Commit Graph

197 Commits

Author SHA1 Message Date
ralf
3048b2ce19 * ActiveDirectory/LDAP: implemented deleting of accounts via full/initial import, periodic import does NOT delete 2022-07-06 17:09:28 +02:00
ralf
739e123569 * ActiveDirectory: allow to configure an optional group-context
also fixes problems with Univention AD storing stock groups (eg. Domain Users) in a different OU=Groups than users
2022-06-30 16:45:46 +02:00
ralf
b813f403a7 some fixes for LDAP/ADS account import:
- fix not working "Users, groups and memberships" option
- calling add/edit account/group hooks to eg. create home-directories and mail-accounts
2022-06-30 15:17:52 +02:00
ralf
22c42a8caf * ADS/LDAP: periodic import of account into SQL database
- import from users, groups and memberships
- using (simple) paged result to kope with result size limitation from LDAP servers
- incremental sync uses modification time
- async import job and logging
--> ToDo: deleting of accounts and testing with LDAP
2022-06-30 09:22:13 +02:00
ralf
1a0dd6214e * LDAP: implement optional group-filter
also some code cleanups and fixes
2022-05-20 21:52:09 +02:00
Ralf Becker
673760f59d * Setup/SAML: fix not stored custome OID and added eduPersonUniqueId 2021-04-07 10:07:56 +02:00
Ralf Becker
51edbcf34e fix logo size in setup 2021-02-26 11:52:26 +02:00
Ralf Becker
3c956d0144 * Saml/Shiboleth/SmallPART: allow to use affiliation attribute to sync with Teachers group 2020-10-30 11:44:49 +01:00
Ralf Becker
3ee7574294 * Authentication: allow using multiple backends, even same backend multiple times with different configuration 2020-09-10 17:12:53 +02:00
Ralf Becker
c3000beb5f * ActiveDirectory: implement addtional user or group filter 2020-09-02 14:14:11 +02:00
Ralf Becker
73515cd412 fix wrong idp example 2020-06-19 14:21:29 +02:00
Ralf Becker
b7ed148371 * SAML: support joining a SAML account to an existing one, if configured in setup
notification of user does not yet work, as redirect on login page looses Api\Framework::message() :(
2020-06-11 16:03:54 +02:00
Ralf Becker
4c131c1866 SAML/Shibboleth with multiple IdP or optional on regular login page 2020-06-10 15:19:24 +02:00
Ralf Becker
b1f79d1c40 * SAML/Shibboleth/SimpleSAMLphp authentication configurable through setup 2020-05-28 23:24:09 +02:00
Ralf Becker
2776d215e2 * Login: RememberMe token for either automatic login or as 2. factor for 2-Factor-Auth 2019-08-03 18:37:18 +02:00
Hadi Nategh
49abce8235 Fix wrongly spelled EGroupware name 2018-04-11 15:13:39 +02:00
Ralf Becker
37957a49f4 update/add support options in setup and about EGroupware page 2018-01-29 10:20:18 +01:00
Ralf Becker
7af18ff895 remove SyncML Authentication config 2016-06-09 16:20:18 +02:00
Ralf Becker
33605585e2 move default login and head templates from idots to api/templates/default and some other fixes to fix up non-Pixelegg login and old templates 2016-05-05 13:29:41 +00:00
Ralf Becker
c15fcdfb52 WIP egw installs now without phpgwapi and allows to login 2016-05-02 22:26:40 +00:00
Ralf Becker
c14f25c0e8 hide spellchecker config and always use browser native spellchecker 2016-04-25 20:14:47 +00:00
Ralf Becker
978f8e282d show api version instead of phpgwapi 2016-04-02 20:25:01 +00:00
Ralf Becker
6c7026fa52 * Setup: support mail authentication without PHP imap extension 2015-06-10 15:44:01 +00:00
Ralf Becker
e5b3a83693 allow to update passwords from LDAP, if accounts stored in SQL and authentication is against LDAP 2014-11-17 12:19:56 +00:00
Ralf Becker
753ce75b15 using univention-directory-manager cli to create not accounts to get Kerberos stuff addded 2014-11-05 20:27:52 +00:00
Ralf Becker
d5cb4112b5 * Setup: fixed fatal error "Cannot redeclare auth_type()", when there is a validation error on saving configuration 2014-07-03 12:46:08 +00:00
Ralf Becker
6a016fac3f prevent false CSRF warning, if DB schema upgrade is needed 2014-06-24 08:43:46 +00:00
Ralf Becker
9602d061ad * Setup: re-add config for mail authentication and fixed it to always try to use a TLS connection 2014-05-17 08:00:17 +00:00
Ralf Becker
544d57ca46 prevent CSRF for setup and admin site configuration 2014-05-01 06:26:09 +00:00
Ralf Becker
fa5d0affb2 remove mail stuff from interactive setup 2014-04-09 07:46:48 +00:00
Ralf Becker
aeffdb3c4b remove home from EGroupware url in setup 2014-02-22 17:11:21 +00:00
Ralf Becker
332d4e5a42 removed gif images for which we have a png image available, as png is now supported by all browsers 2014-02-03 14:04:39 +00:00
Ralf Becker
1ee480eaa3 remove configurable image-type preference in favor to hardcoded one always prefering png over gif, also removed all .gif images which have a png counterpart 2013-12-05 02:04:59 +00:00
Ralf Becker
aa75f22671 fixed changed name of bullet in sidebox 2013-11-29 00:41:32 +00:00
Ralf Becker
5caa242314 * Admin/Active Directory: create new users with CN=<username> as Windows does and allow to configure profilePath, homeDirectory, homeDrive and scriptPath for new users 2013-07-09 15:26:59 +00:00
Ralf Becker
aa1426b8de * Admin: split password strength config in minimum length and number of character types, allow account backends specially AD to report password policy failures 2013-06-25 16:37:44 +00:00
Ralf Becker
b8ce46782c re-order ADS above CAS, as it now also allowed for account storage and translations 2013-05-25 09:15:17 +00:00
Ralf Becker
8c6fd8d936 changes to create users and set passwords on win2008r2 2013-05-24 17:08:15 +00:00
Ralf Becker
eaf3e6e1a5 offer to delete all existing accounts from SQL tables, before migration to it 2013-05-23 14:33:14 +00:00
Ralf Becker
4037993dc5 * API: full support of active directory as account storage, tested so far with Samba4 2013-05-22 17:22:20 +00:00
Ralf Becker
fc074d0856 account migration changes now account_repository and auth_type to migration type (no need to store that type first) 2012-11-20 15:32:23 +00:00
Ralf Becker
a709f6104f * Setup/API: translations are no longer installed in database, but loaded directly from lang-files into tree-level cache 2012-11-05 12:18:22 +00:00
Ralf Becker
186bd29e0d manually including traditional.css, as setup does not resolve commented @include in css files 2012-10-26 09:06:34 +00:00
Ralf Becker
03fe6356cb allow to create an instance specific admin, user- or group-context 2012-10-12 13:35:20 +00:00
Ralf Becker
f3574b59bc allow to specify grant host for database creation 2012-10-12 10:57:21 +00:00
Ralf Becker
508c3c5517 * Admin/Setup: button to mount backup directory under /backup into VFS 2012-03-27 11:20:08 +00:00
Klaus Leithoff
d2f4d36355 more work regarding the implementation of the new feature that allows to specify smtp auth credentials for alarms/notifications only (otherwise credentials of corrent user are used) 2011-10-06 09:13:48 +00:00
Ralf Becker
574911d077 * Setup/API: new option to enforce ssl (without specifying a domain in Webserver-URL) 2011-05-31 13:33:26 +00:00
Ralf Becker
86be53f4a3 showing ssha as default and sorting it as top option 2011-05-04 13:47:44 +00:00
Philip Herbert
ea1ef050b8 allow to set auth type used for activesync in setup 2011-03-28 09:45:28 +00:00