Commit Graph

105 Commits

Author SHA1 Message Date
Matt Peel
adc8757859 Changed Security::permissionFailure to be what it should be - $controller instead of $page. However, it doesn't seem to be used anywhere anyway...
git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@44408 467b73ca-7a2a-4603-9d3b-597d59a354a9
2007-11-07 02:33:09 +00:00
Ingo Schommer
66ecc4e75e ENHANCEMENT added Authenticator::$default_authenticator to enable modifying the tab-order
git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@44381 467b73ca-7a2a-4603-9d3b-597d59a354a9
2007-11-06 21:18:27 +00:00
Sean Harvey
6a9e104006 Removed OpenID from core - it is now a module
git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@44372 467b73ca-7a2a-4603-9d3b-597d59a354a9
2007-11-06 06:06:00 +00:00
Normann Lou
e982a93ff3 Wrong parameters pass in _t(), the Namespace is missing.
git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@44367 467b73ca-7a2a-4603-9d3b-597d59a354a9
2007-11-06 05:42:28 +00:00
Ingo Schommer
bf90bd15b0 ENHANCEMENT: call Page_Controller->init() when rendering /Security/changepassword etc to respect any Requirements called in there
(thanks rhalff!)

see http://open.silverstripe.com/ticket/1595


git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@44361 467b73ca-7a2a-4603-9d3b-597d59a354a9
2007-11-06 05:23:00 +00:00
Andrew O'Neil
9a118c3693 Removed Member::add_role()
git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@44254 467b73ca-7a2a-4603-9d3b-597d59a354a9
2007-11-05 03:04:58 +00:00
Andrew O'Neil
1509d413e5 #1457 - Redirection after login doesn't behave correctly if login fails (merged from 2.1.1 branch, r43601)
git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@44197 467b73ca-7a2a-4603-9d3b-597d59a354a9
2007-11-04 21:30:57 +00:00
Jeremy Shipman
4c76be62c9 Reverting typography changes
git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@44162 467b73ca-7a2a-4603-9d3b-597d59a354a9
2007-11-02 03:01:40 +00:00
Jeremy Shipman
943c892548 added cms_typography.css to replace typography.css in the cms, as it confusues with front end typography.css
git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@44156 467b73ca-7a2a-4603-9d3b-597d59a354a9
2007-11-02 02:14:20 +00:00
Andrew O'Neil
eefc4ffc06 #1562 - Group codes don't appear to be generated upon creation of group
git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@44002 467b73ca-7a2a-4603-9d3b-597d59a354a9
2007-10-30 03:17:18 +00:00
Andrew O'Neil
808d6875cb #941 - Security flaw: SS prone to CSRF attack
git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@43901 467b73ca-7a2a-4603-9d3b-597d59a354a9
2007-10-28 21:44:38 +00:00
Matt Peel
7d0ddb9d33 Trac #1533: Fixed Geoip::ip2country() to use user_error() instead of trigger_error() (standard practice, even though user_error()
is just an alias of trigger_error()) and made it raise an appropriate error (E_USER_NOTICE)


git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@43875 467b73ca-7a2a-4603-9d3b-597d59a354a9
2007-10-26 02:09:34 +00:00
Ingo Schommer
cbbd5e118c BUGFIX failing db/build due to wrong __construct()
git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@43843 467b73ca-7a2a-4603-9d3b-597d59a354a9
2007-10-25 03:00:33 +00:00
Ingo Schommer
393caf4287 FEATURE made sapphire i18n-capable
FEATURE a little bit of german translation

git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@43842 467b73ca-7a2a-4603-9d3b-597d59a354a9
2007-10-25 02:47:45 +00:00
Andrew O'Neil
06c2bd9b10 #1462 - OpenID $currentController problem
git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@43841 467b73ca-7a2a-4603-9d3b-597d59a354a9
2007-10-25 02:38:35 +00:00
Andrew O'Neil
423decf09b #104 - createNewPassword() wordlist in static
git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@43836 467b73ca-7a2a-4603-9d3b-597d59a354a9
2007-10-25 01:51:53 +00:00
Andrew O'Neil
34590580e9 #135 - OpenID login: SQL Error "Specified key was too long"
git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@43785 467b73ca-7a2a-4603-9d3b-597d59a354a9
2007-10-24 21:15:36 +00:00
Ingo Schommer
88da4cf399 BUGFIX has_default_admin was using $default_admin instead of $default_username
git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@43762 467b73ca-7a2a-4603-9d3b-597d59a354a9
2007-10-24 01:15:53 +00:00
Hayden Smith
94c923459d Added a security fix for Security::check_default_admin()
git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@43686 467b73ca-7a2a-4603-9d3b-597d59a354a9
2007-10-23 01:18:39 +00:00
Ingo Schommer
ba85ce7a0b FEATURE Respects 'lang' stored in cookies
ENHANCEMENT choose_site_lang() accepts $availableLang (useful to check if a certain page has a translation, and fall back to default language)
ENHANCEMENT Added documentation
BUGFIX Rewrote Member->Lang to Member->Locale (CMS-translations are stored in locales as well), limited Locale Varchar to 6 characters, changed profile dropdown accordingly

git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@43659 467b73ca-7a2a-4603-9d3b-597d59a354a9
2007-10-21 19:53:57 +00:00
Ingo Schommer
24be30314a removed forum-specific logic from "my profile"
git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@43184 467b73ca-7a2a-4603-9d3b-597d59a354a9
2007-10-07 23:41:21 +00:00
Andrew O'Neil
c7231c6935 mlanthaler: Fixed typo and updated docBlock (merged from gsoc branch, r42439)
git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@42972 467b73ca-7a2a-4603-9d3b-597d59a354a9
2007-10-02 22:18:45 +00:00
Andrew O'Neil
588b091770 mlanthaler: default styling for open id login (merged from gsoc branch, r42438)
git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@42968 467b73ca-7a2a-4603-9d3b-597d59a354a9
2007-10-02 22:11:59 +00:00
Andrew O'Neil
cfaa390102 mlanthaler: Fixed some docBlocks and "reformatted" code (merged from gsoc branch, r42437)
git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@42960 467b73ca-7a2a-4603-9d3b-597d59a354a9
2007-10-02 21:57:12 +00:00
Andrew O'Neil
7df57c3040 DataObject merging error solving (merged from 2.1.0 branch, r42561 & 42588)
git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@42923 467b73ca-7a2a-4603-9d3b-597d59a354a9
2007-10-02 04:55:55 +00:00
Andrew O'Neil
e46e5e73c9 Allow logging in via BasicAuth, so the publish site script can login before doing a db/build (merged from 2.1.0 branch, r41535)
git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@42909 467b73ca-7a2a-4603-9d3b-597d59a354a9
2007-10-02 04:32:11 +00:00
Andrew O'Neil
508830ec38 Use permission code (merged from 2.1.0 branch, r41533)
git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@42908 467b73ca-7a2a-4603-9d3b-597d59a354a9
2007-10-02 04:30:20 +00:00
Andrew O'Neil
03807c5883 Fix notices
git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@42907 467b73ca-7a2a-4603-9d3b-597d59a354a9
2007-10-02 04:24:46 +00:00
Ingo Schommer
6eb306f343 removing Security_login.css Requirement (slipped in accidentally)
git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@42751 467b73ca-7a2a-4603-9d3b-597d59a354a9
2007-09-27 23:14:40 +00:00
Ingo Schommer
e07939d9df styling in profile-popup
git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@42748 467b73ca-7a2a-4603-9d3b-597d59a354a9
2007-09-27 23:06:15 +00:00
Ingo Schommer
a6700028b2 BUGFIX: Changed language-dropdown to normal dropdown-field (wasn't selecting the right languages)
FEATURE: Added "profile"-popup with Member_ProfileForm (see r42730)

git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@42732 467b73ca-7a2a-4603-9d3b-597d59a354a9
2007-09-27 21:16:23 +00:00
Ingo Schommer
3bcf84de92 ENHANCEMENT: Coding conventions (check_default_admin())
ENHANCEMENT: only include tab-styling/js when more than one login-method is available

git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@42731 467b73ca-7a2a-4603-9d3b-597d59a354a9
2007-09-27 21:13:59 +00:00
Ingo Schommer
0bf09f0df0 removed DriversLicense references from LoginForm (guess thats leftovers from perweek-client)
git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@42367 467b73ca-7a2a-4603-9d3b-597d59a354a9
2007-09-21 00:07:15 +00:00
Ingo Schommer
e7993a1bb0 BUGFIX: removed Security::get_default_username() and Security::get_default_password()
had rather severe security implications due to the way PHP handles static methods as instance methods,
combined with silverstripe's url->method-mapping
(EPIC FALE! on my behalf...)
added Security::checkDefaultAdmin()

git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@42204 467b73ca-7a2a-4603-9d3b-597d59a354a9
2007-09-17 21:51:42 +00:00
Ingo Schommer
ddb0136c62 MERGE-FIX: updated requirements
git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@42157 467b73ca-7a2a-4603-9d3b-597d59a354a9
2007-09-16 17:41:36 +00:00
Ingo Schommer
6205cff4f1 Changed $username/$password to $default_username/$default_password,
respecting Security::setDefaultAdmin() in MemberAuthenticator? 
(merged from branches/gsoc)


git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@42156 467b73ca-7a2a-4603-9d3b-597d59a354a9
2007-09-16 17:39:41 +00:00
Ingo Schommer
2271dc5d4a mlanthaler: Refactored the created code since the coding conventions for static methods were changed (ticket #49).
(merged from branches/gsoc)


git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@42155 467b73ca-7a2a-4603-9d3b-597d59a354a9
2007-09-16 17:30:12 +00:00
Ingo Schommer
e7bc735774 mlanthaler: The validators for the Member extensions didn't work until now, these changes fix that issue.
(merged from branches/gsoc)


git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@42144 467b73ca-7a2a-4603-9d3b-597d59a354a9
2007-09-16 16:55:47 +00:00
Ingo Schommer
44d5aef37a bfojcapell: Added Lang field to store user preferred language
(merged from branches/gsoc)


git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@42124 467b73ca-7a2a-4603-9d3b-597d59a354a9
2007-09-16 16:21:55 +00:00
Ingo Schommer
b604ed0a31 mlanthaler: Added short description of OpenID to the login form.
Please update also the stylesheet "openid_login.css" in mysite/css (it's not under version control, so I'll post the content of the file here). 

-- openid_login.css -- 
#OpenIDLoginForm_LoginForm_OpenIDURL { 

background: url(../../sapphire/images/openid-small.gif) no-repeat; 
background-color: #fff; 
background-position: 0 50%; 
color: #000; 
padding-left: 18px; 
width: 284px; 

} 

#OpenIDDescription { 

margin-bottom: 2em; 

} 

#OpenIDDescription p { 

font-size: 1em; 
line-height: 1.3em; 
margin-top: 0 !important; 

} 
(merged from branches/gsoc)


git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@42095 467b73ca-7a2a-4603-9d3b-597d59a354a9
2007-09-16 15:35:13 +00:00
Ingo Schommer
84aef28d55 mlanthaler: Added method to check if an authenticator is registered.
(merged from branches/gsoc)


git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@42094 467b73ca-7a2a-4603-9d3b-597d59a354a9
2007-09-16 15:34:35 +00:00
Ingo Schommer
e9d323b0d8 mlanthaler: The introduction of the HTTPResponse object broke some of my code. It's fixed now.
There was also a bug in the Director class: Director::redirectBack() didn't work because it stopped the script before outputting the headers. 
(merged from branches/gsoc)


git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@42092 467b73ca-7a2a-4603-9d3b-597d59a354a9
2007-09-16 15:31:44 +00:00
Ingo Schommer
4f87512d73 mlanthaler: Added the possibility to define "deny permissions". See http://www.silverstripe.com/google-summer-of-code-forum/flat/3679?showPost=4105 for more details.
ischommer: merged with ability to provide comma-separated codes, cleaned up some code-formatting
(merged from branches/gsoc)


git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@42077 467b73ca-7a2a-4603-9d3b-597d59a354a9
2007-09-16 14:58:27 +00:00
Ingo Schommer
a9f718c0d0 mlanthaler: Added access modifiers to all methods.
(merged from branches/gsoc)


git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@42074 467b73ca-7a2a-4603-9d3b-597d59a354a9
2007-09-16 14:42:40 +00:00
Ingo Schommer
035a6d437d mlanthaler: Refactored Permission::checkMember(). Should be faster now because the non-strict checking is now only executed if the user doesn't has the permission.
(merged from branches/gsoc)


git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@42073 467b73ca-7a2a-4603-9d3b-597d59a354a9
2007-09-16 14:40:43 +00:00
Ingo Schommer
b888de3ced mlanthaler: Bugfix: Permission::check() didn't pass $strict to Permission::checkMember().
(merged from branches/gsoc)


git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@42072 467b73ca-7a2a-4603-9d3b-597d59a354a9
2007-09-16 14:37:21 +00:00
Ingo Schommer
670694357f mlanthaler: Added docBlocks.
ischommer: Merged in $admin_implies_all 
(merged from branches/gsoc)


git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@42071 467b73ca-7a2a-4603-9d3b-597d59a354a9
2007-09-16 14:32:54 +00:00
Ingo Schommer
7992eeb5d4 mlanthaler: Fixed typo in docBlock
(merged from branches/gsoc)


git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@42070 467b73ca-7a2a-4603-9d3b-597d59a354a9
2007-09-16 14:27:27 +00:00
Ingo Schommer
dd64cc06b9 elofgren: BUGFIX: Fix error: Warning: Call-time pass-by-reference has been deprecated; If you would like to pass it by reference, modify the declaration of [runtime function name](). If you would like to
enable call-time pass-by-reference, you can set allow_call_time_pass_reference to true in your INI file. 
(merged from branches/gsoc)


git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@42069 467b73ca-7a2a-4603-9d3b-597d59a354a9
2007-09-16 14:22:26 +00:00
Ingo Schommer
8c3a21baa4 fixed bugs introduced during merging
git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@42068 467b73ca-7a2a-4603-9d3b-597d59a354a9
2007-09-16 02:44:10 +00:00