to pla_password_hash in a few places where it was still password_hash. Devon Hubner 2014-10-07 14:25:32 -0400
  • 7701e98bcc Merge pull request #11 from robgloess/patch-1 Deon George 2014-10-07 12:54:51 +1100
  • d4c2fb52ab Update TemplateRender.php robgloess 2014-09-30 22:28:09 +0100
  • 7cbdd0c8db Merge pull request #9 from uda/master Deon George 2014-09-23 15:59:42 +1000
  • afec12d163 Rename INSTALL to INSTALL.md Yehuda Deutsch 2014-09-21 11:11:07 +0300
  • a4a602b6ec Created README.md Yehuda Deutsch 2014-09-21 11:10:30 +0300
  • e1952cddb6 Merge pull request #6 from marclaporte/patch-2 Deon George 2014-09-18 12:32:56 +1000
  • ee415fe8c6 Merge pull request #5 from marclaporte/patch-1 Deon George 2014-09-18 12:32:08 +1000
  • eca5c4ea9f Merge pull request #8 from pteague/master Deon George 2014-09-18 12:31:19 +1000
  • a01752a68c * Fixed posixAccount Shell so that 'Bash' is actually bash and not shell. Also added Shell, Dash, False, and No Login Patrick Teague 2014-09-16 14:53:52 -0500
  • ba90f86e7b typos Marc Laporte 2014-07-25 23:04:40 -0400
  • 6135f94a51 typo Marc Laporte 2014-07-25 20:36:21 -0400
  • f7c4bd311a Merge pull request #4 from ivdmeer/master Deon George 2014-06-05 13:00:27 +1000
  • c736ecd8c2 Bugfix: fixed call to renamed function pla_password_hash. Ivo van der Meer 2014-06-04 10:48:06 +0200
  • d2a800878f Merge pull request #3 from bchavet/master Deon George 2014-06-04 13:43:52 +1000
  • 5a7edc892f Use preg_replace_callback instead of /e in preg_replace to fix E_DEPRECATED warnings Ben Chavet 2014-05-29 18:57:44 +0000
  • d258398b68 Merge pull request #2 from archayl/php55fix Deon George 2014-05-14 09:05:39 +1000
  • b082cf1742 Changed preg_replace to preg_replace callback Mohamad Elrashidin Bin Sajeli 2014-05-08 20:40:57 +0800
  • e673df3ba8 Changed password_hash to pla_password_hash Mohamad Elrashidin Bin Sajeli 2014-05-08 20:22:30 +0800
  • 7cd2251af3 Moved KH LDAP functions into KH module Deon George 2013-07-12 13:48:14 +1000
  • 6fcc09f437 Local config Deon George 2013-06-25 16:47:42 +1000
  • 15bd1fbb6e Basic layout and login functioning Deon George 2013-06-25 13:46:39 +1000
  • 7e2cdac7e9 Basic layout and login functioning Deon George 2012-06-05 13:50:21 +1000
  • 808766bb87 Initial application work Deon George 2012-06-05 13:50:21 +1000
  • cfd7b5db83 Added KH 3.3.0 Deon George 2013-06-24 21:36:06 +1000
  • caf89ff4e5 Basic layout and login functioning SANDPIT Deon George 2012-06-19 12:50:42 +1000
  • e084621082 Initial application work Deon George 2012-06-05 13:50:21 +1000
  • 181cc4ca20 Customisations to KH Deon George 2012-01-19 22:40:53 +1100
  • a8f534b463 Added KH 3.3.0 - extra modules Deon George 2013-03-19 14:46:14 +1100
  • b140dbb1b6 Added Dojo 1.7.2 Deon George 2012-06-19 12:07:43 +1000
  • 2e134ea609 Added KH 3.3.0 Deon George 2013-03-19 14:39:17 +1100
  • 715f7efe9b Version Change Deon George 2013-03-19 15:28:07 +1100
  • 5ba2cf67e9 SF Bug #1008 getContainerPath doesn't properly traverse to baseDN and back & #1009 - return_ldap_hash should not return container object in result set Nic Bernstein 2013-03-19 13:37:57 +1100
  • cfbee19721 Release 1.2.3 RELEASE-1.2.3 1.2.3 Deon George 2012-10-01 16:48:34 +1000
  • 092db24f99 Update template to show multiselect values Deon George 2012-10-01 16:47:53 +1000
  • 927e515df3 Language update from launchpad for 1.2.3 (also see #30) Deon George 2012-09-06 13:00:06 +1000
  • bbedf18b7e SF Bug #3531956 - Search / Show Attributes must be lowercase Deon George 2012-09-05 22:44:46 +1000
  • f1ed59a35e SF Bug #3518548 - Missing attributes on some custom forms Deon George 2012-09-05 22:18:31 +1000
  • 55fa21af26 SF Bug #3513210 - Export to VCARD only exports the last entry in the list Deon George 2012-09-05 21:57:17 +1000
  • f28d535948 SF Bug #3510648 - Cannot copy between servers Deon George 2012-09-05 21:54:42 +1000
  • 2f70eb41b3 SF Bug #3510114 - Unable to check passwords when samba hashes are in lowercase Deon George 2012-09-05 21:25:50 +1000
  • 6b9834a054 SF Bug #3452416 - templates <order> non-functional Deon George 2012-09-05 20:23:17 +1000
  • caf24e3662 SF Bug #3427748 - value id is ignored in select attribute Deon George 2012-09-05 20:02:14 +1000
  • c4b6695beb SF Bug #3448530 - Treat krbExtraData and krbPrincipalKey as binary Roland Gruber 2012-09-04 15:09:24 +1000
  • 74434e5ca3 SF Bug #3497660 - XSS flaws via 'export', 'add_value_form' and 'dn' variables Deon George 2012-09-03 07:16:34 +1000
  • 88d41216f9 SF Bug #3426575 - clicking 'logout' does not unset _SESSION['ACTIVITY'] Deon George 2012-09-03 06:19:19 +1000
  • 09c5e3a8da SF Feature #3555472 - User-friendly items in entry chooser window. Paweł Tomulik 2012-09-01 11:43:14 +1000
  • 21959715c3 SF Feature #3509651 - Add support for SHA512 with OpenLDAP Jean-Philippe Ghibaudo 2012-09-01 11:31:38 +1000
  • 3690ad16f0 SF Patch #3469148 - Display mass edit actions as buttons Roland Gruber 2012-08-29 22:01:43 +1000
  • 7dc8d57d69 SF Bug #3477910 - XSS vulnerability in query Deon George 2012-01-24 12:37:28 +1100
  • dece0f496f Release 1.2.2 RELEASE-1.2.2 Deon George 2011-10-27 13:07:09 +1100
  • d58f011fbb Language Translation merge from launchpad Deon George 2011-10-27 13:06:53 +1100
  • 696c266eee Additional fix for SF Feature #3387473 Deon George 2011-10-27 12:55:24 +1100
  • 2d018aad7b SF Feature #3387473 - Support for schema discovery using OpenLDAP's cn=config DN Caleb Callaway 2011-10-13 08:17:32 +1100
  • cddf783c27 Add an alert when RFC3866 tags are being used Deon George 2011-10-06 16:16:27 +1100
  • 1e1fcabb3d SF Bug #3398344 - Import LDIF overwrites entries Deon George 2011-10-06 14:29:35 +1100
  • d8ab7fc2f0 SF Patch #3391547 - Option for minmal mode Roland Gruber 2011-10-06 12:31:12 +1100
  • 56830f1fa4 SF Patch #3391389 - Option to initially open the tree Roland Gruber 2011-10-06 12:22:55 +1100
  • 6c8b623788 SF Patch #3391371 - Fix for schema link deactivation Roland Gruber 2011-10-06 11:57:06 +1100
  • 7fc4f0c7e4 SF Patch #3391039 - Remove eval commands from PHP code Roland Gruber 2011-10-06 11:43:40 +1100
  • 059b83befb SF Bug #3391046 - Loading entries with many attributes is very slow Deon George 2011-10-06 11:06:43 +1100
  • 4089ffa9fe SF Bug #3392644 - Cannot authenticate if password starts or ends with spaces Deon George 2011-10-06 10:40:41 +1100
  • c57a927311 Disable supplied modifiction templates, it confused too many people Deon George 2011-10-06 09:35:58 +1100
  • d5744b055a SF Bug #3370546 - AjaxEnabled create and delete entry fails on IE9 Deon George 2011-10-06 09:12:54 +1100
  • 76e6dad13e SF Bug #3417184 - PHP Code Injection Vulnerability Deon George 2011-10-06 09:03:20 +1100
  • 5d4245f93a SF Bug #3395004 - config.php.example refers to lang/en.php Deon George 2011-09-08 22:51:02 +1000
  • 80d027d569 SF Bug #3373466 - Unable to define force_may attributes Deon George 2011-09-08 22:30:35 +1000
  • 64668e882b Remove XSS vulnerabilty in debug code Deon George 2011-07-27 07:30:06 +1000
  • caeba72171 SF Bug #3355722 - Issue in MultiList attribute type Felix Chelu 2011-07-07 23:45:21 +1000