more unittest updates

darcs-hash:20060805082442-9b6ab-8447755da8c66c5cfc3ee0df0f8bb97375a2a1ff.gz

unittest fixes

darcs-hash:20060804142243-9b6ab-d208f7f1a67a9958fda05c519c8407ad5e733cea.gz

two-stage password reset

This patch changes the password reset function to a two-stage process.
After requesting a new password a confirmation email is sent first, only
if the link contained in this

two-stage password reset

This patch changes the password reset function to a two-stage process.
After requesting a new password a confirmation email is sent first, only
if the link contained in this mail is used the password is changed for real.

This makes sure malicious people can't reset passwords for other users.

darcs-hash:20060714110548-7ad00-c1e23fd51cc2d2f16473914421ebe0f9c3b2ba8c.gz

show more ...

disableactions support

This patch adds a config option to disable certain internal action commands of
DokuWiki's main dispatcher.

The options resendpasswd and openregister were removed because they

disableactions support

This patch adds a config option to disable certain internal action commands of
DokuWiki's main dispatcher.

The options resendpasswd and openregister were removed because they can now set
through this new option.

The config plugin needs to be adjusted.

darcs-hash:20060702121622-7ad00-1e80e77bcfb0ae561fe7abd79cfbe1bb158be720.gz

show more ...

register notify #826

A small patch for dokuwiki which enables dokuwiki to notify the
administrator about new user registrations

darcs-hash:20060615194419-022eb-51630aff3c6d93abc656742fc0bc723b93f97

register notify #826

A small patch for dokuwiki which enables dokuwiki to notify the
administrator about new user registrations

darcs-hash:20060615194419-022eb-51630aff3c6d93abc656742fc0bc723b93f97734.gz

show more ...

XSS bugfix #820

darcs-hash:20060531191114-7ad00-ee7498f6a9e047fc9eda5f8754f85d9b8a3317d5.gz

optionally use HTTP credentials to log in

If no credentials where given (either by form or former cookie) it is
checked if credentials from a former HTTP based authentication are
available. Those wi

optionally use HTTP credentials to log in

If no credentials where given (either by form or former cookie) it is
checked if credentials from a former HTTP based authentication are
available. Those will be tried for login then.

This only works with PHP running as Apache module.

darcs-hash:20060507161224-7ad00-7ba0a6e871cf5319038e83672a2ff05ef23c124b.gz

show more ...

use nameencoding on superuser check in inc/auth.php

darcs-hash:20060307192928-7ad00-1ec5393d63d536992810fe8f611525d2af4834a2.gz

nicer error messages for fatal errors

darcs-hash:20060303180548-7ad00-db294c2c5c10c8df69ebae7596e64e1af4d9bc35.gz

Allow non-ID names in ACLs

Some auth backends allow special chars like whitespaces in user and group
names. This made problems with the existing ACL checks and ACL manager.
This patch makes the ACL

Allow non-ID names in ACLs

Some auth backends allow special chars like whitespaces in user and group
names. This made problems with the existing ACL checks and ACL manager.
This patch makes the ACL system work with these cases by (url)encoding all
special chars below 128.

darcs-hash:20060302101850-6e07b-14bda9dbdb3528904325419b35bb9eddb0d1dde3.gz

show more ...

do not try to init auth object if useacl

darcs-hash:20060217221221-7ad00-56a0595780eaf495cd67567d00e07ef6d90ab38c.gz

fixed password mail

There was an error which caused the mail aent on registration to
contain the crypted password instead of the cleartext one.

darcs-hash:20060217180715-7ad00-88b2e8f74ddbad41300ca

fixed password mail

There was an error which caused the mail aent on registration to
contain the crypted password instead of the cleartext one.

darcs-hash:20060217180715-7ad00-88b2e8f74ddbad41300ca53bbf79df3d8d8beebc.gz

show more ...

updated auth_punbb

darcs-hash:20060211180240-7ad00-c7c589aa6e5e67f2d7ad54f7e41837f116a91c9c.gz

new way of auth module capability checking

This changes the way of how the capabilities of the used auth module are
checked as suggested as first option in
http://www.freelists.org/archives/dokuwiki

new way of auth module capability checking

This changes the way of how the capabilities of the used auth module are
checked as suggested as first option in
http://www.freelists.org/archives/dokuwiki/01-2006/msg00267.html

The MySQL backend WAS NOT TESTED and probably needs some work.

darcs-hash:20060203150302-7ad00-c524cafe20499f32e76ad42b4e68d7c635f6a9e9.gz

show more ...

resendpasswd option added

darcs-hash:20060129131054-7ad00-aa633eafdd206cb38c710cc6a6de958c14eecb6d.gz

oo auth update - remove legacy auth remnants, add auth->canDo

darcs-hash:20060125000125-9b6ab-9853f11e04d8ea93235317fa8137cef079eb2641.gz

external authentication

This patch adds the functionality to override the usual auth_mechanism
completely and replace it with your own. This can be used to authenticate
against Apache auth mechanism

external authentication

This patch adds the functionality to override the usual auth_mechanism
completely and replace it with your own. This can be used to authenticate
against Apache auth mechanisms or third party software cookies. A very
basic example for using PunBB's $pun_user variable is included.

darcs-hash:20060110092903-6e07b-7c7750da4eb4e9116ddc28c77015488ea500c07d.gz

show more ...

OO_auth_fixes

This patch allows the OO auth module to fail. The basic class got
a new property $success that is checked in auth.php. Derived classes
might change this calue in their constructors.

B

OO_auth_fixes

This patch allows the OO auth module to fail. The basic class got
a new property $success that is checked in auth.php. Derived classes
might change this calue in their constructors.

Beautifying the whitespaces in auth.php completes this patch.

darcs-hash:20051105124932-4145d-dfcfa6c3b87d0087b4bffe3e5a29db000b10b242.gz

show more ...

some fixes for getID and the detail page

darcs-hash:20051021212304-7ad00-f01b3954b6b71ecc9e0cf899ed62bfb33e0c437e.gz

auth update, incl. auth object, plain.class.php; resend password & update profile actions

darcs-hash:20051020181434-50fdc-44222aa2074bb0e39a1c240c516259579b380740.gz

DOKU_CONF define for config directory #479

darcs-hash:20050729155457-7ad00-94554865259e4cbd6a1c75bb62a93f37304adbf0.gz

The authcheck now prints a warning if no ACLs are available.

darcs-hash:20050714201333-7ad00-77d1547bb869b54105f71b49bafb3b1071512747.gz

bugfix for weird ZendOptimizer bug #377 #378

darcs-hash:20050701112148-9977f-1d4a3a68ec7a1972c34104b3b988d849f412ae70.gz

small fix for separate cookie patch

darcs-hash:20050626184105-9977f-34d4928d5c8dab19b2cc799ff3b43637303995e8.gz

separate cookies for multiple wikis on the same site

auth.php now uses an md5 hash of the actual script location as cookie name.
This way, multiple wikis on the same site will not smother each other

separate cookies for multiple wikis on the same site

auth.php now uses an md5 hash of the actual script location as cookie name.
This way, multiple wikis on the same site will not smother each other's
cookies.

darcs-hash:20050625082204-4c533-a9a0a60a10eb20383e93cc76a7db88747dc0db32.gz

show more ...