Commit graph

129 commits

Author SHA1 Message Date
Philipp
e4a83eafb8
Add a lot of log-points 2022-07-07 21:33:41 +02:00
Philipp
0223c030a9
Improve 2 factor usage 2022-06-25 23:04:00 +02:00
Philipp
d441b90bda
Respect Forwarded-For headers 2022-06-23 22:42:35 +02:00
Philipp
e299fc67c8
Introduce "accept_header" as specific argument to the http client 2022-04-02 21:16:53 +02:00
Philipp
73c3b21665
Move ACCEPT constants to own "enum" class 2022-04-02 20:26:11 +02:00
Michael
1fae0123ec Some more "accept" parameters are added 2022-03-29 06:24:20 +00:00
Hypolite Petovan
1a4ec00fec Handle null value for last_used fields in TrustedBrowsers and AppSpecificPassword
- Remove obsolete reference to DBA::NULL_DATETIME
2022-01-22 21:10:20 -05:00
Philipp
c588b280d7
Fix all license header & be less aggressive 2022-01-07 00:35:28 +01:00
Balázs Úr
733f3de9ed Add missing copyright text 2022-01-02 10:49:50 +01:00
Philipp
322b7c856c
Merge pull request #11129 from urbalazs/copyright-2022
Update copyright
2022-01-02 09:45:35 +01:00
Balázs Úr
e56a53647b Update copyright 2022-01-02 08:27:47 +01:00
Philipp
5f3421701f
Fix 2FA AppSpecificPassword 2021-12-12 20:09:10 +01:00
Hypolite Petovan
ecaed2a845 Update DateTimeFormat documentation
- Remove an explicit default value parameter
2021-12-04 17:52:01 -05:00
Philipp
b5d2d32b44
Split and delete ModuleController
- $moduleName is part of the argument string => App\Arguments
- $isBackend boolean already part of App\Mode::isBackend()
- $module is now the direct return of App\Router::getModule()
- ModuleController::run() moved to BaseModule::run()
2021-11-27 12:39:45 +01:00
Hypolite Petovan
dbcaf51923
Merge pull request #11018 from annando/api-status
API: The status is now an object
2021-11-25 20:27:15 -05:00
Michael
2c7c63a493 Testing tests 2021-11-24 07:29:29 +00:00
Hypolite Petovan
23e1130264 Move title attribute to <time> tag
- Use correct machine-readable value in datetime attribute
2021-11-21 22:51:21 -05:00
Michael
3dd35ef6ec Possibly fixing the test 2021-11-18 08:03:50 +00:00
Michael
42bd7918ad allow_api removed 2021-11-18 07:14:23 +00:00
Michael
3c0f22b2dd Testing tests 2021-11-17 22:50:43 +00:00
Michael
abbe7895ae Fixing tests - maybe 2021-11-17 22:12:21 +00:00
Philipp
e477cf215d
Make API testable & move PhotoAlbum tests to new destination 2021-11-12 21:08:36 +01:00
Michael
23b10cf2ae Some removed escapeTags calls 2021-11-05 19:59:18 +00:00
Philipp
fc233fd5e1
Replace REGEXP with LOCATE for allow_cid and deny_cid 2021-10-31 19:53:38 +01:00
Philipp
49c16a9dad
Fix HTTP Code 2021-10-31 15:14:57 +01:00
Philipp
130f97717d
Add tests & remove unused method 2021-10-31 13:58:52 +01:00
Philipp
71cdbcfc24
Add default value for "user_contact_str" (fixes https://github.com/friendica/friendica/issues/10943 ) 2021-10-31 13:50:02 +01:00
Philipp
a38abd3363
AAdd domain specific Exceptions for PermissionSet 2021-10-31 13:50:01 +01:00
Philipp
58eea1adaa
Cleanup namespaces 2021-10-26 22:11:10 +02:00
Philipp
b216317477
Refactoring Core class structures ... 2021-10-26 22:11:09 +02:00
Philipp
4a386b2f36 Add some missing Copyright header 2021-10-23 21:45:36 -04:00
Philipp
5d92713a8e Rename Depository to Repository 2021-10-23 21:45:36 -04:00
Philipp
bf224b58f8
Move to PermissionSet::isPublic() 2021-10-18 23:32:47 +02:00
Philipp
64a336ee8d
Rename method again 2021-10-18 23:32:46 +02:00
Philipp
b5d994394e
Fixing PUBLIC usage, Fixing DB-View, Creating tests 2021-10-18 23:32:45 +02:00
Philipp
5fecc9ecf7
Adapt ProfileField & Fix current PermissionSet Usage at ProfileFields 2021-10-18 23:32:44 +02:00
Hypolite Petovan
ca2c73a2cd Account for the PUBLIC value for id parameter in Depository\PermissionSet::selectOneById 2021-10-16 15:42:21 -04:00
Philipp
f73e4adc44
Add explicit check for PermissionSet and ProfileField 2021-10-07 20:48:39 +02:00
Philipp
03164d00e8
Add feedback and tests 2021-10-07 19:53:39 +02:00
Philipp
9e6962eac6
Make php-cs happy :-) 2021-10-07 19:53:38 +02:00
Philipp
62eb16e9ad
Migrate PermissionSet to Depository paradigm 2021-10-07 19:53:38 +02:00
Hypolite Petovan
6db211568a Remove most calls to date_default_timezone_* calls
- It was wrongly used to set the node-wide ot user-specific timezone
- It is now fully managed from the App object
- Add a static variable to DateTimeFormat maintain the convenient local() method
2021-10-03 13:42:31 -04:00
Michael
666cff7d55 "q" call is replaced 2021-10-02 11:08:12 +00:00
Philipp
13a91e63aa
Rename DI::httpRequest() into DI::httpClient() 2021-08-25 21:54:54 +02:00
Michael
28cfdec7c4 Some more renamed functions 2021-08-09 20:56:15 +00:00
Michael
9f01052dd2 Removed some more unused "use" 2021-08-08 20:03:28 +00:00
Michael
28090bd793 Get rid of App->user completely 2021-08-08 19:30:21 +00:00
Michael
fc283ab928 Remove direct calls to App->user 2021-08-08 10:14:56 +00:00
Michael
df558d4056 Completely removed argc/argv 2021-07-25 15:23:37 +00:00
Michael
866dbf9f89 Use getter/setter for timezone value 2021-07-24 21:16:53 +00:00
Michael
8f46064430 Using getter/setter functions 2021-07-24 20:34:07 +00:00
Michael
2420bf84db Simplified code 2021-07-24 13:29:58 +00:00
Michael
30aad250df App->contact is now removed 2021-07-24 11:49:11 +00:00
Michael
2502a9192d Many more app-variables removed 2021-07-24 10:09:39 +00:00
Michael
6668066099 The legacy OAuth server is removed 2021-07-20 17:41:04 +00:00
Michael
7dd5ea42e9 An empty user id does not have children 2021-06-19 06:27:25 +00:00
Michael
6b3476409a Check for REDIRECT_REMOTE_USER as well 2021-06-16 19:39:51 +00:00
Michael
8bf5dd187b Added "source" detection 2021-06-08 17:48:41 +00:00
Michael
0f0a301280 Move basic auth functionality to the new class 2021-06-08 17:32:41 +00:00
Michael
9720ee2c20 Rearranged scope check 2021-06-08 09:11:56 +00:00
Michael
95cac04540 Rearranged function order 2021-06-08 08:56:01 +00:00
Michael
8cde7fe51f Standards 2021-06-08 07:37:28 +00:00
Michael
4b280a7279 Standards 2021-06-08 07:35:36 +00:00
Michael
ca5e0eaaea Fix coding standards 2021-06-08 07:33:53 +00:00
Michael
126e281165 Improved documentation 2021-06-08 06:39:23 +00:00
Michael
acbe9ebf9e API: New classes for OAuth and basic auth 2021-06-08 06:32:24 +00:00
Hypolite Petovan
09cf32926d
Merge pull request #10275 from very-ape/authenticate-hook
Move the 'authenticate' hook deeper into the authentication flow so t…
2021-05-19 16:51:15 -04:00
very-ape
9ddaabc22d Move the 'authenticate' hook deeper into the authentication flow so that password authentication addons are consulted whenever a user's password needs confirming. 2021-05-19 13:11:31 -07:00
Michael
82003bbe47 Login prototype 2021-05-11 06:30:20 +00:00
Balázs Úr
054c301ef0 Update copyright 2021-03-29 08:40:20 +02:00
Hypolite Petovan
50f97e977a Added support for trusted browser during authentication 2021-01-23 05:42:59 -05:00
Hypolite Petovan
72bb3bce34 Add trusted browser classes
- Added some tests
2021-01-23 05:42:59 -05:00
Hypolite Petovan
3e257d4266 Move all two-factor authentication classes in Security\TwoFactor 2021-01-23 05:42:58 -05:00
Hypolite Petovan
c644d76d28 Allow setting arbitrary keys in the cookie array 2021-01-23 05:42:58 -05:00
Michael
bd0e2dc0a8 Avoid problems with uid=0 2020-11-19 17:19:14 +00:00
Philipp
3a52179393
Move 'Authentication' to Security namespace 2020-09-30 16:53:18 +02:00
Philipp
c1708fe54c
Cleanup OAuth1 library 2020-09-30 11:26:52 +02:00
Philipp
fe653b652a
Move library\OAuth1.php to class structure Friendica\Security\OAuth1 2020-09-30 11:21:58 +02:00
Philipp
8318a0b640
Move ExAuth, FKOAuth1 & FKOAuthDataStore to own namespace Friendica\Security 2020-09-30 11:14:01 +02:00