tonyair/silverstripe-framework
1
0
Fork 0
mirror of https://github.com/silverstripe/silverstripe-framework synced 2024-06-30 16:39:38 +02:00
Code Issues Projects Releases Wiki Activity
2b30ade44d
silverstripe-framework/security
History
Daniel Hensby 2b30ade44d [SS-2016-011] ChangePasswordForm does not check $member->canLogin before login 
This could be used as a way to circumvent login restrictions by using the change password feature to log users in that are unable to login for reasons other than too many password attempts
2016-08-15 14:07:40 +12:00
..
Authenticator.php Merge remote-tracking branch 'origin/3.1' 2014-11-18 12:45:54 +13:00
BasicAuth.php Check both $_SERVER['HTTP_AUTHORIZATION'] and $_SERVER['REDIRECT_HTTP_AUTHORIZATION'] for HTTP Basic authentication headers 2015-03-17 14:15:54 +13:00
ChangePasswordForm.php [SS-2016-011] ChangePasswordForm does not check $member->canLogin before login 2016-08-15 14:07:40 +12:00
CMSMemberLoginForm.php API Enable re-authentication within the CMS if a user session is lost 2014-10-14 15:19:48 +13:00
CMSSecurity.php Merge remote-tracking branch '3.1.19' into 3.2.4 2016-05-05 11:17:45 +01:00
Group.php display filtered roles when not an admin 2016-01-11 13:05:10 +13:00
GroupCsvBulkLoader.php Remove all redundant whitespace 2014-08-19 09:17:15 +12:00
LoginAttempt.php Remove all redundant whitespace 2014-08-19 09:17:15 +12:00
LoginForm.php Merge remote-tracking branch '3.1.19' into 3.2.4 2016-05-05 11:17:45 +01:00
Member.php [SS-2016-008] Reset Member::Salt on password change 2016-08-15 14:07:24 +12:00
MemberAuthenticator.php Merge remote-tracking branch '3.1.19' into 3.2.4 2016-05-05 11:17:45 +01:00
MemberCsvBulkLoader.php Remove all redundant whitespace 2014-08-19 09:17:15 +12:00
MemberLoginForm.php Merge remote-tracking branch 'origin/3.1' into 3 2015-06-02 19:13:38 +12:00
MemberPassword.php Remove all redundant whitespace 2014-08-19 09:17:15 +12:00
PasswordEncryptor.php Remove all redundant whitespace 2014-08-19 09:17:15 +12:00
PasswordValidator.php Remove all redundant whitespace 2014-08-19 09:17:15 +12:00
Permission.php Merge remote-tracking branch 'origin/3.1' into 3.2 2016-01-19 14:00:19 +13:00
PermissionCheckboxSetField.php DOCS Fixing docs (and bad API usage) 2015-07-20 16:42:33 +01:00
PermissionFailureException.php Remove all redundant whitespace 2014-08-19 09:17:15 +12:00
PermissionProvider.php FIX Remove instances of lines longer than 120c 2012-09-30 17:18:13 +13:00
PermissionRole.php Remove all redundant whitespace 2014-08-19 09:17:15 +12:00
PermissionRoleCode.php API Revert DataObject::validate to 3.1 method signature (protected) 2015-06-16 11:59:21 +12:00
RandomGenerator.php Revert #3425 #3396 to restore deprecated functionality 2015-08-24 11:26:25 +12:00
Security.php modify getAuthenticator to fall back to get_default_authenticator 2016-08-03 10:36:43 +12:00
SecurityToken.php Remove all redundant whitespace 2014-08-19 09:17:15 +12:00