dani/lemonldap-ng
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
416 Commits 3 Branches 0 Tags 75 MiB
b9ba2337e4
Commit Graph

141 Commits

Author SHA1 Message Date
Xavier Guimard
b9ba2337e4 LEMONLDAP::NG : now the portal can be called by browser or by SOAP 2008-12-07 14:12:36 +00:00
Xavier Guimard
68d447b422 LEMONLDAP::NG : typo 2008-12-07 12:15:40 +00:00
Xavier Guimard
53dc4bbbf4 LEMONLDAP::NG : * To avoid XSS, 3 controls : 
1) url must be base64 encoded
                  2) urldc is serialized on 1 line ("s/[\r\n]//sg")
                  3) urldc must not contains '"`\0<
                * Common/CGI can now intercept SOAP requests
 2008-12-07 09:02:44 +00:00
Xavier Guimard
8b4f38e58c LEMONLDAP::NG : XSS prevention 2008-12-06 10:26:24 +00:00
Xavier Guimard
66c60cc416 LEMONLDAP::NG : * branche 0.9.2 is missing 
* ' and " are now filtered in url in Portal.pm
 2008-12-06 07:27:35 +00:00
Xavier Guimard
5bbe35cedc LEMONLDAP::NG : To help Doxygen, we have to use "use base" instead of @ISA when possible 2008-12-04 13:53:05 +00:00
Xavier Guimard
5f552f4085 LEMONLDAP::NG : minnor things 2008-12-03 18:30:57 +00:00
Xavier Guimard
b8905b4247 LEMONLDAP::NG : * bug correction : AuthLDAP can now be used without UserDBLDAP 2008-12-03 16:43:31 +00:00
Clément Oudot
35df5dddb8 LEMONLDAP::NG : Enforce XSS protection by deleting bad urls 2008-12-03 16:41:30 +00:00
Xavier Guimard
24a14caeda LEMONLDAP::NG : * Security fix : redirections in portal must be in protected sites 
* perltidy in Manager/Sessions.pm
                * Doxygen in progress...
 2008-12-03 16:05:27 +00:00
Xavier Guimard
1af1632c72 LEMONLDAP::NG : minor security fix : PE_USERNOTFOUND has not to be used 2008-12-03 13:30:37 +00:00
Xavier Guimard
fbc8b7bfd2 LEMONLDAP::NG : * security fix => XSS 
* Begin Doxygen documentation
 2008-12-03 13:27:30 +00:00
Xavier Guimard
de7edc7387 LEMONLDAP::NG : better manner to delete cookie 2008-12-01 13:39:52 +00:00
Xavier Guimard
d7bbb44924 LEMONLDAP::NG : * change default value for existing sessions : now, it's PE_DONE 
* after POST and logout, Portal generates a redirection to itself unless an url is given. This help MSIE to relog after logout
 2008-12-01 09:36:02 +00:00
Xavier Guimard
96e625a29d LEMONLDAP::NG : binmod(STDOUT,'utf8') has to be called at each request 2008-11-26 11:20:36 +00:00
Xavier Guimard
ccbb0a12e0 LEMONLDAP::NG : * eval+abort in XML parsing (to avoid die include in XML::LibXML) 
* Correct use of UTF8 : a apps-list.xml UTF8 encoded was not displayed correctly
 2008-11-26 11:11:03 +00:00
Xavier Guimard
d99ef1ba3f LEMONLDAP::NG : web form in a distinct file 2008-11-24 14:06:54 +00:00
Xavier Guimard
a72eebdd81 LEMONLDAP::NG : Notification system skeleton 2008-11-24 06:57:18 +00:00
Xavier Guimard
2725f06fd3 LEMONLDAP::NG : * Handler/SharedConf.pm is more simple now since it use the new Conf.pm capabilities 
* CGIs now use abort() instead of die
                * debug system in COnf.pm (set "LogLevel debug" in Apache)
 2008-11-21 17:51:52 +00:00
Xavier Guimard
63f196078b LEMONLDAP::NG : die replaced by $self->abort in CGIs 2008-11-21 07:27:08 +00:00
Xavier Guimard
ac87a4b49e LEMONLDAP::NG : removing old feature : LDAP filter in groups 2008-11-20 18:13:27 +00:00
Xavier Guimard
b5c2abb2a0 LEMONLDAP::NG : customFunctions called "package::function" where not correctly interpreted 2008-11-19 11:19:06 +00:00
Clément Oudot
19b5fa1190 LEMONLDAP::NG : fix bug #311849 2008-11-18 12:47:30 +00:00
Xavier Guimard
cae4cbade0 LEMONLDAP::NG : New module Lemonldap::NG::Common. It contains Conf.pm and Cie 2008-11-17 16:59:56 +00:00
Xavier Guimard
dd0c815795 LEMONLDAP::NG : one more bug... 2008-11-17 15:12:17 +00:00
Xavier Guimard
e42c8b263f LEMONLDAP::NG : little bugs in customFunctions 2008-11-17 15:06:58 +00:00
Xavier Guimard
d88ae29227 LEMONLDAP::NG : new customFunctions feature (+ perltidy everywhere) 2008-11-17 14:02:50 +00:00
Xavier Guimard
f399324f18 LEMONLDAP::NG : little hook in Menu.pm 2008-11-14 07:16:26 +00:00
Xavier Guimard
7d6989a4a6 LEMONLDAP::NG : * uri in Menu.pm can now contains user datas 
* protection documentation in Sessions.pm example file
 2008-11-12 16:09:35 +00:00
Clément Oudot
5c7468b6e5 LEMONLDAP::NG : correct bug on anonymous manager authentication and no ppolicy authentication 2008-11-05 21:26:37 +00:00
Xavier Guimard
a75e882741 LEMONLDAP::NG : New module Sessions.pm to manage sessions 2008-11-04 16:35:16 +00:00
Clément Oudot
9e2a494da5 LEMONLDAP::NG : password can now be stored in session 2008-10-16 07:35:42 +00:00
Clément Oudot
73f531fb43 LEMONLDAP::NG : minor bugs in _LDAP.pm 2008-10-08 09:40:24 +00:00
Xavier Guimard
c007a2382c LEMONLDAP::NG : _LDAP inherits now from Net::LDAP 2008-10-08 08:45:15 +00:00
Xavier Guimard
26c944caa7 LEMONLDAP::NG : UserDB system updated + general perltidy 2008-10-07 20:15:48 +00:00
Xavier Guimard
edb22bc8f8 LEMONLDAP::NG : little mistake 2008-10-05 18:43:47 +00:00
Xavier Guimard
80f199fbc7 LEMONLDAP::NG : LDAP User database module 2008-10-05 18:42:50 +00:00
Xavier Guimard
7baf8c6b64 LEMONLDAP::NG : bad version number 2008-09-29 14:51:43 +00:00
Clément Oudot
b9b39143db LEMONLDAP::NG : New Portal::Error module and test page 2008-09-28 17:05:17 +00:00
Clément Oudot
6623c149f6 LEMONLDAP::NG : corrections on enhanced menu 2008-09-26 07:36:30 +00:00
Xavier Guimard
7fdab965d5 LEMONLDAP::NG : grant system in Menu.pm (not yet tested) 2008-09-21 09:50:32 +00:00
Clément Oudot
b14983208c LemonLDAP::NG : W3C standards compliance and password modification module 2008-09-19 15:28:00 +00:00
Clément Oudot
1c15139a3a LemonLDAP::NG : pre-release of new Portal::Menu module 2008-09-18 08:34:17 +00:00
Xavier Guimard
7c9bb1621d LEMONLDAP::NG : bug in doc 2008-09-10 10:40:01 +00:00
Xavier Guimard
4e90f24172 LEMONLDAP::NG : perltidy + template language detection regexp 2008-09-04 06:05:24 +00:00
Clément Oudot
b264d0f8c7 LemonLDAP::NG : HTML::Template translation filter 2008-09-03 16:11:16 +00:00
Xavier Guimard
8364a0e78d LEMONLDAP::NG : CPAN versions update and little doc update 2008-08-25 19:54:24 +00:00
Xavier Guimard
d0c5306e91 LEMONLDAP::NG : translation for password policy 2008-08-11 07:26:55 +00:00
Xavier Guimard
7c3a6f3cfc LEMONLDAP::NG : complete integration of Password Policy (i18n not done) 2008-08-08 16:19:16 +00:00
Clément Oudot
a53c327ad1 Resolve Ppolicy constant bug #310433 2008-07-18 13:52:11 +00:00