ralf
242e055f53
* ActiveDirectory: allow to configure an optional group-context
...
also fixes problems with Univention AD storing stock groups (eg. Domain Users) in a different OU=Groups than users
2022-06-30 16:44:51 +02:00
ralf
970c22b2a2
some fixes for LDAP/ADS account import:
...
- fix not working "Users, groups and memberships" option
- calling add/edit account/group hooks to eg. create home-directories and mail-accounts
2022-06-30 15:17:19 +02:00
ralf
2dd3a25b35
WIP ADS/LDAP account import:
...
- implement import from groups and memberships
--> ToDo: deleting of accounts and testing with LDAP
2022-06-28 22:21:08 +02:00
ralf
e28329b1d7
WIP ADS/LDAP account-import:
...
- refactored to a class
- added async import and logging
--> ToDo: groups, deleting of users and testing with LDAP
2022-06-28 16:58:38 +02:00
ralf
ee58655ce6
WIP ADS/LDAP account-sync:
...
- using (simple) paged result for initial sync
- incremental sync uses modification time
- currently only user and no periodic sync yet
2022-06-27 21:08:34 +02:00
ralf
ab427562b7
* LDAP: implement optional group-filter
...
also some code cleanups and fixes
2022-05-20 21:47:02 +02:00
Ralf Becker
673760f59d
* Setup/SAML: fix not stored custome OID and added eduPersonUniqueId
2021-04-07 10:07:56 +02:00
Ralf Becker
3c956d0144
* Saml/Shiboleth/SmallPART: allow to use affiliation attribute to sync with Teachers group
2020-10-30 11:44:49 +01:00
Ralf Becker
3ee7574294
* Authentication: allow using multiple backends, even same backend multiple times with different configuration
2020-09-10 17:12:53 +02:00
Ralf Becker
c3000beb5f
* ActiveDirectory: implement addtional user or group filter
2020-09-02 14:14:11 +02:00
Ralf Becker
73515cd412
fix wrong idp example
2020-06-19 14:21:29 +02:00
Ralf Becker
b7ed148371
* SAML: support joining a SAML account to an existing one, if configured in setup
...
notification of user does not yet work, as redirect on login page looses Api\Framework::message() :(
2020-06-11 16:03:54 +02:00
Ralf Becker
4c131c1866
SAML/Shibboleth with multiple IdP or optional on regular login page
2020-06-10 15:19:24 +02:00
Ralf Becker
b1f79d1c40
* SAML/Shibboleth/SimpleSAMLphp authentication configurable through setup
2020-05-28 23:24:09 +02:00
Ralf Becker
2776d215e2
* Login: RememberMe token for either automatic login or as 2. factor for 2-Factor-Auth
2019-08-03 18:37:18 +02:00
Hadi Nategh
49abce8235
Fix wrongly spelled EGroupware name
2018-04-11 15:13:39 +02:00
Ralf Becker
7af18ff895
remove SyncML Authentication config
2016-06-09 16:20:18 +02:00
Ralf Becker
c14f25c0e8
hide spellchecker config and always use browser native spellchecker
2016-04-25 20:14:47 +00:00
Ralf Becker
6c7026fa52
* Setup: support mail authentication without PHP imap extension
2015-06-10 15:44:01 +00:00
Ralf Becker
753ce75b15
using univention-directory-manager cli to create not accounts to get Kerberos stuff addded
2014-11-05 20:27:52 +00:00
Ralf Becker
d5cb4112b5
* Setup: fixed fatal error "Cannot redeclare auth_type()", when there is a validation error on saving configuration
2014-07-03 12:46:08 +00:00
Ralf Becker
9602d061ad
* Setup: re-add config for mail authentication and fixed it to always try to use a TLS connection
2014-05-17 08:00:17 +00:00
Ralf Becker
fa5d0affb2
remove mail stuff from interactive setup
2014-04-09 07:46:48 +00:00
Ralf Becker
1ee480eaa3
remove configurable image-type preference in favor to hardcoded one always prefering png over gif, also removed all .gif images which have a png counterpart
2013-12-05 02:04:59 +00:00
Ralf Becker
5caa242314
* Admin/Active Directory: create new users with CN=<username> as Windows does and allow to configure profilePath, homeDirectory, homeDrive and scriptPath for new users
2013-07-09 15:26:59 +00:00
Ralf Becker
aa1426b8de
* Admin: split password strength config in minimum length and number of character types, allow account backends specially AD to report password policy failures
2013-06-25 16:37:44 +00:00
Ralf Becker
b8ce46782c
re-order ADS above CAS, as it now also allowed for account storage and translations
2013-05-25 09:15:17 +00:00
Ralf Becker
8c6fd8d936
changes to create users and set passwords on win2008r2
2013-05-24 17:08:15 +00:00
Ralf Becker
4037993dc5
* API: full support of active directory as account storage, tested so far with Samba4
2013-05-22 17:22:20 +00:00
Ralf Becker
fc074d0856
account migration changes now account_repository and auth_type to migration type (no need to store that type first)
2012-11-20 15:32:23 +00:00
Klaus Leithoff
d2f4d36355
more work regarding the implementation of the new feature that allows to specify smtp auth credentials for alarms/notifications only (otherwise credentials of corrent user are used)
2011-10-06 09:13:48 +00:00
Ralf Becker
574911d077
* Setup/API: new option to enforce ssl (without specifying a domain in Webserver-URL)
2011-05-31 13:33:26 +00:00
Ralf Becker
86be53f4a3
showing ssha as default and sorting it as top option
2011-05-04 13:47:44 +00:00
Philip Herbert
ea1ef050b8
allow to set auth type used for activesync in setup
2011-03-28 09:45:28 +00:00
Ralf Becker
dbfb13ce5c
fix broken alternating line colors
2010-12-19 21:16:43 +00:00
Ralf Becker
871e5718af
using one list of auth-types (in order of importance) and detecting additional ones in the filesystem
2010-09-10 09:26:17 +00:00
Ralf Becker
bfc3b262b3
rest to implement support for different mailbox names types / mail_login_types
2010-08-31 10:13:28 +00:00
Ralf Becker
b40f14a95e
new setup config denying (default) or allowing user names identical to system users (ldap only)
2010-03-16 16:33:28 +00:00
Ralf Becker
1555115be7
moved aspell_path config to setup, vor obvious reasons
2010-02-14 05:51:51 +00:00
Ralf Becker
61d26df913
reworked auth classes, to allow them to use each other and a new auth class using a primary backend (ldap) and a fallback (sql)
2010-01-28 04:22:37 +00:00
Klaus Leithoff
317b956d32
adding email as authtype to setuptemplate
2009-09-15 15:18:03 +00:00
Ralf Becker
fde8fc7b27
CAS (Central Authentication Service) login for eGroupware
2008-11-15 10:54:39 +00:00
Ralf Becker
5632e41d9e
- fix for bug #1813 : Setting files to world readable does not work.
...
- check and give error message if perms could not be changed
- added sudo feature to file preferences allowing to get VFS root access
+ setup config user/password can always be used
+ further eGW users can be configured in setup >> configuration
--> allows eg. to create free folders in the vfs root
--> should be used with caution and respect to users privacy
- added file preferences icon to opened directory (eg. for the root dir)
2008-11-09 16:33:09 +00:00
Ralf Becker
025b54917a
new translation and removing not longer used ones
2008-10-09 17:08:52 +00:00
Ralf Becker
9e3281799f
Allow to change the where VFS stores the content of files:
...
1. filesystem (default)
2. database (problems with files > 1mb)
3. custome set via filemanager/cli.php mount
--> If you can only access the docroot, you can use 2. AND set the files
directory to the path for temp. files
2008-10-02 15:30:44 +00:00
Ralf Becker
b5c28fba48
1. NTLM Single Sign ON
...
NTLM SSO removes Windows users on a PC, which is a member of a Windows
domain and who are logged into that domain, from the need to explicitly log
into eGW. They simply point IE to the eGW URL (eg. http://domain.com/egroupware/ )
and start working. They can of cause explicitly log out and log in as an
other user.
For more information look at the README at
http://www.egroupware.org/viewvc/trunk/phpgwapi/ntml/README
2. different authentication for SyncML and/or GroupDAV
You can now use eg. an external auth provider for the login via the
WebGUI (eg. ADS) and the passwords stored in SQL for SyncML.
2008-07-16 09:29:13 +00:00
Ralf Becker
cbb98a4f44
"removed possebility to select POP in setup"
2007-05-25 18:35:57 +00:00
Ralf Becker
ba2ff67fbf
changed smtp-password input to type password, thanks to Flavio Henrique for the info
2006-07-13 15:07:59 +00:00
Ralf Becker
a7ecb209a9
- new account-migration script which replace the former import and export
...
- retired the modifiy script as it's no longer necessary
- removed references and translations of the old scripts
- removed ldap version 3 switch from config
2006-06-07 23:10:06 +00:00
Cornelius Weiß
51ca785916
add autologin for anonymous user as we need to have on community.egroupware.org
2006-06-07 14:52:10 +00:00