auth_ismanager: fix group check on PHP8

casting and array access specifity seem to differ on PHP8, breaking the
fix in 1525c2281e6bc28f12ce8a59976e68e5a0e788fa

Simplify code for checking user groups

Merge branch 'master' into auth-ismanager-check

Fix undefined array key warning in auth.php

Got the following warnings on PHP 8.

- Undefined array key "DW<cookie_hash>" in .../inc/auth.php on line 248
- Trying to access array offset on value of

Fix undefined array key warning in auth.php

Got the following warnings on PHP 8.

- Undefined array key "DW<cookie_hash>" in .../inc/auth.php on line 248
- Trying to access array offset on value of type null in .../inc/auth.php on line 248

show more ...

Fix groups match in auth_ismanager and auth_isadmin

Even if a user was passed to the check but no groups, current user's groups were used for the match

replace deprecated function calls #3266

Remove HTTP_ACCEPT from auth_browseruid()

The Accept header changes based on requested resource type,
so it is not suited for auth_browseruid().

Improve auth_browseruid()

As discussed in https://forum.dokuwiki.org/d/18284-dont-store-ip-addresses/5

- remove the deprecated HTTP_ACCEPT_CHARSET
- add HTTP_ACCEPT_LANGUAGE
- add HTTP_ACCEPT_ENCOD

Improve auth_browseruid()

As discussed in https://forum.dokuwiki.org/d/18284-dont-store-ip-addresses/5

- remove the deprecated HTTP_ACCEPT_CHARSET
- add HTTP_ACCEPT_LANGUAGE
- add HTTP_ACCEPT_ENCODING
- add HTTP_ACCEPT
- use half of the IP address
- add support for IPv6
- use SHA256 instead of MD5

Also:

- remove `$uid = strtolower($uid)`, as it doesn't seem to help

show more ...

Move defines to their own file

As described in
https://github.com/dwp-forge/columns/issues/5#issuecomment-638467603
sometime the Lexer constants have not been (auto)loaded when a syntax plugin
is in

Move defines to their own file

As described in
https://github.com/dwp-forge/columns/issues/5#issuecomment-638467603
sometime the Lexer constants have not been (auto)loaded when a syntax plugin
is invoked (I'm not sure why).

In general PSR2 discourages a mix of main code and function/class setup
with the call to define() being considered main code.

This patch moves these the define calls to a separate new file, solving
both of the above problems.

These are not all our defines. Instead I focused on the ones that are
ENUM-like.

In the future we should think about what defines can be replaced by
class constants and what other define() calls should be moved.

show more ...

use serialized cache key for isAdmin/isManager cache

This avoids potential collisions.

Cache results of isAdmin and isManager

isAdmin() is called within the ACL check (and probably various other
places in DokuWiki core). In a Wiki with lots of ACL checks (most
noticable with the index

Cache results of isAdmin and isManager

isAdmin() is called within the ACL check (and probably various other
places in DokuWiki core). In a Wiki with lots of ACL checks (most
noticable with the indexmenu) and users with a lot of groups (as typical
in corporate ActiveDirectory environments) this check can take a
significant portion of the time of a request time doing exactly the same
thing again and again.

This introduces a static request level cache for the result of the
isAdmin and isManager checks based on the requested user and groups.

A new parameter allows to skip the cache, though I don't think there
should be a good reason to skip the cache except for testing purposes.

show more ...

fallback to auth_login check when trustExternal returns null

This is a work based on #2701, Before this patch, it is either fully external, or fully internal (and DokuWiki's auth cookie mechanism is

fallback to auth_login check when trustExternal returns null

This is a work based on #2701, Before this patch, it is either fully external, or fully internal (and DokuWiki's auth cookie mechanism is used in auth_login()). I believe we should provide plugin developers with a third state as out-put. Semantically $auth->trustExternal() === null to delegate auth flow back to DokuWiki makes sense to me - like no external auth result is returned, so we need to run internal auth flow.

Co-Authored-By: paweljasinski <paweljasinski@users.noreply.github.com>

show more ...

PHP8 fix part 3: Trying to access array offset on value of type bool/null

PHP8 fix part 2: Trying to access array offset on value of type bool/null

Fix curly brace syntax. PHP 7.3 deprecations in inc/ directory.

updated inc/auth.php

Updated the auth_pwgen password generator order to letters +
special character + number so that the password will not end with
a comma, full stop or other special character.

Fo

updated inc/auth.php

Updated the auth_pwgen password generator order to letters +
special character + number so that the password will not end with
a comma, full stop or other special character.

For example bacdefgih.15 instead of bacdefgih15.

show more ...

Merge branch 'utf8refactor' into psr2

* utf8refactor:
replaced deprecated utf8 functions
formatting cleanup
mark old utf8 functions deprecated
Some cleanup for the UTF-8 stuff
Moved all ut

Merge branch 'utf8refactor' into psr2

* utf8refactor:
replaced deprecated utf8 functions
formatting cleanup
mark old utf8 functions deprecated
Some cleanup for the UTF-8 stuff
Moved all utf8 methods to their own namespaced classes
Create separate table files for UTF-8 handling

show more ...

Merge branch 'master' into psr2

* master: (34 commits)
fix color for noninstalled extensions
show disabled extensions in gray
warn about inaccessible repo api
bugfix: access check was never

Merge branch 'master' into psr2

* master: (34 commits)
fix color for noninstalled extensions
show disabled extensions in gray
warn about inaccessible repo api
bugfix: access check was never cached
First go on a CLI component for the extension manager
use strict type comparison
translation update
translation update
fix #dokuwiki__sitetools current item not in highlight due to Greebo change
authplain: Add tests for group retrieval
authplain: Add a simple method for retrieving user groups
translation update
Negative string offsets are allowed in PHP 7.1+ only
improve memory check output
fix and test php_to_byte() related to #2756 #2556
translation update
translation update
translation update
translation update
translation update
...

show more ...

replaced deprecated utf8 functions

For now this uses full qualified namespaces, sensible imports may come
later.

Merge branch 'psr2-pluginredux' into psr2

* psr2-pluginredux:
Minor optimizations in PluginController
Snake to Camel case fixes inn PluginController
Fix snake->camel case, doc blocks
minor c

Merge branch 'psr2-pluginredux' into psr2

* psr2-pluginredux:
Minor optimizations in PluginController
Snake to Camel case fixes inn PluginController
Fix snake->camel case, doc blocks
minor code simplification
snake to camel case fixes in EventHandler
Move list of plugin types to plugin controller constant
Avoid accessing the evet system before it's intialized
Avoid processing events before the Event System is intiialized
isEnabled instead of isDisabled
removed get_directory() method from PluginController
fix type hints
moved plugin controller to Extension namespace
removed deleted file from autoloader
deprecated trigger_event() in favor of a static method on Event
First go at moving the plugin classes into their own namespace

show more ...

♻️ Don't use deprecated subscription methods

moved plugin controller to Extension namespace

deprecated trigger_event() in favor of a static method on Event

First go at moving the plugin classes into their own namespace

PSR2 adjustments for the PassHash class

I opted for ignoring the camel case funtion check not because the public hash_*
methods are widely used but because I find this style actually cleaner
in this

PSR2 adjustments for the PassHash class

I opted for ignoring the camel case funtion check not because the public hash_*
methods are widely used but because I find this style actually cleaner
in this case where the method name is auto-built from the hash type
name.

show more ...