Ralf Becker
|
f55a668bdf
|
include user-data and common prefs like we already do it with eg. server config
|
2013-07-19 15:22:00 +00:00 |
|
Ralf Becker
|
d16c426fb6
|
first step towards content-security by passing parameters to egw.js script via data-attributes of script tag instead of using inline scripts in page
|
2013-07-19 08:45:26 +00:00 |
|
Ralf Becker
|
9af953e2b1
|
fixed accounts::search sometimes returning too many lines
|
2013-07-17 13:14:08 +00:00 |
|
Ralf Becker
|
792f1b26cc
|
replacing egw.LAB with egw_LAB, as egw object is shared by all iframes and popups, while LAB has to work on document
|
2013-07-17 12:47:21 +00:00 |
|
Ralf Becker
|
94926467d2
|
always check with "passwd_forbid_name" enabled, if setting of password failed
|
2013-07-16 14:57:06 +00:00 |
|
Ralf Becker
|
10436d5e41
|
fixed not being able to switch "forbid password to contain name" off again, after it has been switched on (caused by name "passwd_forbid_name")
|
2013-07-16 14:50:12 +00:00 |
|
Klaus Leithoff
|
2bdcd29582
|
pass acount_id to crackcheck, as it is required for crackcheck rule validation forbid_name
|
2013-07-16 10:42:31 +00:00 |
|
Ralf Becker
|
d48e8f4d84
|
* PostgreSQL: fix for SQL error eg. on update from 1.8.001 to 1.8.004 from 9.1 on
|
2013-07-16 06:47:54 +00:00 |
|
Ralf Becker
|
b54aef66e4
|
need to use own authentication method, to be able to auth user forced to change password and need to always recheck flag, if user are forced to change password, as otherwise he will be prompt again after changing it
|
2013-07-15 20:29:49 +00:00 |
|
Ralf Becker
|
526c938eec
|
* Active Directory: allow to do a forced password change in EGroupware and handle reset of that flag for Samba4 too
|
2013-07-15 20:01:01 +00:00 |
|
Ralf Becker
|
5f74357963
|
* WebDAV/CalDAV/CardDAV: fixed basic authentication via redirect-rule to use $_SERVER["REDIRECT_HTTP_AUTHORIZATION"] as it is used by newer Apache versions
|
2013-07-15 11:06:45 +00:00 |
|
Ralf Becker
|
e90a6e1d42
|
fixed again not working new account creation under AD agains Win2008r2
|
2013-07-15 08:10:03 +00:00 |
|
Ralf Becker
|
6898ee9cdb
|
* Admin/Preferences/Active Directory: more understandable password policy errors and using windows defaults only, if admin has not configured something else
|
2013-07-14 13:05:24 +00:00 |
|
Ralf Becker
|
6e6835ca8f
|
disable "account_lid" input, if backend (eg. AD) does not allow changing it
|
2013-07-13 08:34:04 +00:00 |
|
Ralf Becker
|
cb523f8400
|
* Admin/Active Directory: fixed not working display, setting and removing of "must change password upon next login"
|
2013-07-13 07:50:36 +00:00 |
|
Ralf Becker
|
5caa242314
|
* Admin/Active Directory: create new users with CN=<username> as Windows does and allow to configure profilePath, homeDirectory, homeDrive and scriptPath for new users
|
2013-07-09 15:26:59 +00:00 |
|
Klaus Leithoff
|
16014f8067
|
* API: fix for wrong (unexpected array) type passed in check_list
|
2013-07-08 08:04:41 +00:00 |
|
Hadi Nategh
|
86dfe42104
|
replace no longer existing depricated egw_info->user email and fullname
|
2013-07-04 17:45:20 +00:00 |
|
Ralf Becker
|
76ab4eee25
|
return account_expires and account_primary_group via accounts::search
|
2013-07-03 16:26:18 +00:00 |
|
Ralf Becker
|
4850efed1e
|
fix js error, when chosen is not loaded, eg. on admin >> manage accounts
|
2013-07-02 12:37:01 +00:00 |
|
Ralf Becker
|
bca1712229
|
fixed allowed memory size exceeded error, if trying to read history from a ldap or ads contact with an id starting with a letter, did an unlimited query for all history-log entries of addressbook
|
2013-06-29 16:44:55 +00:00 |
|
Ralf Becker
|
2702d01b34
|
* Admin/API/ADS: account creation did not set initial password
|
2013-06-29 09:30:22 +00:00 |
|
Ralf Becker
|
8325352e88
|
* Admin/Preferences/ADS: give explicit error, that AD requires SSL or TLS to change passwords (not just failing with unspecific error)
|
2013-06-29 08:51:02 +00:00 |
|
Ralf Becker
|
5e0c017129
|
remove old default of 7 for password length, as it allways checks for that default otherwise
|
2013-06-28 16:20:01 +00:00 |
|
Ralf Becker
|
287abb2b38
|
adding again error message and number from DB to exception thrown in case of SQL errors, also adding a new method to abstract MySQL group_contact for PostgreSQL 8.4+
|
2013-06-28 10:50:42 +00:00 |
|
Ralf Becker
|
a0cba996a0
|
display mail-address for groups in AD
|
2013-06-26 19:57:48 +00:00 |
|
Ralf Becker
|
5eea435035
|
fixed auth_sql to allow updating passwords of in-active accounts and return true for all successfull password changes as documented (returned false if password was unchanged and hash password on success)
|
2013-06-26 09:49:30 +00:00 |
|
Ralf Becker
|
ee41d4a09d
|
* Admin/API/LDAP: fixed not working pagination of accounts for 2. or further pages introduced by enabling caching again in last package
|
2013-06-26 08:12:17 +00:00 |
|
Ralf Becker
|
aa1426b8de
|
* Admin: split password strength config in minimum length and number of character types, allow account backends specially AD to report password policy failures
|
2013-06-25 16:37:44 +00:00 |
|
Ralf Becker
|
aa221a4e77
|
add tabs for each application
|
2013-06-25 13:14:27 +00:00 |
|
Ralf Becker
|
293d395472
|
allow auth backends to throw exceptions to give verbose error why password changing failed, auth_ads does now password strength check (even if not configured), as this is most likely cause for not changed password
|
2013-06-23 10:46:26 +00:00 |
|
Ralf Becker
|
c44be3ee6d
|
handle not available AD or LDAP connection with an exception, caught and just displayed within setup, so one can change ip or credentials
|
2013-06-23 09:58:08 +00:00 |
|
Ralf Becker
|
78efd4a604
|
* API: if re-connect to database fails for an existing session, stop execution with an exception, as otherwise eg. preferences can get lost
|
2013-06-20 13:30:58 +00:00 |
|
Ralf Becker
|
025c6a4c22
|
need to report expired accounts as NOT active and add ability to copy shadowExpire attribute from LDAP to AD (not done by samba-tool classicupgrade!)
|
2013-06-20 09:54:08 +00:00 |
|
Ralf Becker
|
7b9bcffb74
|
* Admin/ActiveDirectory: fixed only first N accounts where shown and turned accidently switched off caching in session on again
|
2013-06-20 07:45:08 +00:00 |
|
Ralf Becker
|
02e4c44624
|
* Addressbook/LDAP: recreation of contact (eg. because of missing objectclass) failed and lead to deleted contact or account
|
2013-06-18 10:45:00 +00:00 |
|
Ralf Becker
|
b993253dcd
|
* API: ancent APC (3.1.3) in Debian 6/Squezze has size in MB without a unit, this caused APC not to be used because of to small cache size
|
2013-06-18 06:35:12 +00:00 |
|
Nathan Gray
|
22f2b5599b
|
Only echo JSONResponse if it's non-empty
|
2013-06-12 21:06:16 +00:00 |
|
Ralf Becker
|
066ffc2c25
|
refactored account_id change script to use information from app-specific tables_current.inc.php instead of a fixed list
|
2013-06-12 16:57:44 +00:00 |
|
Nathan Gray
|
936c375a2d
|
Fix cache not being updated when clearing a preference
|
2013-06-11 22:43:42 +00:00 |
|
Ralf Becker
|
b6319b43cf
|
* API: allow to set a maximum caching time used instead of unlimited caching or a bigger time, eg. in header.inc.php: egw_caching::$max_expiration = 864000; // 10days
|
2013-06-10 09:55:22 +00:00 |
|
Ralf Becker
|
7e8db9b2fe
|
urlencode password to cope with url special chars like forward slash or @ in passwords
|
2013-06-03 19:32:26 +00:00 |
|
Klaus Leithoff
|
6270bc83f9
|
allow some nesting of div elements
|
2013-06-03 13:27:19 +00:00 |
|
Ralf Becker
|
d328af7cff
|
accounts addressbook incl. working updates for active directory
|
2013-06-01 17:55:33 +00:00 |
|
Ralf Becker
|
3996f8a936
|
* MySQL: got mysqli extension working and make it default for EGroupware, as mysql is now officially deprecated, existing installs need to be switched manually in header.inc.php or Setup >> Manage header
|
2013-05-26 09:32:41 +00:00 |
|
Ralf Becker
|
b9102b010c
|
* Sambaadmin: create new users/groups in LDAP with uidNumber/gidNumber matching relative id (last part of SID) to ease migration to AD or Samba4
|
2013-05-25 11:07:38 +00:00 |
|
Ralf Becker
|
8c6fd8d936
|
changes to create users and set passwords on win2008r2
|
2013-05-24 17:08:15 +00:00 |
|
Ralf Becker
|
9ecefc6b79
|
* LDAP: only check for matching system users, if a new account get added, as existing accounts can be reported - depending on configuration - as system users too
|
2013-05-23 17:09:59 +00:00 |
|
Klaus Leithoff
|
a7944a3b76
|
fix problem regarding the ability to save a groups emailaddress
|
2013-05-23 13:48:51 +00:00 |
|
Ralf Becker
|
4037993dc5
|
* API: full support of active directory as account storage, tested so far with Samba4
|
2013-05-22 17:22:20 +00:00 |
|