• last updated 32 mins ago
Constraints
Constraints: committers
 
Constraints: files
Constraints: dates
simplify weird construction

Removed extra '$'

Prefer 'lappend' to 'set ... concat' for appending elements to lists + Whitespace changes

  1. … 3 more files in changeset.
Prefer '{}' to '[list]' when creating empty lists

  1. … 66 more files in changeset.
fix typos

  1. … 7 more files in changeset.
Prefer 'in' and 'ni' operators over lsearch for testing list containment

remove parnes

improve spelling

Fix typos

  1. … 59 more files in changeset.
Fix even more typos

  1. … 29 more files in changeset.
Fix reference to unexisting variable

simplify initialization logic and issue login cookie only, when account_status is ok

Add files missed by last commit

    • -0
    • +133
    ./authentication-procs-aolserver.tcl
    • -0
    • +92
    ./authentication-procs-naviserver.tcl
  1. … 3 more files in changeset.
- Add new feature to prevent/slowdown brute force attacks on login by counting the number of

failed consecutive login attempts based on ip-address and subsite.

- Add new package dependency: package "acs-admin" now requires "acs-authentication"

  1. … 5 more files in changeset.
Improve comments and error message

fix recent typo

whitespace cleanup

  1. … 4 more files in changeset.
Use "ad_try" instead of "with_catch"

Fix typos

  1. … 3 more files in changeset.
Reduce divergence between oracle and postgres codebase

merged changes from the oacs-5-9 branch and resolved conflicts

    • -334
    • +384
    ./authentication-procs.tcl
    • -19
    • +18
    ./test/acs-authentication-procs.tcl
  1. … 7825 more files in changeset.
Make forgotten_password_url subsite aware and fully qualified

align variable names

allow to send forgotten-password-url in registration mail (similar to reset_password_url)

Provide default help texts for register form

Prevent error when user is removed from the Registered Users group, but not from users altogether

Fix typo in previous commit

Don't steal anybody's address nor email, especially if people was banned. Fail and give a message instead.

simplify idiom

Provide more infrastructure support for host-node-maps for more flexible domain handling

- add optional -cookie_domain parameter to the following functions

ad_user_login

ad_user_logout

sec_generate_session_id_cookie

auth::issue_login (wrapper for ad_user_login)

if not specified, the functions are full backward compatible

- add optional parameter -host_node_id to auth::authenticate

which refers to the node_id in the host-node-map

- pass host_node_id from from/to register pages

TODO:

1) probably, sec_generate_session_id_cookie picks up the wrong

session_id via [ad_conn session_id]

2) check interaction with CookieDomain (probably, we need

must not pass host_node_id wheren CookieDomain is non-empty)

  1. … 6 more files in changeset.