Commit Graph

6986 Commits

Author SHA1 Message Date
Ralf Becker
d16c426fb6 first step towards content-security by passing parameters to egw.js script via data-attributes of script tag instead of using inline scripts in page 2013-07-19 08:45:26 +00:00
Nathan Gray
ba0fd9fa22 Update jQuery & jQuery UI to latest versions 2013-07-18 15:21:15 +00:00
Ralf Becker
9af953e2b1 fixed accounts::search sometimes returning too many lines 2013-07-17 13:14:08 +00:00
Ralf Becker
792f1b26cc replacing egw.LAB with egw_LAB, as egw object is shared by all iframes and popups, while LAB has to work on document 2013-07-17 12:47:21 +00:00
Ralf Becker
94926467d2 always check with "passwd_forbid_name" enabled, if setting of password failed 2013-07-16 14:57:06 +00:00
Ralf Becker
10436d5e41 fixed not being able to switch "forbid password to contain name" off again, after it has been switched on (caused by name "passwd_forbid_name") 2013-07-16 14:50:12 +00:00
Klaus Leithoff
b04ee25e07 wrap a set_preferences call in LAB.wait to avoid run time problems 2013-07-16 14:48:49 +00:00
Klaus Leithoff
2bdcd29582 pass acount_id to crackcheck, as it is required for crackcheck rule validation forbid_name 2013-07-16 10:42:31 +00:00
Ralf Becker
d48e8f4d84 * PostgreSQL: fix for SQL error eg. on update from 1.8.001 to 1.8.004 from 9.1 on 2013-07-16 06:47:54 +00:00
Ralf Becker
b54aef66e4 need to use own authentication method, to be able to auth user forced to change password and need to always recheck flag, if user are forced to change password, as otherwise he will be prompt again after changing it 2013-07-15 20:29:49 +00:00
Ralf Becker
526c938eec * Active Directory: allow to do a forced password change in EGroupware and handle reset of that flag for Samba4 too 2013-07-15 20:01:01 +00:00
Nathan Gray
744345d751 Change egw.open() (which accepts _blank, _self, etc. as targets) to not pass invalid parameters to egw_link_handler() (which only accepts app names). 2013-07-15 16:03:37 +00:00
Ralf Becker
5f74357963 * WebDAV/CalDAV/CardDAV: fixed basic authentication via redirect-rule to use $_SERVER["REDIRECT_HTTP_AUTHORIZATION"] as it is used by newer Apache versions 2013-07-15 11:06:45 +00:00
Ralf Becker
e90a6e1d42 fixed again not working new account creation under AD agains Win2008r2 2013-07-15 08:10:03 +00:00
Ralf Becker
6898ee9cdb * Admin/Preferences/Active Directory: more understandable password policy errors and using windows defaults only, if admin has not configured something else 2013-07-14 13:05:24 +00:00
Ralf Becker
6e6835ca8f disable "account_lid" input, if backend (eg. AD) does not allow changing it 2013-07-13 08:34:04 +00:00
Ralf Becker
cb523f8400 * Admin/Active Directory: fixed not working display, setting and removing of "must change password upon next login" 2013-07-13 07:50:36 +00:00
Ralf Becker
5caa242314 * Admin/Active Directory: create new users with CN=<username> as Windows does and allow to configure profilePath, homeDirectory, homeDrive and scriptPath for new users 2013-07-09 15:26:59 +00:00
Klaus Leithoff
16014f8067 * API: fix for wrong (unexpected array) type passed in check_list 2013-07-08 08:04:41 +00:00
Hadi Nategh
86dfe42104 replace no longer existing depricated egw_info->user email and fullname 2013-07-04 17:45:20 +00:00
Ralf Becker
76ab4eee25 return account_expires and account_primary_group via accounts::search 2013-07-03 16:26:18 +00:00
Ralf Becker
4850efed1e fix js error, when chosen is not loaded, eg. on admin >> manage accounts 2013-07-02 12:37:01 +00:00
Ralf Becker
ffceaf445a prototype for an admin app using et2 and a navigation tree, need to set index url in database: UPDATE egw_applications SET app_index="admin.admin_ui.index&ajax=true" WHERE app_name="admin" (dont forget to clear cache) 2013-07-01 17:07:07 +00:00
Ralf Becker
bca1712229 fixed allowed memory size exceeded error, if trying to read history from a ldap or ads contact with an id starting with a letter, did an unlimited query for all history-log entries of addressbook 2013-06-29 16:44:55 +00:00
Ralf Becker
2702d01b34 * Admin/API/ADS: account creation did not set initial password 2013-06-29 09:30:22 +00:00
Ralf Becker
8325352e88 * Admin/Preferences/ADS: give explicit error, that AD requires SSL or TLS to change passwords (not just failing with unspecific error) 2013-06-29 08:51:02 +00:00
Ralf Becker
5e0c017129 remove old default of 7 for password length, as it allways checks for that default otherwise 2013-06-28 16:20:01 +00:00
Ralf Becker
287abb2b38 adding again error message and number from DB to exception thrown in case of SQL errors, also adding a new method to abstract MySQL group_contact for PostgreSQL 8.4+ 2013-06-28 10:50:42 +00:00
Ralf Becker
0c1e3f7ed4 forgotten phrases for password strengh 2013-06-27 14:45:29 +00:00
Ralf Becker
a0cba996a0 display mail-address for groups in AD 2013-06-26 19:57:48 +00:00
Ralf Becker
5eea435035 fixed auth_sql to allow updating passwords of in-active accounts and return true for all successfull password changes as documented (returned false if password was unchanged and hash password on success) 2013-06-26 09:49:30 +00:00
Ralf Becker
ee41d4a09d * Admin/API/LDAP: fixed not working pagination of accounts for 2. or further pages introduced by enabling caching again in last package 2013-06-26 08:12:17 +00:00
Ralf Becker
aa1426b8de * Admin: split password strength config in minimum length and number of character types, allow account backends specially AD to report password policy failures 2013-06-25 16:37:44 +00:00
Ralf Becker
aa221a4e77 add tabs for each application 2013-06-25 13:14:27 +00:00
Ralf Becker
4ef222e7ff allow to use protocol independent url like "//host/path/to/logo.png" for logo in admin site configuration 2013-06-24 07:45:11 +00:00
Ralf Becker
293d395472 allow auth backends to throw exceptions to give verbose error why password changing failed, auth_ads does now password strength check (even if not configured), as this is most likely cause for not changed password 2013-06-23 10:46:26 +00:00
Ralf Becker
c44be3ee6d handle not available AD or LDAP connection with an exception, caught and just displayed within setup, so one can change ip or credentials 2013-06-23 09:58:08 +00:00
Ralf Becker
78efd4a604 * API: if re-connect to database fails for an existing session, stop execution with an exception, as otherwise eg. preferences can get lost 2013-06-20 13:30:58 +00:00
Ralf Becker
025c6a4c22 need to report expired accounts as NOT active and add ability to copy shadowExpire attribute from LDAP to AD (not done by samba-tool classicupgrade!) 2013-06-20 09:54:08 +00:00
Ralf Becker
7b9bcffb74 * Admin/ActiveDirectory: fixed only first N accounts where shown and turned accidently switched off caching in session on again 2013-06-20 07:45:08 +00:00
Nathan Gray
db75f272b8 Re-add lost reset methods 2013-06-18 14:32:36 +00:00
Ralf Becker
02e4c44624 * Addressbook/LDAP: recreation of contact (eg. because of missing objectclass) failed and lead to deleted contact or account 2013-06-18 10:45:00 +00:00
Ralf Becker
b993253dcd * API: ancent APC (3.1.3) in Debian 6/Squezze has size in MB without a unit, this caused APC not to be used because of to small cache size 2013-06-18 06:35:12 +00:00
Nathan Gray
4f21c927cd Some of the latest changes from chosen library 2013-06-17 22:57:21 +00:00
Nathan Gray
5bb349eb7a Prevent too narrow chosen boxes 2013-06-17 22:01:11 +00:00
Klaus Leithoff
079b919bbe russian translations provided by Vladimir Gavrilov (MBC-Group) 2013-06-17 12:30:44 +00:00
Nathan Gray
22f2b5599b Only echo JSONResponse if it's non-empty 2013-06-12 21:06:16 +00:00
Ralf Becker
933be21758 link-table stores accounts for app="home-accounts" 2013-06-12 18:11:11 +00:00
Nathan Gray
44e96714af Fix adding distribution list (& maybe some other link issues) by looking for framework's link handler in open_link() 2013-06-12 17:04:42 +00:00
Ralf Becker
066ffc2c25 refactored account_id change script to use information from app-specific tables_current.inc.php instead of a fixed list 2013-06-12 16:57:44 +00:00