Commit Graph

171 Commits

Author SHA1 Message Date
Ralf Becker
4db172a6c2 - dont update the session dla, for the xajax notifications query, as it
stops sessions from timing out
- hook to be called when sessions get terminated
2008-08-05 11:36:06 +00:00
Ralf Becker
d90ce31491 hook to intercept session creation 2008-07-30 13:29:19 +00:00
Ralf Becker
95d15246b5 fixed not working SyncML, if NTLM auth is enabled: now both working together 2008-07-17 06:55:47 +00:00
Ralf Becker
b5c28fba48 1. NTLM Single Sign ON
NTLM SSO removes Windows users on a PC, which is a member of a Windows
domain and who are logged into that domain, from the need to explicitly log
into eGW.  They simply point IE to the eGW URL (eg. http://domain.com/egroupware/)
and start working. They can of cause explicitly log out and log in as an
other user.
For more information look at the README at
http://www.egroupware.org/viewvc/trunk/phpgwapi/ntml/README

2. different authentication for SyncML and/or GroupDAV
You can now use eg. an external auth provider for the login via the
WebGUI (eg. ADS) and the passwords stored in SQL for SyncML.
2008-07-16 09:29:13 +00:00
Ralf Becker
496f8b9c1a "extra param to session::create() to not create a session, eg. for GroupDAV clients know to not support cookies, eg. Apple's iCal" 2008-05-10 20:04:37 +00:00
Ralf Becker
ac04409df7 dynamically autoloading sub-object of egw-object, moved __wakeup methods to concerned classes and other "modernsations" ;-) 2008-03-21 20:50:13 +00:00
Lars Kneschke
09f1287d6c using the singleton passtern to get a instance of the accounts class and call the setAccountId function to set the accountId 2008-02-08 11:20:50 +00:00
Ralf Becker
b8f54d1408 "fixed IE cookie problem: IE seems not to care for the path when deleting cookies, beside using the oposite order in processing the cookies" 2007-05-24 10:11:35 +00:00
Ralf Becker
83a9989e57 "fixed IE cookie problem: IE seems not to care for the path when deleting cookies, beside using the oposite order in processing the cookies" 2007-05-24 10:10:20 +00:00
Ralf Becker
497cabb832 "fixed some 'funny' bugs if session-id is in the URL, by adding the session-related vars first (eg. creation of distribution lists does not work)" 2007-05-23 10:36:53 +00:00
Ralf Becker
d2f80cf8dc fixed SiteMgr session-problems by making the cookie path/domain configurable with more reasonable defaults then 1.4 has at the moment, making the display of * behind untranslated phrases an option which is by default off (as it anoyes users) and added a few more explenations to Admin >> Site configuration (plus removing not used ones) 2007-05-17 08:35:35 +00:00
Ralf Becker
54e479c408 "get WebDAV working again after the last change in the session class:
we can NOT clean the whole egw_info/server array, as this also cleans the variables set in the header, which get not re-read
--> we need to keep the important values: sessions_type and default_domain"
2007-04-07 09:44:39 +00:00
Lars Kneschke
0964862aa7 reset the db all other phpgwapi data if switching domains 2007-03-01 06:32:27 +00:00
Lars Kneschke
c58a299113 REQUEST_URI can contain also some get paramters 2007-02-05 16:01:29 +00:00
Ralf Becker
80d063e041 new param $path for egw_setcookie to optionally specify a path 2006-12-25 11:04:21 +00:00
Ralf Becker
8831acc1c4 fixed Pim's addition to the session class: session of the anon user is destroyed, if he tries to enter an application he has no rights to. The check was before the allowed applications have been read ;-) 2006-11-01 09:40:04 +00:00
Lars Kneschke
cf1dad6d52 when synchronizing using syncml, we already have php based session started
and we are (currently) not allowed to change the session_id later
to solve this problem, we simply return the current session_id in new_session_id()
2006-10-25 08:18:13 +00:00
Pim Snel
b3f8cf1512 Add to session verify: If User is Anonymous and enters a not allowed application its session will be destroyed inmediatly. 2006-10-13 12:49:03 +00:00
Ralf Becker
a6af26d8a9 - setting the cookie path, allows to login to different eGW installs (if you want to use this together with the 1.2, you have to copy the 3 modified session-classes there too)
- documentation update
2006-09-24 06:53:34 +00:00
Ralf Becker
1ea213f903 allow users with identical names as groups (LDAP) to login, thanks to Jan Lindemann <jan-at-jannet.de> 2006-08-15 03:15:55 +00:00
Lars Kneschke
fd297aad19 added support for commiting sessions(remove file lock for php sessions) 2006-06-23 19:09:38 +00:00
Ralf Becker
96ba93f773 use the new type parameter for accounts::name2id to specify accounts 2006-06-17 18:38:32 +00:00
Ralf Becker
98d8b30761 rewrite of the accounts classes:
- new cleaner AND documented interfaces
- old interfaces are still availible, but depricated
- LDAP backend stores now membership information in LDAP too, and does NO longer require the phpgwAccount schema
- LDAP backend deals now well with LDAP schema in which posixGroup is no structural object (eg. newer SuSE distros)
- password from users are done now binded as that user, so if you dont need/use our admin to manage accounts, you can give a root-dn which only allows to search&read accounts
2006-06-06 23:42:36 +00:00
Ralf Becker
32dc4fdb8b bugfix: url's containg var[]=val got corrupted 2006-05-17 05:53:12 +00:00
Ralf Becker
5ddc4a4f85 constructor of datetime need to be called after preferences are read (again), otherwise the tz-offset is not set - easy to verify from the other end of the world ;-) 2005-12-14 06:41:27 +00:00
Ralf Becker
24472f972d fixed not working sessionid in url 2005-11-29 13:05:20 +00:00
Ralf Becker
e9cfc86e19 fixed bug: missing param 5 in egw_db::insert, which stoped login, if display errors is on 2005-11-21 07:23:37 +00:00
Ralf Becker
1f37f024ca phpgw_access_log --> egw_access_log 2005-11-13 09:47:05 +00:00
Ralf Becker
0be34d315b code cleanup and link function allows now query in the url too 2005-11-11 23:07:29 +00:00
Ralf Becker
cd102084d5 reverted last commit, as &amp; in urls do not work in javascript, they only work as value in tags and we dont know for what the returnvalue of link() is used 2005-11-08 20:03:46 +00:00
Ralf Becker
c84bb21068 xhtml conforming url's 2005-11-08 17:53:04 +00:00
Ralf Becker
c85d34c0fe changed the following table-names:
- phpgw_accounts --> egw_accounts
- phpgw_acl --> egw_acl
- phpgw_log(_msg) --> egw_log(_msg)
- phpgw_config --> egw_config
- phpgw_applications --> egw_applications
This requires code-changes in many apps. Quite often I was able to replace the db access, with calls to the appropreate classes.
2005-11-02 11:45:52 +00:00
Ralf Becker
e2e0fd6446 Make the PHP session restore an own session type in manageheader. So you can switch it on and off, without the need to edit the code. At the moment it's off by default, with a note that it can give a big performance boost (if it works on your distro).
Please note: If you already edited your phpgwapi/inc/functions.inc.php to switch it off, you will get an cvs conflict on updating, just do a "cvs update -C phpgwapi/inc/functions.inc.php" to fix it. If you want to use the session restore or you already used it, you need to go to Setup >> Headeradmin and switch it on there.
2005-10-13 12:11:48 +00:00
Miles Lott
08b61a050e Fix for multiple domains via xml-rpc to ensure the correct domain 2005-08-14 17:01:30 +00:00
Ralf Becker
f99f2ef4e8 1) eGW enviroment (egw_info-array and egw-object) can now be stored in a php-session and restored from there. It is no longer necessary to create it on every page-request.
At the moment you need to log out to activate any changes in the config, preferences or the apps enabled for a user. This can be changed easily by invalidating the cache.
2) New way to create an anoymous session: you can specify a callback function, which gets called if the session could not be verified. The callback can use the DB or instanciate a config object to get the account-date, which it returns. A new session get then created.
2005-07-17 21:00:49 +00:00
Ralf Becker
b883eca49d new auth_ads class:
- only needs host- and domain-name
- needs NO extra account on the ADS host
- can be used with accounts in SQL or LDAP to auto-create autheticated users
- new param to lowercase the user-names before auto-creating them (to deal with case-insensitve and case-sensitive system)
2005-05-13 15:58:10 +00:00
Ralf Becker
6b2eb04274 $GLOBALS['phpgw{_info}'] ==> $GLOB ALS['egw{_info}'] 2005-03-04 11:30:00 +00:00
Ralf Becker
9a6b90e78f 1) enabled DB support additionaly for:
- Oracle via oci8 or odbc extension
- MsSql via odbc extension
2) added checks for the neccesary extension incl. loading them if they are not loaded by default: db extensions and session extension. This is now consitent wiht check_install.
3) sessions class tries now to load the php session extension and silently fallbacks to db-sessions
2005-02-25 07:45:37 +00:00
Ralf Becker
b313272616 fallback to db sessions if php's session extension is not loadable, atm. you get cryptic errors, bugs in the bugtracker and mails on the list ;-) 2005-02-21 07:57:41 +00:00
viniciuscb
78ac3f7122 Fix: Added support for e-mail in user_id. 2004-11-03 21:37:01 +00:00
Ralf Becker
257251fe00 fix for bug [ 1022807 ] users with some login names can't login 2004-09-08 13:16:54 +00:00
Ralf Becker
e109e8c320 removed destroying of the crypto object if the session-verification fails, as it leads to problems in sitemgr creation of anonymous sessions and it get cleaned up anyway by the shutdown function 2004-08-27 18:21:28 +00:00
Ralf Becker
d868007dac fixed some of our sessions problems:
- [ 1015846 ] Registering session MySQL query error
- handlich of timed out sessions for php4 sessions was wrong
==> I can't reproduce any more sessions probs, either with db nor php4 sessions
2004-08-27 13:17:25 +00:00
Ralf Becker
7e1da8f7ad 1) fix for cookie domain, when using a proxy which rewrites the host-name
2) also applied Benjamins fix for the link function from the 1.0 branch - thought I dont know what it fixes ;-)
2004-07-31 10:14:52 +00:00
reinerj
48f840d7de move from old projct to new one 2004-05-05 12:06:13 +00:00
Ralf Becker
3b94536b99 setcookie seems not to like domain-names without dots (it does not set the cookie at all, in that case). Leaving the domain-name empty, get setcookie to set the domain without dot by itself (its the default) ... 2004-04-27 07:54:56 +00:00
Ralf Becker
ffd1de75c6 fixed the not-always-working patch of 1.26 2004-04-19 10:08:06 +00:00
Lars Kneschke
94a05b4690 patch from Matthew Galgoci to make cookies work also with domain names
with more then 2 parts(hostname.domainname.de)
2004-04-13 05:28:01 +00:00
Ralf Becker
a88b08f274 dont log anonymous sessions 2004-04-02 17:24:31 +00:00
Ralf Becker
3ca724bf61 limit login-name in accesslog to 30 chars as the column is created in table 2004-03-28 14:58:45 +00:00