summaryrefslogtreecommitdiffstats
path: root/etc/inc/auth.inc
Commit message (Expand)AuthorAgeFilesLines
* Fix pw syntax when local_group_set() is called with reset == true, -M always ...Renato Botelho2014-11-171-1/+1
* Add an extra protection to avoid having an empty group createdRenato Botelho2014-11-131-1/+1
* Actually require group name!Ermal2014-11-111-1/+1
* Do not do operations for empty group membersErmal2014-11-111-1/+4
* remove old DISABLE_PHP_LINT_CHECKING, which dates way back to the CVS days an...Chris Buechler2014-11-041-1/+0
* Detect when protocol changes and invalidate session to get a new cookie with ...Renato Botelho2014-07-181-0/+5
* Always set httponly attribute on cookiesRenato Botelho2014-06-181-10/+8
* Add comment I forgot on last commitRenato Botelho2014-06-171-0/+1
* Re-generate session ID on a successful login to avoid session fixationRenato Botelho2014-06-171-0/+1
* Replace Header() calls by lowercaseRenato Botelho2014-06-131-1/+1
* Merge branch 'master-br' of https://github.com/ayvis/pfsense into ayvis-maste...Renato Botelho2014-03-171-5/+5
|\
| * xhtml Complianceayvis2014-03-141-5/+5
* | standardize URLsChris Buechler2014-03-141-1/+1
|/
* Rmoeve register_long_arrays from php.ini and from php code the use of HTTP_*_...Ermal2013-12-201-3/+1
* Provide a more safe way to avoid pw userdel being interactive because of a cr...Renato Botelho2013-11-141-0/+5
* Revert "local_sync_accounts: provides empty STDIN to pw userdel command"Renato Botelho2013-11-141-1/+1
* local_sync_accounts: provides empty STDIN to pw userdel commandKy-Anh Huynh2013-11-131-1/+1
* Revert "Add conf_mount_rw calls on functions that changes user/groups. It fix...Renato Botelho2013-11-021-12/+0
* Add conf_mount_rw calls on functions that changes user/groups. It fixes #3294Renato Botelho2013-11-011-0/+12
* Add LDAP server options to control UTF8-encoding of parameters. Fixes #2227. ...jim-p2013-07-171-5/+19
* Ignore errors/warnings from these callsErmal2013-07-151-6/+6
* Include both dyndns and rfc2136 hosts in referer checkjim-p2013-07-021-0/+16
* Include RFC2136 hosts in DNS rebinding checks.jim-p2013-07-021-0/+7
* Set LDAP option to dereference aliases when searchingAndrew MacIsaac2013-04-021-0/+4
* Print the error message from LDAP in the log for a bind failure.jim-p2013-03-061-1/+1
* Add a knob in the GUI to set the RADIUS authentication timeout. Previous defa...jim-p2013-02-131-2/+5
* Something in the LDAP libraries has changed and it no longer likes spaces in ...jim-p2013-01-141-5/+5
* Removing gettext from strins that should not be translatedVinicius Coque2013-01-051-2/+2
* Put these logs under debug since that's their purposeErmal2012-11-191-1/+2
* Put these logs under debug since that's their purposeErmal2012-11-191-2/+4
* authentication, don't log 'errors' on normal procedurePiBa-NL2012-11-181-3/+3
* Not sure why this has been hidden so deep but putting that in the right place...Ermal2012-11-151-2/+0
* Supress the error message if the ldap bind doesnt happenWarren Baker2012-07-271-1/+1
* Fix LDAP over IPv6 (works fine, just needed slight adjustment to URI)jim-p2012-06-301-5/+9
* Import OpenVPN cisco style radius attributes applying policy to logged in use...Ermal2012-06-051-3/+5
* Do not allow empty passwords since this might cause problems for some authent...Ermal2012-05-301-2/+2
* As suggested by wagonza, using SAMEORIGIN for X-Frame-Options is sufficient h...jim-p2012-05-151-1/+1
* Add click jacking support. Ticket #2419Scott Ullrich2012-05-101-1/+3
* Handle HTTPOnly and Secure flags on cookiesWarren Baker2012-05-091-0/+12
* Looking at pw code : chars are invalid in a comment fieldgit diff! Replace th...Ermal2012-03-121-1/+2
* Another try to eliminate the warning 'PHP Warning: Cannot modify header info...Ermal2012-02-081-1/+2
* Revert "Check if a session already exists to avoid errors issued by php on se...Erik Fonnesbeck2012-02-071-2/+1
* Check if a session already exists to avoid errors issued by php on sesion_sta...Ermal2012-02-071-1/+2
* Include admin user in bootup account syncjim-p2012-01-251-6/+2
* Be more careful when creating and removing a user, to only alter a user if it...jim-p2012-01-231-3/+15
* Unbreak a number of explode() replacements which required preg_split()smos2012-01-201-2/+2
* The function split() is replaced by the function explode(). Starting with PHP...smos2012-01-191-8/+8
* mhash -> hash change from Ermaljim-p2012-01-191-1/+1
* Ticket #1052. Merge patch referenced in ticket.Ermal2011-11-141-5/+5
* Do not pass the ldap port separately, but add it to the LDAP URL. PHP's ldap_...jim-p2011-10-251-24/+19
OpenPOWER on IntegriCloud