Commit message (Collapse) | Author | Age | Files | Lines | ||
---|---|---|---|---|---|---|
... | ||||||
* | Make the token expiration also work for autocasting 0 | Roeland Jago Douma | 2018-06-08 | 1 | -1/+1 | |
| | | | | | | | Some bad databases don't respect the default null apprently. Now even if they cast it to 0 it should work just fine. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl> | |||||
* | Certain tokens can expire | Roeland Jago Douma | 2018-05-17 | 5 | -5/+43 | |
| | | | | | | | | However due to the nature of what we store in the token (encrypted passwords etc). We can't just delete the tokens because that would make the oauth refresh useless. Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl> | |||||
* | Allow the rotation of tokens | Roeland Jago Douma | 2018-05-16 | 4 | -2/+63 | |
| | | | | | | This for example will allow rotating the apptoken for oauth Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl> | |||||
* | Refix scope | Roeland Jago Douma | 2018-05-15 | 2 | -3/+5 | |
| | | | | Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl> | |||||
* | Fix tests | Roeland Jago Douma | 2018-05-15 | 4 | -17/+29 | |
| | | | | Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl> | |||||
* | Make the Token Auth code strict | Roeland Jago Douma | 2018-05-15 | 5 | -90/+94 | |
| | | | | | | In preparation for #9441 Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl> | |||||
* | Move over TokenMapper | Roeland Jago Douma | 2018-05-10 | 1 | -1/+2 | |
| | | | | Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl> | |||||
* | Use ::class statement instead of string | Morris Jobke | 2018-01-29 | 1 | -1/+1 | |
| | | | | Signed-off-by: Morris Jobke <hey@morrisjobke.de> | |||||
* | Loss of performance on Login after upgrade from NC10 + LDAP to NC 12 + LDAP ↵ | Flávio Gomes da Silva Lisboa | 2017-11-27 | 1 | -0/+1 | |
| | | | | | | #6732 Signed-off-by: Lukas Reschke <lukas@statuscode.ch> | |||||
* | Update license headers | Morris Jobke | 2017-11-06 | 5 | -0/+15 | |
| | | | | Signed-off-by: Morris Jobke <hey@morrisjobke.de> | |||||
* | Fix duplicate session token after remembered login | Christoph Wurst | 2017-09-20 | 1 | -0/+1 | |
| | | | | | | | | | On a remembered login session, we create a new session token in the database with the values of the old one. As we actually don't need the old session token anymore, we can delete it right away. Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at> | |||||
* | Fix auth provider | Joas Schilling | 2017-08-02 | 1 | -1/+1 | |
| | | | | Signed-off-by: Joas Schilling <coding@schilljs.com> | |||||
* | Fix clob comparison | Joas Schilling | 2017-08-02 | 1 | -1/+1 | |
| | | | | Signed-off-by: Joas Schilling <coding@schilljs.com> | |||||
* | More phpstorm inspection fixes | Roeland Jago Douma | 2017-07-24 | 1 | -2/+1 | |
| | | | | Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl> | |||||
* | Minor typos | Marcel Waldvogel | 2017-07-21 | 3 | -3/+3 | |
| | | | | Signed-off-by: Marcel Waldvogel <marcel.waldvogel@uni-konstanz.de> | |||||
* | Rename table back to lowercase | Lukas Reschke | 2017-05-18 | 1 | -8/+8 | |
| | | | | Signed-off-by: Lukas Reschke <lukas@statuscode.ch> | |||||
* | delete auth token when client gets deleted | Bjoern Schiessle | 2017-05-18 | 1 | -7/+19 | |
| | | | | Signed-off-by: Bjoern Schiessle <bjoern@schiessle.org> | |||||
* | Defining App "cron" for "Invalidating tokens older than" message #27167 (#27201) | Martin | 2017-03-19 | 1 | -2/+2 | |
| | | | | Signed-off-by: Morris Jobke <hey@morrisjobke.de> | |||||
* | copy remember-me value when renewing a session token | Christoph Wurst | 2016-11-27 | 1 | -0/+1 | |
| | | | | | | | | | On renew, a session token is duplicated. For some reason we did not copy over the remember-me attribute value. Hence, the new token was deleted too early in the background job and remember-me did not work properly. Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at> | |||||
* | use lower loglevel for token cleanup messages | Robin Appelman | 2016-11-17 | 1 | -2/+2 | |
| | | | | Signed-off-by: Robin Appelman <robin@icewind.nl> | |||||
* | Add test for setting up fake fs | Robin Appelman | 2016-11-16 | 1 | -1/+1 | |
| | | | | Signed-off-by: Robin Appelman <robin@icewind.nl> | |||||
* | Adds TokenProvider and Mapper tests | Roeland Jago Douma | 2016-11-16 | 1 | -7/+5 | |
| | | | | Signed-off-by: Roeland Jago Douma <roeland@famdouma.nl> | |||||
* | explicit types | Robin Appelman | 2016-11-16 | 1 | -5/+11 | |
| | | | | Signed-off-by: Robin Appelman <robin@icewind.nl> | |||||
* | cast to int | Robin Appelman | 2016-11-16 | 1 | -2/+2 | |
| | | | | Signed-off-by: Robin Appelman <robin@icewind.nl> | |||||
* | phpdoc | Robin Appelman | 2016-11-16 | 1 | -2/+1 | |
| | | | | Signed-off-by: Robin Appelman <robin@icewind.nl> | |||||
* | fix setscope | Robin Appelman | 2016-11-16 | 1 | -2/+2 | |
| | | | | Signed-off-by: Robin Appelman <icewind@owncloud.com> | |||||
* | allow configuring filesystem access | Robin Appelman | 2016-11-16 | 5 | -7/+71 | |
| | | | | Signed-off-by: Robin Appelman <icewind@owncloud.com> | |||||
* | app password scope wip | Robin Appelman | 2016-11-16 | 3 | -2/+19 | |
| | | | | Signed-off-by: Robin Appelman <icewind@owncloud.com> | |||||
* | read lockdown scope from token | Robin Appelman | 2016-11-16 | 3 | -2/+19 | |
| | | | | Signed-off-by: Robin Appelman <icewind@owncloud.com> | |||||
* | document what the method does | Christoph Wurst | 2016-11-02 | 1 | -0/+2 | |
| | | | | Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at> | |||||
* | Add missing tests and fix PHPDoc | Lukas Reschke | 2016-11-02 | 2 | -1/+9 | |
| | | | | Signed-off-by: Lukas Reschke <lukas@statuscode.ch> | |||||
* | bring back remember-me | Christoph Wurst | 2016-11-02 | 5 | -12/+56 | |
| | | | | | | | | | | * try to reuse the old session token for remember me login * decrypt/encrypt token password and set the session id accordingly * create remember-me cookies only if checkbox is checked and 2fa solved * adjust db token cleanup to store remembered tokens longer * adjust unit tests Signed-off-by: Christoph Wurst <christoph@winzerhof-wurst.at> | |||||
* | add invalidateOldTokens to IProvider interface | Christoph Wurst | 2016-08-02 | 2 | -3/+7 | |
| | ||||||
* | Fix others | Joas Schilling | 2016-07-21 | 6 | -6/+12 | |
| | ||||||
* | Merge pull request #25172 from owncloud/token-login-validation | Vincent Petry | 2016-06-22 | 5 | -29/+66 | |
|\ | | | | | Token login validation | |||||
| * | store last check timestamp in token instead of session | Christoph Wurst | 2016-06-17 | 5 | -24/+58 | |
| | | ||||||
| * | use token last_activity instead of session value | Christoph Wurst | 2016-06-17 | 2 | -5/+8 | |
| | | ||||||
* | | update session token password on user password change | Christoph Wurst | 2016-06-21 | 2 | -0/+27 | |
| | | ||||||
* | | close cursor after loading a token | Christoph Wurst | 2016-06-17 | 1 | -0/+1 | |
|/ | ||||||
* | do not generate device token if 2FA is enable for user | Christoph Wurst | 2016-06-07 | 1 | -0/+1 | |
| | ||||||
* | Create session tokens for apache auth users | Christoph Wurst | 2016-05-31 | 3 | -5/+14 | |
| | ||||||
* | Update license headers | Lukas Reschke | 2016-05-26 | 6 | -6/+0 | |
| | ||||||
* | when generating browser/device token, save the login name for later password ↵ | Christoph Wurst | 2016-05-24 | 5 | -6/+32 | |
| | | | | checks | |||||
* | add button to invalidate browser sessions/device tokens | Christoph Wurst | 2016-05-23 | 5 | -6/+37 | |
| | ||||||
* | add button to add new device tokens | Christoph Wurst | 2016-05-23 | 2 | -1/+4 | |
| | ||||||
* | list user's auth tokens on the personal settings page | Christoph Wurst | 2016-05-23 | 1 | -1/+11 | |
| | ||||||
* | add method to query all user auth tokens | Christoph Wurst | 2016-05-18 | 3 | -0/+54 | |
| | ||||||
* | a single token provider suffices | Christoph Wurst | 2016-05-18 | 4 | -10/+62 | |
| | ||||||
* | don't spam the log file with failed token validation entries | Christoph Wurst | 2016-05-13 | 1 | -3/+1 | |
| | ||||||
* | delete the token in case an exception is thrown when decrypting the password | Christoph Wurst | 2016-05-11 | 1 | -1/+8 | |
| |