composer/iTop
6
0
Fork 0
mirror of https://github.com/Combodo/iTop.git synced 2026-02-13 07:24:13 +01:00
Code Issues Packages Projects Releases Wiki Activity
6,802 Commits 151 Branches 134 Tags
f2fbd8457dad5fc5548cf1a9324fe519cb0217ab
Commit Graph

109 Commits

Author SHA1 Message Date
Molkobain
4400cfde62 N°2313 - Markup extensibility: Update usages of admin. console tabs to have codes and titles 2020-01-15 08:42:35 +01:00
bruno DA SILVA
267cdd2aee n°524 - password policy 
- "password reset" workflow now handle gracefully the policy enforcement.
 2019-11-28 08:52:02 +01:00
Eric
149bc9f4ef fix typo 2019-11-13 11:41:40 +01:00
Eric
dcb46990c2 N°1436 - Search retrieve users belonging to not allowed Org 2019-10-25 10:31:47 +02:00
bruno DA SILVA
d1eb674314 n°1617 - meets iTop fence requirements 2019-10-09 18:53:40 +02:00
Eric
953c9e588e N°2311 - CAS Extension 2019-08-16 17:39:48 +02:00
Pierre Goiffon
36d47c2274 N°1835 fix transaction_id lost with session 
* transaction_id are now stored by default in file instead of session ("transaction_storage" config parameter : default value was 'Session', it is now 'File')
* session_regenerate_id() call can be disabled using "regenerate_session_id_enabled" config parameter
* new 'transaction_id' parameter type to allow dots (with a file storage, transaction_id equals the temp file name and on Windows we're getting *.tmp)
 2018-12-10 17:39:07 +01:00
Eric
387c166985 Fix Remote User synchro 2018-12-03 11:33:15 +01:00
Denis
1b4b71cb35 Prevent a catchable fatal error when using memcache(d) as the session handler (regression introduced when fixing n°1778). 2018-11-23 16:56:07 +01:00
Eric
f9bb2e7a14 💚 N°1583 - user_manager User cannot create a User without Contact (fixed CI) 2018-11-20 18:03:08 +01:00
Eric
57e8b9faaf N°1583 - user_manager User cannot create a User without Contact 2018-11-20 15:43:05 +01:00
Kamil Konečný
8bd10a2d11 Session id regeneration on login. 2018-11-13 14:28:08 +01:00
Eric
63b08b0e70 Merge remote-tracking branch 'origin/support/2.5' into release/2.6 
# Conflicts:
#	sources/application/search/searchform.class.inc.php
 2018-11-13 11:11:15 +01:00
Eric
c722d64850 N°1706 - Fix problem with user_manager profile 2018-11-13 08:50:49 +01:00
Pierre Goiffon
588899db63 Convert all files from CrLf to Lf (preparing merge to develop) 2018-10-18 14:20:40 +02:00
Pierre Goiffon
40a4e6d7b0 Fix files using CrLf, convert them to Lf to have the whole repo using Lf 
Warn your git config (core.autocrlf = input or true)
 2018-09-04 17:59:51 +02:00
Pierre Goiffon
985ad18048 REST service PHPDoc & code cleanup 
SVN:trunk[5946]
 2018-07-18 07:40:10 +00:00
Eric Espié
a848cb28f1 N°1436 - Access control updated for grant_by_profile categories of classes - 
Fix access to internal classes form the core engine

SVN:trunk[5903]
 2018-06-22 16:07:35 +00:00
Eric Espié
97c8e1f7a9 N° 1436 - Allowed orgs on Users not managed 
SVN:trunk[5850]
 2018-06-11 10:02:20 +00:00
Eric Espié
e1caf61a18 N°1248 - Fix API access (back to the same behavior as 2.4.1) 
SVN:trunk[5706]
 2018-04-20 12:32:01 +00:00
Eric Espié
f7879256c1 N°1248 - Fix API access (back to the same behavior as 2.4.1) 
SVN:trunk[5705]
 2018-04-20 12:30:20 +00:00
Eric Espié
182e644a33 Fix setup 
SVN:trunk[5692]
 2018-04-18 14:30:33 +00:00
Eric Espié
c3fbdc907c N°1248 - User Management: Check organization related to the current user 
SVN:trunk[5677]
 2018-04-17 10:22:12 +00:00
Vincent Dumas
6d86bd516b Set default search criteria for objects + index on ticket's ref. 
SVN:trunk[5648]
 2018-04-12 15:38:18 +00:00
Vincent Dumas
d7c960e150 Enabling search and access control by organization on User class. Reworking fields displayed in Details and List as well. 
SVN:trunk[5387]
 2018-03-07 14:00:10 +00:00
Eric Espié
85a5ddb980 N°478 - Customizable access to the 'Admin Tools' 
- Display additional rights (grant_by_profile) in the grant matrix

SVN:trunk[5367]
 2018-02-26 10:38:09 +00:00
Eric Espié
d65bd97956 N°478 - Customizable access to the 'Admin Tools' 
SVN:trunk[5364]
 2018-02-23 11:13:07 +00:00
Guillaume Lajarige
4bd3084403 Fix regression introduced in r5298: Portal user could not change its preferences. 
Removed the 'grant_by_profile' category check in UserRights::GetSelectFilter().

SVN:trunk[5302]
 2018-01-31 12:29:20 +00:00
Eric Espié
94d45fc77f N°1248 - User Management Portal 
* Added a new grant_by_profile category that allows to manage certain classes in addition to bizmodel with user profiles.
* The following classes have the new grant_by_profile category:
    User, UserInternal, UserLocal, UserLDAP, UserExternal, URP_UserProfile, URP_UserOrg
* For these classes, it is possible to manage access rights with user profiles for non-administrators.
* For these classes, the default behavior of SELECT requests changes from allowed to forbidden.
* For user profiles, the default behavior '*' is limited to the bizmodel category to keep the previous behavior of profiles, i. e. for classes in the grant_by_profile category, rights (including READ) must be given explicitly.
* New constraints have been added, so only an administrator can manage (attach or detach) the 'Administrator' profile.

SVN:trunk[5298]
 2018-01-30 15:17:51 +00:00
Denis Flaven
6544659251 Small setup refactoring for getting ready for the Hub. 
SVN:trunk[5232]
 2018-01-10 15:47:15 +00:00
Guillaume Lajarige
c7857835c7 N°850 Show "delete" and "bulk delete" rights in user's grant matrix. 
SVN:trunk[5177]
 2017-12-28 10:37:04 +00:00
Romain Quetiez
cba6e8d8a3 890.3 Fixed regression introduced in commit 4870 - fatal error during a MTP from the designer 
SVN:trunk[4874]
 2017-08-23 15:31:08 +00:00
Romain Quetiez
b1494d0dd9 N890.3 Archive mode toggle menu not visible after setup/MTP: the information is cached into the session and needs to be reset 
SVN:trunk[4870]
 2017-08-21 15:28:07 +00:00
Romain Quetiez
46b5293867 N.542, N.912 Finalized the API UserRights::Impersonate. This is an enabler for several enhancements. 
SVN:trunk[4837]
 2017-07-18 09:36:25 +00:00
Romain Quetiez
b238283104 Archives: show the menu 'activate archive mode' only if there is at least one archivable class 
SVN:trunk[4701]
 2017-04-27 08:53:23 +00:00
Romain Quetiez
fa2fd6dcdf NEW! Archiving data. Archiving is a soft delete. It can be undone. Enter the archive mode to see all the data including archives (everything is read-only in that mode). Archiving must be enabled per class (data model). Archiving is achieved by the mean of the API DBObject::Archive (or Unarchive). 
SVN:trunk[4692]
 2017-04-26 09:52:20 +00:00
Denis Flaven
fcc5342775 Bug fix: protect against a non existing Contact class (a rather drastic iTop customization!) 
SVN:trunk[4559]
 2017-02-24 14:09:44 +00:00
Romain Quetiez
47ec6d4917 N.523 UserRights::ListProfiles must return an empty array if nobody is currently logged in (instead of a FATAL ERROR). 
SVN:trunk[4478]
 2016-11-18 15:47:20 +00:00
Denis Flaven
2773419faa New field on the User class to enable/disable user accounts. 
SVN:trunk[4230]
 2016-06-21 09:22:14 +00:00
Denis Flaven
63b6b95f71 Use one-way encryption for storing the token used for the "Forgotten password" feature. 
SVN:trunk[3920]
 2016-02-19 18:17:11 +00:00
Romain Quetiez
e0fad5e0e6 Magic query arguments: 
- In addition to current_contact_id, the following arguments can be used in any OQL query (provided that the page running the query requires a  login): current_contact->attcode and current_user->attcode
- Code refactoring: magic arguments in one single place
- The "Run queries" page is now taking into account those magic arguments (do not prompt the end-user with these arguments!)

SVN:trunk[3912]
 2016-02-17 18:55:46 +00:00
Romain Quetiez
b978a5d219 Fixed regression introduced in [3852] : setup not working anymore ($_SESSION is unset and a notice is issued, which can prevent the install from completing, depending on your PHP error level). 
SVN:trunk[3891]
 2016-01-28 11:11:12 +00:00
Guillaume Lajarige
879f5d89b9 Moved static method GetAllowedPortals() from LoginWebpage class to UserRights class. 
SVN:trunk[3862]
 2016-01-15 10:32:17 +00:00
Romain Quetiez
3be0bc8ca8 Improved the User Rights management API: 
- new verbs: HasProfile and ListProfiles
- doing less queries (no need for listing all the profiles, caching the user profiles into the SESSION cookie
- did some code cleanup (unused variables)

SVN:trunk[3852]
 2015-12-15 20:30:30 +00:00
Romain Quetiez
62959a89bc #1091 CAS memberships broken (parameter "cas_memberof" NOT given as a regular expression, bugged since iTop 2.0 or earlier) 
SVN:trunk[3731]
 2015-09-08 12:39:02 +00:00
Romain Quetiez
d8113a3304 #1130 CAS authentication security leak when cas_memberof is left empty (already committed into branch 2.1.0) 
SVN:trunk[3685]
 2015-08-18 13:48:12 +00:00
Romain Quetiez
baf54a7c02 #942 OQL now supporting unions. Unions support polymorphism and can be used anywhere in the application. 
SVN:trunk[3631]
 2015-07-08 17:10:40 +00:00
Denis Flaven
1f2ad9ecdb Demo mode: prevent the deletion of Users... 
SVN:trunk[3452]
 2014-12-04 10:02:14 +00:00
Romain Quetiez
372c0835f7 #988 Could not change the case of a login (cosmetic improvement to make sure this piece of code is the right example that can be shared amongst the developpers community) 
SVN:trunk[3342]
 2014-09-16 10:16:10 +00:00
Romain Quetiez
fa856c32cd #988 Could not change the case of a login 
SVN:trunk[3338]
 2014-09-16 08:04:37 +00:00