 dflaven
|
32a4ceba39
More fixes for Trac#446: XSS vulnerabilities with vectors containing double quotes
|
14 роки тому |
 romainq
|
8dba345e7d
#446 XSS vector on the login web page
|
14 роки тому |
|
dflaven
|
253a2ee596
Fixed Trac#446: XSS vulnerabilities... to be tested !
|
14 роки тому |
|
dflaven
|
8c96ea3aa5
CAS authentication improvements:
|
14 роки тому |
|
dflaven
|
ec174a7ab8
Use absolute URLs as much as possible to be independent from the page being executed...
|
14 роки тому |
|
dflaven
|
8f34f20549
Implemented two new options for CAS:
|
14 роки тому |
|
romainq
|
8e56399e7f
#423 Fixed issues with application root URL = f(mode CLI, modules, web server techno, etc.)
|
14 роки тому |
|
dflaven
|
17392797af
CAS integration: added support of JA-SIG Central Authentication Service (CAS) with log-off support, using phpCAS API.
|
14 роки тому |
|
dflaven
|
15829a9730
First prototype (not yet tested) of CAS integration.
|
14 роки тому |
|
dflaven
|
bade681081
Fixed Trac #365: Give the user some feedback when the password was successfully changed/set. Note that iTop does not check that the new password is different from the old one.
|
14 роки тому |
|
dflaven
|
37447c1a17
New configuration setting (and new class of Log objects) to keep track of the application's usage: an entry in the log is added each time a user connects to the application. (This feature is disabled by default)
|
14 роки тому |
|
dflaven
|
b005b6a3a4
Cosmetics: make the login & change password form look the same on all browsers.
|
14 роки тому |
|
dflaven
|
ef13774861
Split the usage of the iTop logo: one logo to be displayed internally (once logged) one externally (login/logoff).
|
14 роки тому |
|
romainq
|
e8c6cf5cca
Allow a module to provide a handler to override application settings: OnMetaModelStarted()
|
14 роки тому |
|
romainq
|
0b583ed73e
REVIEWED THE FILE INCLUSION POLICY
|
14 роки тому |
|
romainq
|
d66cba8756
#286 Issue with HTTPS - reviewed the fix implemented in [896]
|
14 роки тому |
|
dflaven
|
00c7bb1af3
Fixed Trac#300: each iTop instance now uses its own name for the cookie storing the session ID. Therefore several instances can coexist independently on the same server.
|
14 роки тому |
|
dflaven
|
b00c5af604
Code cleanup: proper usage of the ReadParam function.
|
15 роки тому |
|
dflaven
|
a22878ab1e
- Enhancement (Trac#189) first version of a (simple) End-Users portal.
|
15 роки тому |
|
romainq
|
ad68b89542
#260 Restrict some pages to administrators
|
15 роки тому |
|
dflaven
|
bda4221fb4
- Fixed bug #102: regression introduced with the encoding of passwords: users were no longer able to change their own password...
|
15 роки тому |
|
dflaven
|
cf212707ef
- Integrated fix for patch #188 - ForceHttps = SecureConnectionRequired
|
15 роки тому |
|
dflaven
|
f712f75eef
- Integrated all the authentications methods and various logon methods...
|
15 роки тому |
|
dflaven
|
9a604cfc9b
- Integrated all the authentications methods and various logon methods...
|
15 роки тому |
|
dflaven
|
f5903b2a46
- Check consistency of the retyped password when changing password
|
15 роки тому |
|
dflaven
|
a01f538f08
Fixed bug #102: allow users to change their password.
|
15 роки тому |
|
dflaven
|
df3ba5bedd
- Cosmetics: aligning the style in the different pages, make the iTop logo clickable, etc...
|
15 роки тому |
|
romainq
|
5a1b372fad
#19 - Reviewed the licensing information and started to align the comments in the code
|
15 роки тому |
|
romainq
|
770728b217
Cosmetics on the login page
|
15 роки тому |
|
dflaven
|
31bdcb13a5
- Implementation of the localization... on going...
|
15 роки тому |
