Check whether $auth is set

darcs-hash:20091124152419-e4919-b4d55158c15d637a453b082eae6a80a828818934.gz

Added isCaseSensitive() to auth backends FS#1657

Ignore-this: 3591e5a36126c72bd9b931e4aa832da8

darcs-hash:20091115141725-7ad00-7c2fc662d1999731660673d05299c4f357b797b3.gz

more work on user and group cleaning

Ignore-this: b824c2941d3631bdf83350e325606d3e

darcs-hash:20091114123517-7ad00-d32833a88cb5f654a8874542d4d59f1f401d4453.gz

Added group and user sanitation

Ignore-this: 26392125523d2c822580346074330ebe

darcs-hash:20091113102249-7ad00-4cede040a940d739bd34d548e12956e8d8609cfa.gz

Emit less E_NOTICEs and E_STRICTs

Changes of behaviour are:
* Allow the user name, title & description \e2\80\9c0\e2\80\9d
* Default to Port 443 if using HTTPS
* Set $INFO['isadmin'] and $IN

Emit less E_NOTICEs and E_STRICTs

Changes of behaviour are:
* Allow the user name, title & description \e2\80\9c0\e2\80\9d
* Default to Port 443 if using HTTPS
* Set $INFO['isadmin'] and $INFO['ismanager'] to \e2\80\9cfalse\e2\80\9d even if no user is
logged in
* Do not pass empty fragment field in the event data for event
ACTION_SHOW_REDIRECT
* Handle chunked encoding in HTTPClient

darcs-hash:20091104100115-e4919-5cf6397d4a457e3f98a8ca49fbdab03f2147721d.gz

show more ...

Remove (unset) action param from AUTH_LOGIN_CHECK data, init $ACL before firing the event

darcs-hash:20091023085601-e4919-5c800a07bcf70c34720a39e7bca9a1250b973b32.gz

Coding Standard Cleanup

Ignore-this: 259cb5773c3144c6c706d87298dcf674

darcs-hash:20091020212338-7ad00-6bf1c5c403491f136a1c02af5ecd9f84d7227107.gz

Support for kmd5 passcrypt method

Ignore-this: c809bd207504f78e84685612b0a668a7

This is a MD5 based hashing method used in the Unclassified NewsBoard forum
software (which is used for DokuWiki's su

Support for kmd5 passcrypt method

Ignore-this: c809bd207504f78e84685612b0a668a7

This is a MD5 based hashing method used in the Unclassified NewsBoard forum
software (which is used for DokuWiki's supprt forum)

darcs-hash:20091015184330-7ad00-38680848952bdb46052dcf3597fa5e91f892ca51.gz

show more ...

encode parts in cookie seperatly. might fix FS#1437

Ignore-this: c9b92b33e2a3a3418fd0730bf4971b7e

darcs-hash:20091004135409-7ad00-51c902a832fef7486a9afca9e9481b172a6894e1.gz

auth_(quick)aclcheck needs resolved and cleaned id

Ignore-this: 3e0ad635a6f8536ed05871704a29e1e2

This patch adds a small notice to the comment that the id given to
auth_(quick)aclcheck needs to be

auth_(quick)aclcheck needs resolved and cleaned id

Ignore-this: 3e0ad635a6f8536ed05871704a29e1e2

This patch adds a small notice to the comment that the id given to
auth_(quick)aclcheck needs to be resolved and cleaned.

darcs-hash:20091004093316-074e0-a4095962c52c16918d617d2ffecc783ba8fd0202.gz

show more ...

Change expensive uses of split to the much faster explode.

darcs-hash:20090528215438-6942e-bf1b875e689ade6bd1a17e3d812ce16bf35c84a6.gz

Make more use of clientIP() FS#1668

Ignore-this: 13616da575fbe56064b2aa3d1d803bf5

darcs-hash:20090410181613-7ad00-b74c82c1f9296a2cb0d00b03316141b19821bda1.gz

pass correct event data in AUTH_LOGIN_CHECK

Ignore-this: ad04520c987ab71b4dcec5e5b38fae8a

darcs-hash:20090407172723-7ad00-81d06920a678c7aab73778e2ce4f8f1f44faf314.gz

Action Event wrappers around HTTP requests and authentication checks

Ignore-this: 9ffd0327c318a633e33a60e0a8ecf7f5

darcs-hash:20090312224454-b7b7f-12b7fa78c0b638c1795f6d5e1b1c1aa2cbab64d4.gz

do not close session in auth_logoff FS#1519

Ignore-this: b30b94c67baa8a8916dd216424e9473c

As auth_logoff is called very early for all not-logged in users it
prevented writing the breadcrumbs and mi

do not close session in auth_logoff FS#1519

Ignore-this: b30b94c67baa8a8916dd216424e9473c

As auth_logoff is called very early for all not-logged in users it
prevented writing the breadcrumbs and might have broken some other
things relying on a open session at beginning of the script.

auth_logoff now makes sure the session is open but will not close
it.

Additionally the session is now explicitly closed before a redirect.

darcs-hash:20090210100257-7ad00-50470f18edb9fdbeb555fbf5d8a470a3b077915d.gz

show more ...

fixed logoff cookie problem

Ignore-this: 53d4440e4bffdcf66330ffc6b2b3372a

darcs-hash:20090130090624-7ad00-a6f6da5b1d42ac48cf4906e40addbd15e995125c.gz

keep breadcrumbs for anonymous users FS#1519

darcs-hash:20090116145345-7ad00-153c9e6e0a83d937c48967ed5bc90578a5f49a15.gz

fixed corrupt if statement introduced by earlier patch

darcs-hash:20090114175244-7ad00-22fe37641598c13f13266bf0b50c3b93fe912344.gz

make HTTP SSO possible for IIS or rewriting

DokuWiki silently attemps to resuse received HTTP auth credentials for
user logins. Unfortunately these are only passed to PHP when using
mod_php. IIS pro

make HTTP SSO possible for IIS or rewriting

DokuWiki silently attemps to resuse received HTTP auth credentials for
user logins. Unfortunately these are only passed to PHP when using
mod_php. IIS provides a HTTP_AUTHORIZATION header which now will
be decoded and used as well.

This header can also be faked via mod_rewrite:

<IfModule mod_rewrite.c>
RewriteEngine on
RewriteRule .* - [E

darcs-hash:20090114153601-7ad00-6c75e8568eda6753834981642eed638b9eb01694.gz

show more ...

ACL user wildcard changed to %USER% FS#1504 :!:

DokuWiki supports a wildcard which gets replaced with the currently loggedin
user in its ACL configuration file.

This patch changes the wildcard from

ACL user wildcard changed to %USER% FS#1504 :!:

DokuWiki supports a wildcard which gets replaced with the currently loggedin
user in its ACL configuration file.

This patch changes the wildcard from @USER@ to %USER% (case sensitive) and
also makes sure the ACL Manager does not replace the wildcard when displaying
the currently set rules.

The change was needed for better compatibility with the User Manager without
complicating the code. The old @USER@ wildcard is still supported, but
changing an ACL rule using it, through the ACL manager will fail.

It is recommended to update ACL rules using the @USER@ wildchar to use the
new %USER% one instead.

darcs-hash:20081216171126-7ad00-94ce0c2afa411abc936f13572efd0e31941901ee.gz

show more ...

removed some illogical path setups

darcs-hash:20081213090400-7ad00-4e21cd75978bb07513f32f5d750658e8d777c59e.gz

show update profile dialog only when logged in

darcs-hash:20081117154409-23886-d0ad833c6bcf96bcc54f6998397de90ff07b7686.gz

fixed missing global scope in auth_setCookie() FS#1530

darcs-hash:20081108225035-6837b-a662b0728205e64f5eaf7bd0003748a5be8a6b2f.gz

Ensure 'smd5' password hashing method is only triggered when available

darcs-hash:20081013123417-f07c6-eaa5586edad17a971f4daf38afac77c6946539f0.gz

remove unused/redundant isvalidemail() function

darcs-hash:20081013123311-f07c6-8dc34c8fb9a170fae412a6c37928e601c1728a18.gz