composer/iTop
6
0
Fork 0
mirror of https://github.com/Combodo/iTop.git synced 2026-02-13 15:34:12 +01:00
Code Issues Packages Projects Releases Wiki Activity
4,154 Commits 151 Branches 134 Tags
6aa782bd8bcc71c3d5ee5db2bb2061ba335e4ad5
Commit Graph

78 Commits

Author SHA1 Message Date
Romain Quetiez
cba6e8d8a3 890.3 Fixed regression introduced in commit 4870 - fatal error during a MTP from the designer 
SVN:trunk[4874]
 2017-08-23 15:31:08 +00:00
Romain Quetiez
b1494d0dd9 N890.3 Archive mode toggle menu not visible after setup/MTP: the information is cached into the session and needs to be reset 
SVN:trunk[4870]
 2017-08-21 15:28:07 +00:00
Romain Quetiez
46b5293867 N.542, N.912 Finalized the API UserRights::Impersonate. This is an enabler for several enhancements. 
SVN:trunk[4837]
 2017-07-18 09:36:25 +00:00
Romain Quetiez
b238283104 Archives: show the menu 'activate archive mode' only if there is at least one archivable class 
SVN:trunk[4701]
 2017-04-27 08:53:23 +00:00
Romain Quetiez
fa2fd6dcdf NEW! Archiving data. Archiving is a soft delete. It can be undone. Enter the archive mode to see all the data including archives (everything is read-only in that mode). Archiving must be enabled per class (data model). Archiving is achieved by the mean of the API DBObject::Archive (or Unarchive). 
SVN:trunk[4692]
 2017-04-26 09:52:20 +00:00
Denis Flaven
fcc5342775 Bug fix: protect against a non existing Contact class (a rather drastic iTop customization!) 
SVN:trunk[4559]
 2017-02-24 14:09:44 +00:00
Romain Quetiez
47ec6d4917 N.523 UserRights::ListProfiles must return an empty array if nobody is currently logged in (instead of a FATAL ERROR). 
SVN:trunk[4478]
 2016-11-18 15:47:20 +00:00
Denis Flaven
2773419faa New field on the User class to enable/disable user accounts. 
SVN:trunk[4230]
 2016-06-21 09:22:14 +00:00
Denis Flaven
63b6b95f71 Use one-way encryption for storing the token used for the "Forgotten password" feature. 
SVN:trunk[3920]
 2016-02-19 18:17:11 +00:00
Romain Quetiez
e0fad5e0e6 Magic query arguments: 
- In addition to current_contact_id, the following arguments can be used in any OQL query (provided that the page running the query requires a  login): current_contact->attcode and current_user->attcode
- Code refactoring: magic arguments in one single place
- The "Run queries" page is now taking into account those magic arguments (do not prompt the end-user with these arguments!)

SVN:trunk[3912]
 2016-02-17 18:55:46 +00:00
Romain Quetiez
b978a5d219 Fixed regression introduced in [3852] : setup not working anymore ($_SESSION is unset and a notice is issued, which can prevent the install from completing, depending on your PHP error level). 
SVN:trunk[3891]
 2016-01-28 11:11:12 +00:00
Guillaume Lajarige
879f5d89b9 Moved static method GetAllowedPortals() from LoginWebpage class to UserRights class. 
SVN:trunk[3862]
 2016-01-15 10:32:17 +00:00
Romain Quetiez
3be0bc8ca8 Improved the User Rights management API: 
- new verbs: HasProfile and ListProfiles
- doing less queries (no need for listing all the profiles, caching the user profiles into the SESSION cookie
- did some code cleanup (unused variables)

SVN:trunk[3852]
 2015-12-15 20:30:30 +00:00
Romain Quetiez
62959a89bc #1091 CAS memberships broken (parameter "cas_memberof" NOT given as a regular expression, bugged since iTop 2.0 or earlier) 
SVN:trunk[3731]
 2015-09-08 12:39:02 +00:00
Romain Quetiez
d8113a3304 #1130 CAS authentication security leak when cas_memberof is left empty (already committed into branch 2.1.0) 
SVN:trunk[3685]
 2015-08-18 13:48:12 +00:00
Romain Quetiez
baf54a7c02 #942 OQL now supporting unions. Unions support polymorphism and can be used anywhere in the application. 
SVN:trunk[3631]
 2015-07-08 17:10:40 +00:00
Denis Flaven
1f2ad9ecdb Demo mode: prevent the deletion of Users... 
SVN:trunk[3452]
 2014-12-04 10:02:14 +00:00
Romain Quetiez
372c0835f7 #988 Could not change the case of a login (cosmetic improvement to make sure this piece of code is the right example that can be shared amongst the developpers community) 
SVN:trunk[3342]
 2014-09-16 10:16:10 +00:00
Romain Quetiez
fa856c32cd #988 Could not change the case of a login 
SVN:trunk[3338]
 2014-09-16 08:04:37 +00:00
Romain Quetiez
6f90d626fc Code refactoring: MakeSelectFilter 
SVN:trunk[3015]
 2013-12-03 09:56:46 +00:00
Romain Quetiez
fde3808cdf New feature: Forgot password -> email to reset (possibly disabled in the config file) 
SVN:trunk[2855]
 2013-09-24 09:15:52 +00:00
Romain Quetiez
bedbc387eb Renamed priv_Userinternal into priv_userinternal, and added a check for table names (lowercase is the rule!) 
SVN:trunk[2435]
 2012-11-21 09:41:53 +00:00
Romain Quetiez
721faa7e1e Updated copyright (2012) and license (LGPL changed to AGPL) 
SVN:trunk[2333]
 2012-10-23 21:41:36 +00:00
Romain Quetiez
083c3d8613 Profiles defined in XML: reviewed the internal extension capability (GetReadOnlyAttributes and GetPredefinedObjects) 
SVN:trunk[2152]
 2012-08-21 13:25:32 +00:00
Romain Quetiez
38cca0c144 Profiles defined in XML (setup + runtime), beta version (stable, upgrade required) 
SVN:trunk[2149]
 2012-08-14 16:06:51 +00:00
Denis Flaven
3205d48f84 Properly log-off (and report the issue in the log) in case we fail to create a user during the CAS Synchro 
SVN:trunk[1940]
 2012-04-04 09:28:13 +00:00
Denis Flaven
66e1890b27 CAS integration: 
- regression fix: support patterns for the MemberOf groups filtering
- activate/de-activate the profiles synchronization using the 'cas_update_profiles' configuration flag
- provide default profile(s) when creating a new user from CAS, only if no match is found for assigning profiles from the CAS MemberOf group(s).

SVN:trunk[1922]
 2012-03-22 15:35:46 +00:00
Romain Quetiez
b3dadcba77 Reintegrated from branch 1.2: capability to develop a module to share objects between organizations (beta) 
SVN:trunk[1859]
 2012-02-17 15:11:00 +00:00
Denis Flaven
3a5f73fe65 Fixed typos during the copy/paste for automatic account creation 
SVN:trunk[1827]
 2012-01-31 12:44:16 +00:00
Denis Flaven
308ec94f8c Added self-registering / user synchronization extensibility 
SVN:trunk[1759]
 2012-01-11 15:59:29 +00:00
Denis Flaven
f29d673ffb Added self-registering / user synchronization extensibility 
SVN:trunk[1756]
 2012-01-11 11:17:08 +00:00
Denis Flaven
f979dd40e0 Merged-in the fix for Trac #493: incorrect display of the Users' Grant Matrix 
SVN:trunk[1636]
 2011-10-17 11:27:03 +00:00
Denis Flaven
8f21b9dabb Bug fix: prevent a warning when doing modify-all as a non-admin user. 
SVN:trunk[1549]
 2011-09-01 10:49:56 +00:00
Denis Flaven
54315f41e4 Bug fix: computation of allowed stimuli was wrong 
SVN:trunk[1495]
 2011-08-23 09:17:19 +00:00
Denis Flaven
7c9d4c76a9 Protect against a multiple stimulus on a set based on an abstract class. 
SVN:trunk[1332]
 2011-07-05 14:07:02 +00:00
Romain Quetiez
aa46ab1a67 Portal users: limit their access depending on their organization!!!! 
SVN:trunk[1320]
 2011-07-01 15:09:29 +00:00
Denis Flaven
733953ac99 CAS integration: added support of JA-SIG Central Authentication Service (CAS) with log-off support, using phpCAS API. 
SVN:trunk[1280]
 2011-06-10 14:51:17 +00:00
Denis Flaven
8f2089e1f6 - Fixed an error appearing only for non admins. 
- Admin menu should never appear for non-admins, even empty
- Synchro Data Source objects are for admins only

SVN:trunk[1180]
 2011-04-06 15:18:59 +00:00
Denis Flaven
bec8b57fe1 Implementation of bulk modify and bulk apply stimulus... to be tested ! 
SVN:trunk[1145]
 2011-03-23 16:22:35 +00:00
Romain Quetiez
38a502aa25 #271 Internal - Removed a workaround made unnecessary with fix [1108] 
SVN:trunk[1119]
 2011-03-08 12:23:04 +00:00
Romain Quetiez
e36646a3e6 Fixed undocumented issue: in read-only mode, stimulus where still allowed 
SVN:trunk[1109]
 2011-03-07 16:40:26 +00:00
Denis Flaven
2b9beb971b For fine-grained user rights detection... 
SVN:trunk[1017]
 2010-12-07 15:13:41 +00:00
Romain Quetiez
e66f06cda2 Internal: improved the user management API ChangePassword() 
SVN:trunk[1012]
 2010-12-06 17:07:07 +00:00
Romain Quetiez
d85aba8ebc Improved change tracking: user login replaced by the full name if available 
Added a tab into the CSV import: browse the CSV imports history
Finalized the read-only mode (distinguish between users and everybody, admin message displayed on top of the main screen)

SVN:trunk[1007]
 2010-12-03 10:18:28 +00:00
Romain Quetiez
7d13ec00e4 User profiles: created in dedicated module itop-profiles-itil 
SVN:trunk[980]
 2010-11-26 15:55:38 +00:00
Denis Flaven
9dd2061f60 Do not assume that a User is linked to a Person ! 
SVN:trunk[964]
 2010-11-23 13:36:53 +00:00
Romain Quetiez
d0f168adbb Read-only mode - draft 
SVN:trunk[961]
 2010-11-22 14:13:49 +00:00
Denis Flaven
b124e94551 - Enforce users to be created with at least one profile 
SVN:trunk[867]
 2010-09-14 09:09:36 +00:00
Romain Quetiez
0c4a030e2a Improved security 
SVN:trunk[809]
 2010-09-10 11:59:04 +00:00
Denis Flaven
463e7b5413 - Enhancement (Trac#189) first version of a (simple) End-Users portal. 
- Fix for the appUserPreferences class

SVN:trunk[806]
 2010-09-10 10:10:57 +00:00