summaryrefslogtreecommitdiffstats
path: root/etc/inc/auth.inc
Commit message (Expand)AuthorAgeFilesLines
* Something in the LDAP libraries has changed and it no longer likes spaces in ...jim-p2013-01-141-5/+5
* Supress the error message if the ldap bind doesnt happenWarren Baker2012-07-271-1/+1
* Wrong branchErmal2012-06-051-5/+3
* Import OpenVPN cisco style radius attributes applying policy to logged in use...Ermal2012-06-051-3/+5
* Do not allow empty passwords since this might cause problems for some authent...Ermal2012-05-301-1/+1
* Handle HTTPOnly and Secure flags on cookiesWarren Baker2012-05-091-0/+12
* Looking at pw code : chars are invalid in a comment fieldgit diff! Replace th...Ermal2012-03-121-1/+2
* Another try to eliminate the warning 'PHP Warning: Cannot modify header info...Ermal2012-02-081-1/+2
* Include admin user in bootup account syncjim-p2012-01-251-6/+2
* Be more careful when creating and removing a user, to only alter a user if it...jim-p2012-01-231-3/+15
* Ticket #1052. Merge patch referenced in ticket.Ermal2011-11-141-5/+5
* Do not pass the ldap port separately, but add it to the LDAP URL. PHP's ldap_...jim-p2011-10-251-24/+19
* Include certs.inc before calling lookup_ca in auth.inc. Fixes #1927jim-p2011-10-051-0/+1
* Check that we have user password otherwise strange things happen if tehre is ...Ermal2011-09-281-0/+5
* Correct array key typo mistake. Ticket #1052Ermal2011-08-081-3/+3
* Ticket #1052. Enforce certificates if they are present for authenticating to ...Ermal2011-07-151-5/+43
* Add proper checks in auth code for testing if the section has been set in the...Ermal2011-06-281-6/+10
* Add an IPsec xauth permission. Try to use the nologin shell first (just unloc...jim-p2011-04-081-0/+2
* Make it possible to turn off successful login messages, this should quiet the...smos2011-03-021-1/+3
* Silence warnings.Ermal2011-01-261-2/+2
* allow 127.0.0.1 and localhost for HTTP_REFERER checksChris Buechler2011-01-091-0/+4
* Correct webConfgurator auth/error messagesScott Ullrich2010-12-101-2/+2
* Add log_auth() which with send items to syslogd using LOG_AUTH facilities. U...Scott Ullrich2010-12-101-3/+2
* Switches must come after the user name when using pw lock/unlock.Erik Fonnesbeck2010-12-031-1/+1
* Remove authorized_keys file when there are no authorized keys for the user.Erik Fonnesbeck2010-12-031-1/+2
* Add successful user for sshlockoutScott Ullrich2010-11-301-1/+1
* Reword auth error message to match ssh for the most partScott Ullrich2010-11-301-2/+3
* Revert "Add Active Directory group membership checking Ticket #1009"Scott Ullrich2010-11-291-83/+78
* Add Active Directory group membership checking Ticket #1009Scott Ullrich2010-11-291-78/+83
* Don't consider the HTTP referrer check as passing if it was skipped. Ticket #...Erik Fonnesbeck2010-11-211-1/+2
* Upon restoring a config, replacing whole sections, or editing config.xml in e...Erik Fonnesbeck2010-11-211-4/+18
* Various fixes and improvements for the DNS rebind and HTTP referrer checks.Erik Fonnesbeck2010-11-181-33/+34
* Add workaround for referrer check to not be triggered on the previous IP addr...Erik Fonnesbeck2010-11-171-9/+20
* Make sure this isn't searching the referrer using a blank host or IP, which w...Erik Fonnesbeck2010-11-151-3/+12
* Fix case for testing the referrer check setting. Ticket #1011Erik Fonnesbeck2010-11-151-1/+1
* Don't perform referer check if display_error_form is not defined (captive por...Erik Fonnesbeck2010-11-141-1/+1
* Unset this reference before reusing the variable name to prevent corruption o...Erik Fonnesbeck2010-11-131-0/+2
* Fix a theoretical/potential XSS in the http_referer check warning.jim-p2010-11-121-1/+1
* Correct HTTP_REFERER check when using an IP Address vs the Firewalls hostnameScott Ullrich2010-11-101-1/+1
* Remove trailing carriage returnScott Ullrich2010-11-101-1/+1
* * Adding function get_configured_ip_addresses() which returns all interfaces ...Scott Ullrich2010-11-101-0/+26
* Do not require LDAP search base DN. Requiring this can prevent some valid LDA...jim-p2010-10-271-1/+1
* Add a note to the DNS Rebinding protection error letting the user know to try...jim-p2010-10-251-1/+1
* Convert fullname field on users to descr, so it gains CDATA protection.jim-p2010-10-191-1/+1
* Test before working on what could be an empty value, otherwise it ends up set...jim-p2010-09-281-0/+2
* Check for proper type.Ermal2010-09-081-2/+2
* Avoid a warning on this code when there is no member for a group.Ermal2010-08-171-2/+2
* Adapt to use 2.0's accountsScott Ullrich2010-08-151-3/+3
* Make sure this variable is an array before performing array operations upon it.jim-p2010-08-021-3/+5
* Move the required once in a more appropriate place.Ermal2010-07-281-1/+2
OpenPOWER on IntegriCloud