363 Commits

Author	SHA1	Message	Date
Ingo Schommer	78ec0cbfa7	MINOR Updated jquery-concrete ... git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@92558 467b73ca-7a2a-4603-9d3b-597d59a354a9	2009-11-21 02:33:12 +00:00
Ingo Schommer	dca8c0cb6f	merging ... git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@92557 467b73ca-7a2a-4603-9d3b-597d59a354a9	2009-11-21 02:33:06 +00:00
Ingo Schommer	926834db27	MINOR Removed redundant jquery-ui.js dependency from TabSet.php and Security.php ... git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@92550 467b73ca-7a2a-4603-9d3b-597d59a354a9	2009-11-21 02:32:27 +00:00
Ingo Schommer	f7f3bc7050	MINOR Removed unused cmsCleanup_parentChanged() callback from Group, Folder and SiteTree classes ... git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@92543 467b73ca-7a2a-4603-9d3b-597d59a354a9	2009-11-21 02:31:59 +00:00
Ingo Schommer	4b1293771d	MINOR Using jquery.concrete and jquery.selector on github through piston dependency management ... git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@92542 467b73ca-7a2a-4603-9d3b-597d59a354a9	2009-11-21 02:31:55 +00:00
Ingo Schommer	204d4fb076	API CHANGED Changed SiteTree->TreeTitle() to getTreeTitle() to make it available as a dynamic property, e.g. for the CMS forms ... git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@92534 467b73ca-7a2a-4603-9d3b-597d59a354a9	2009-11-21 02:31:27 +00:00
Ingo Schommer	757df3088e	ENHANCEMENT Returning FALSE from Security->ping() if no valid user session exists, for more accurate login checking through the CMS javascript pinging ... git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@92527 467b73ca-7a2a-4603-9d3b-597d59a354a9	2009-11-21 02:31:09 +00:00
Ingo Schommer	1b138d6916	MINOR Removed layout_helpers.js dependency ... git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@92516 467b73ca-7a2a-4603-9d3b-597d59a354a9	2009-11-21 02:30:42 +00:00
Ingo Schommer	2fc966cc44	MINOR Removed loader.js dependencies ... git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@92514 467b73ca-7a2a-4603-9d3b-597d59a354a9	2009-11-21 02:30:36 +00:00
Ingo Schommer	dd074069de	MINOR Moved css specific to Security/login in Security_login.css (shouldnt be in the generic Form.css declarations) ... git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@92509 467b73ca-7a2a-4603-9d3b-597d59a354a9	2009-11-21 02:30:24 +00:00
Ingo Schommer	a11db29672	MINOR Changed paths to moved thirdparty dependencies (mostly from /jsparty to /sapphire/thirdparty, /cms/javascript and /sapphire/javascript) ... git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@92502 467b73ca-7a2a-4603-9d3b-597d59a354a9	2009-11-21 02:29:59 +00:00
Ingo Schommer	3b547ec9c9	ENHANCEMENT Using "concrete" jQuery plugin for tabbed Security/login view (in combination with jQuery UI tabs) ... git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@92480 467b73ca-7a2a-4603-9d3b-597d59a354a9	2009-11-21 02:22:41 +00:00
Ingo Schommer	deb691a481	ENHANCEMENT Using jQuery UI tabs for Security/login with multiple authentication methods (e.g. CMS-login and OpenID) ... git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@92478 467b73ca-7a2a-4603-9d3b-597d59a354a9	2009-11-21 02:22:36 +00:00
Ingo Schommer	bf3b7e0e9e	APICHANGE: add the ability to remove some permissions specified by their code in the rendered field html of PermissionChecksetBoxField and full-covered unit tests of this ability. (from r92428) ... git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@92463 467b73ca-7a2a-4603-9d3b-597d59a354a9	2009-11-21 01:44:52 +00:00
Ingo Schommer	48c0418840	BUGFIX More robust checks on the current member in Member::canEdit() and Member::canDelete() if there is no logged in member (from r92129) ... git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@92458 467b73ca-7a2a-4603-9d3b-597d59a354a9	2009-11-21 01:43:16 +00:00
Ingo Schommer	a21927e462	BUGFIX Fixed Group::collateFamilyIDs() when working with MSSQL (from r91775) ... git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@92455 467b73ca-7a2a-4603-9d3b-597d59a354a9	2009-11-21 01:42:27 +00:00
Sam Minnee	87e1454cd2	BUGFIX: Include salt in legacy password encryptor ... git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@91743 467b73ca-7a2a-4603-9d3b-597d59a354a9	2009-11-16 03:25:41 +00:00
Sam Minnee	0bb067eddf	BUGFIX: Made use of new BasicAuth::protect_entire_site() consistent. ... git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@91658 467b73ca-7a2a-4603-9d3b-597d59a354a9	2009-11-15 23:43:30 +00:00
Sam Minnee	ba69ce1d7e	BUGFIX: Don't enable site-wide protection by default ... git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@91609 467b73ca-7a2a-4603-9d3b-597d59a354a9	2009-11-15 21:41:13 +00:00
Sam Minnee	2db7a1d001	API CHANGE: Replaced BasicAuth::enable() with BasicAuth::protect_entire_site() ... API CHANGE: BasicAuth::requireLogin() no longer has an option to automatically log you in. You can call logIn() on the object returned, instead. git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@91603 467b73ca-7a2a-4603-9d3b-597d59a354a9	2009-11-15 21:24:58 +00:00
Andrew O'Neil	649079f4e8	BUGFIX: Use Object::create() for lostpassword(). (#4670, Tjofras) ... git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@91270 467b73ca-7a2a-4603-9d3b-597d59a354a9	2009-11-11 03:00:02 +00:00
Ingo Schommer	e4ca24c7e2	BUGFIX Legacy password hash migration in MemberAuthenticator::authenticate() which fixes the precision problems mentioned in #3004 when a user logs in ... git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@90950 467b73ca-7a2a-4603-9d3b-597d59a354a9	2009-11-06 02:23:30 +00:00
Ingo Schommer	e675381cd4	ENHANCEMENT Pluggable password encryption through PasswordEncryptor class (#3665) ... BUGFIX Fixed password hashing design flaw in Security::encrypt_password(). Removing base_convert() packing with unsafe precision, but retaining backwards compatibilty through pluggable encryptors: PasswordEncryptor_LegacyPHPHash (#3004) API CHANGE Deprecated Security::encrypt_passwords() API CHANGE Deprecated Security::$useSalt, use custom PasswordEncryptor implementation API CHANGE Removed Security::get_encryption_algorithms() API CHANGE MySQL-specific encyrption types 'password' and 'old_password' are no longer included by default. Use PasswordEncryptor_MySQLPassword and PasswordEncryptor_MySQLOldPassword API CHANGE Built-in number of hashing algorithms has been reduced to 'none', 'md5', 'sha1'. Use PasswordEncryptor::register() and PasswordEncryptor_PHPHash to re-add others. git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@90949 467b73ca-7a2a-4603-9d3b-597d59a354a9	2009-11-06 02:23:21 +00:00
Ingo Schommer	7dc1d607de	MINOR Moved Security::encryptallpasswords() to EncryptAllPasswordsTask ... git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@90948 467b73ca-7a2a-4603-9d3b-597d59a354a9	2009-11-06 02:23:13 +00:00
Tom Rix	8216448da3	MINOR run checks before running hasMethod, as an extension does not neccessairily have that method. ... git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@90691 467b73ca-7a2a-4603-9d3b-597d59a354a9	2009-11-03 02:33:53 +00:00
Tom Rix	a1fdff6910	MINOR update PermissionCheckboxSetField to look at roles on the actual group ... git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@90677 467b73ca-7a2a-4603-9d3b-597d59a354a9	2009-11-03 01:00:54 +00:00
Sam Minnee	57924a2c95	BUGFIX: Fixed glitch in permission code formats. ... git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@90550 467b73ca-7a2a-4603-9d3b-597d59a354a9	2009-10-31 00:58:16 +00:00
Tom Rix	33489cdc7f	MINOR i18n'd a whole bunch of the new permission codes ... git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@90493 467b73ca-7a2a-4603-9d3b-597d59a354a9	2009-10-30 01:43:34 +00:00
Tom Rix	3dfa7a2103	MINOR fixed ambiguous column ... git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@90481 467b73ca-7a2a-4603-9d3b-597d59a354a9	2009-10-30 00:23:02 +00:00
Tom Rix	26ee7ade66	MINOR implement OnlyAdminCanApply ... git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@90457 467b73ca-7a2a-4603-9d3b-597d59a354a9	2009-10-29 22:07:44 +00:00
Tom Rix	8096f91ae1	MINOR remove duplicate header ... git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@90397 467b73ca-7a2a-4603-9d3b-597d59a354a9	2009-10-29 02:56:18 +00:00
Tom Rix	9c5dae4dff	MINOR shuffled permissions around, gave them help text and categorized them. ... git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@90371 467b73ca-7a2a-4603-9d3b-597d59a354a9	2009-10-29 00:55:20 +00:00
Tom Rix	643be30e67	MINOR permissions on Groups and Roles are now handled by a checkbox set field ... git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@90342 467b73ca-7a2a-4603-9d3b-597d59a354a9	2009-10-28 23:03:35 +00:00
Sam Minnee	994e93f790	API CHANGE: replaced Database::USE_ANSI_SQL with DB::USE_ANSI_SQL ... API CHANGE: replaced Database::alteration_message() with DB::alteration_message() git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@90097 467b73ca-7a2a-4603-9d3b-597d59a354a9	2009-10-26 22:03:29 +00:00
Andrew Short	79773042be	API CHANGE: Renamed conflicting classes to have an "SS_" namespace, and renamed existing "SS" namespace to "SS_". The affected classes are: HTTPRequest, HTTPResponse, Query, Database, SSBacktrace, SSCli, SSDatetime, SSDatetimeTest, SSLog, SSLogTest, SSLogEmailWriter, SSLogErrorEmailFormatter, SSLogErrorFileFormatter, SSLogFileWriter and SSZendLog. ... MINOR: Replaced usage of renamed classes with the new namespaced name. From: Andrew Short <andrewjshort@gmail.com> git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@90075 467b73ca-7a2a-4603-9d3b-597d59a354a9	2009-10-26 03:06:31 +00:00
Andrew O'Neil	813760108c	BUGFIX: Security::$default_login_dest isn't used (#4179, simon_w) ... git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@90023 467b73ca-7a2a-4603-9d3b-597d59a354a9	2009-10-23 00:18:10 +00:00
Sean Harvey	8bd78f77d8	MINOR Supress session warnings in session_regenerate_id() for a win32 environment (from r81984) ... git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@89712 467b73ca-7a2a-4603-9d3b-597d59a354a9	2009-10-21 02:21:05 +00:00
Sam Minnee	3da29fb08d	MINOR show the permission/role inheritance chain on a group (from r89024) ... git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@89212 467b73ca-7a2a-4603-9d3b-597d59a354a9	2009-10-15 22:40:52 +00:00
Sam Minnee	88d5843cab	FEATURE: Add a simple interface for administrating permission roles. (from r85297) ... git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@89189 467b73ca-7a2a-4603-9d3b-597d59a354a9	2009-10-15 22:28:11 +00:00
Sam Minnee	dd8120aed7	API CHANGE: Added PermissionRole and PermissionRoleCode, along with relevant tests for the permission system. (from r85173) ... git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@89187 467b73ca-7a2a-4603-9d3b-597d59a354a9	2009-10-15 22:27:56 +00:00
Sam Minnee	0c41f681b8	MINOR create the ability to have some roles only be able to be applied by admins (from r88090) ... git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@89180 467b73ca-7a2a-4603-9d3b-597d59a354a9	2009-10-15 22:23:39 +00:00
Sam Minnee	7e54fc1fc2	BUGFIX: Fix error when adding roles tab (from r86997) ... git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@89172 467b73ca-7a2a-4603-9d3b-597d59a354a9	2009-10-15 22:13:19 +00:00
Sam Minnee	7dd6d10cde	MINOR added more documentation around SiteConfig. Also wrote unit tests for permissions inheritance off it. (from r86132) ... git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@89164 467b73ca-7a2a-4603-9d3b-597d59a354a9	2009-10-15 21:53:15 +00:00
Sam Minnee	9642c7171c	ENHANCEMENT: Added Member::set_login_marker_cookie(), to let developers bypass static caching for logged-in users (from r73803) ... git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@88635 467b73ca-7a2a-4603-9d3b-597d59a354a9	2009-10-12 03:27:41 +00:00
Sean Harvey	8b6772fff0	Merged in Member::sendInfo() bug fixes from branches/2.3 - r85779 ... git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@86679 467b73ca-7a2a-4603-9d3b-597d59a354a9	2009-09-18 03:07:15 +00:00
Ingo Schommer	e9df16ba5a	MINOR Formatting and documentation in Permission ... git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@86084 467b73ca-7a2a-4603-9d3b-597d59a354a9	2009-09-10 07:01:52 +00:00
Ingo Schommer	2700d73e97	ENHANCEMENT Limiting "alc_enc" cookie (remember login token) to httpOnly to reduce risk of information exposure through XSS ... git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@86027 467b73ca-7a2a-4603-9d3b-597d59a354a9	2009-09-10 03:23:31 +00:00
Ingo Schommer	d386db0bc3	ENHANCEMENT Avoid information disclosure in Security/lostpassword form by returning the same message regardless wether a matching email address was found in the database. ... git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@86021 467b73ca-7a2a-4603-9d3b-597d59a354a9	2009-09-10 03:01:46 +00:00
Ingo Schommer	ed5475bbae	ENHANCEMENT Added Member->FailedLoginCount property to allow Member->registerFailedLogin() to persist across sessions by writing them to the database, and be less vulnerable to brute force attacks. This means failed logins will persist longer than before, but are still reset after a valid login. ... git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@86017 467b73ca-7a2a-4603-9d3b-597d59a354a9	2009-09-10 02:42:26 +00:00
Ingo Schommer	6b6c2a8bfa	API CHANGE Removed Permission->listcodes(), use custom code ... git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@86006 467b73ca-7a2a-4603-9d3b-597d59a354a9	2009-09-10 01:54:15 +00:00