Commit Graph

721 Commits

Author SHA1 Message Date
Hypolite Petovan bf82736522 Exclude /api and /proxy from 2fa check 2019-05-15 08:56:02 -04:00
Hypolite Petovan 78b651d2e8 Revert Use Contact::select() instead of DBA::select(‘contact) in Core\Session 2019-05-13 14:07:02 -04:00
Hypolite Petovan e077f30d51 Use Contact::select() instead of DBA::select(‘contact) in Core\Session
- Replace remaining occurrences of $_SESSION with Session methods
2019-05-13 13:33:20 -04:00
Hypolite Petovan d7e9b91181 Add two-factor authentication
- Add 2FA login interception in Session::setAuthenticatedForUser
- Add 2fa session variable holding the last auth code
2019-05-13 01:52:01 -04:00
Hypolite Petovan 6071fe81b4 Move Authentication::setAuthenticatedSessionForUser to Session::setAuthenticatedForUser 2019-05-13 01:51:59 -04:00
Hypolite Petovan f0f44dbd84 Delete all addon hooks by default on uninstall 2019-05-08 00:46:13 -04:00
Tobias Diekershoff 959054f2f2 Add subject to DB Update email 2019-05-06 11:13:38 +02:00
Philipp Holzer 62fd5375dc
Move mod/maintenance to src/Module/Maintenance 2019-05-05 10:06:50 +02:00
Philipp Holzer 6ff3389f6e
add status code to System::externalRedirect 2019-05-04 09:16:37 +02:00
Philipp Holzer d716a3326f
Move Console namespace one level up 2019-05-02 23:17:35 +02:00
Philipp 2628da422a
Merge pull request #7068 from MrPetovan/task/7047-theme-error-page
Themed error page redux
2019-05-02 21:15:29 +02:00
Hypolite Petovan 358baa9f62 Add themed error pages
- Module init, post and rawContent-triggered HTTPException generate the classic bare HTTP status page
- Module content-triggered HTTPException generate themed error pages
- Trim System::httpExit to the bare minimum
2019-05-02 11:26:56 -04:00
Hypolite Petovan 6df37afb82 Various feedback items
- Add logger call on theme install failure
- Add todo in Module\Admin\DBSync
2019-05-02 09:55:49 -04:00
Hypolite Petovan 9f4fb4906a Move addon admin list generation to Core\Addon 2019-05-02 09:55:49 -04:00
Hypolite Petovan 9774c95b80 Remove duplicate $baseurl template variable
- Remove unused $overwriteURL parameter in Renderer::replaceMacros
2019-05-02 09:55:48 -04:00
Hypolite Petovan fb503e82bf Normalize how we store enabled addons/themes in config value to straight comma-separated list 2019-05-02 09:52:54 -04:00
Hypolite Petovan 9bbb438534 Move admin/addons to src/Module
- Add Module\Admin\Addons\Index class
- Add route for admin/addons
- Add addons admin aside menu entry
- Remove unused template admin/addons.tpl from base and frio
- Remove addon list from mod/admin
2019-05-02 09:52:44 -04:00
Hypolite Petovan 9227aab837 Add system.allowed_themes config key handling in Core\Theme
- Add Theme::setAllowedList method
- Update the allowed theme list on theme install/uninstall
- Add theme file inclusion on uninstall allowing for theme_uninstall function to be called
- Removing logging from frontend methods
2019-05-02 09:52:42 -04:00
Philipp Holzer bc8d444989
remove extraneous space 2019-04-21 12:45:50 +02:00
Philipp Holzer 3ca8fa0e00
Support for APCu caching 2019-04-21 12:45:19 +02:00
Hypolite Petovan e9c230e109
Merge pull request #7018 from nupplaphil/feature/6245-Block_shell
New Command "BlockedServers"
2019-04-20 11:01:01 -04:00
Philipp Holzer 8660f6d86f
Rename BlockedServers to ServerBlock 2019-04-20 16:40:27 +02:00
Philipp Holzer fa71a9a0ce
Improve redis configuration
- basic authentication
- switch database (0 - 15)
2019-04-20 13:40:40 +02:00
Philipp Holzer f05f02409e
Add update possibility to BlockedServers 2019-04-20 13:24:33 +02:00
Philipp Holzer 7ce76d153a
rename description to reason 2019-04-20 12:54:38 +02:00
Philipp Holzer 55d2473ec2
Add tests & default reason 2019-04-20 12:53:17 +02:00
Philipp Holzer e25f269aab
New command "BlockedServers" 2019-04-20 10:42:28 +02:00
Philipp Holzer 03e149270b
bugfix 2019-04-14 14:40:26 +02:00
Philipp Holzer 58c9566c3d
code style & install-403 fix 2019-04-14 14:24:01 +02:00
Philipp Holzer d90eb6a811
Remove php_path duplicate in auto-install 2019-04-14 14:24:00 +02:00
Philipp Holzer 8fe606660d
trim whitespaces 2019-04-14 14:23:59 +02:00
Philipp Holzer 3a0664d827
fixing auto install tests 2019-04-14 14:23:58 +02:00
Philipp Holzer 677cb205f5
fix auto install 2019-04-14 14:23:58 +02:00
Philipp Holzer 90a38a00d8
Adding basepath, urlpath, hostname and ssl_policy to installation 2019-04-14 14:23:06 +02:00
Philipp Holzer fbd056327a
DBA-Logger fix 2019-04-13 20:46:58 +02:00
Hypolite Petovan 75387ea171
Merge pull request #6991 from fabrixxm/fix/invalid-storage-on-legacy
Allow set empty string storage class for legacy
2019-04-11 09:04:48 -04:00
Hypolite Petovan 9162f714e0 Add uri to missing session data logging context in Session handlers 2019-04-11 05:26:37 -04:00
Philipp Holzer dc48690ed5
Remove hostname blacklisting 2019-04-11 00:09:59 +02:00
fabrixxm 72bee45079 Revert b2794bb2c 'Allow set empty string storge class for legacy' 2019-04-10 08:35:44 +02:00
fabrixxm b2794bb2c9 Allow set empty string storge class for legacy
Legacy storage is defined by an empty string.
`StorageManager::setBackend()` now accept an empty string as a valid
backend storage.
2019-04-09 16:32:15 +02:00
Philipp Holzer 63660b6fc0
Removed unnecessary class 2019-04-09 08:31:19 +02:00
Philipp Holzer 318a3ca785
Create own base URL class which holds the whole base url business logic 2019-04-09 08:31:16 +02:00
Tobias Diekershoff c4fef79f32 Add subject to DB Update email 2019-04-08 10:55:18 +02:00
Michael 46a99a05a1 Remove the queue from the core 2019-04-05 18:04:39 +00:00
Hypolite Petovan cc64471e4c Sanitize addon path items 2019-03-31 21:53:08 -04:00
Hypolite Petovan b529c03a20 Sanitize theme path items
- Sanitize theme style/color/scheme path items
2019-03-31 21:52:48 -04:00
Hypolite Petovan 6aac84dc8e Add Theme::getAllowedList method 2019-03-31 21:41:38 -04:00
Philipp Holzer 363d6b72ae
wrong indent 2019-03-30 19:10:19 +01:00
Philipp Holzer 0a447cb61b
wrong indent 2019-03-30 19:08:47 +01:00
Philipp Holzer e0b1f4f251
Hardening ConfigUpgrade 2019-03-30 18:54:22 +01:00