silverstripe-framework/security at e73d28b24e6a2e7a363621e4143e76a05d25893b - silverstripe-framework - Gitea

tonyair/silverstripe-framework

mirror of https://github.com/silverstripe/silverstripe-framework synced 2024-10-22 12:05:37 +00:00

History

Sean Harvey 5cbd2dbeb4 BUG CMSProfileController::Member_ProfileForm() respecting canEdit() permissions on Member

CMSProfileController currently checks canView() which ensures that a logged in CMS
Member can access the profile controller, but when saving the record on Member_ProfileForm
there is no check for canEdit(), so extended permissions don't get respected.

This adds a check for canEdit() in Member_ProfileForm, and adds some functional tests
to check permissions.

2012-09-07 11:24:47 +12:00

..

Authenticator.php

MINOR Update @package values to match renaming sapphire

2012-04-15 10:50:19 +12:00

BasicAuth.php

MINOR Update @package values to match renaming sapphire

2012-04-15 10:50:19 +12:00

ChangePasswordForm.php

MINOR Replacing deprecated static function calls to Director with

2012-05-23 21:50:02 +12:00

Group.php

MINOR Fixed duplicate help text on Group->getCMSFields()

2012-06-13 15:04:40 +02:00

GroupCsvBulkLoader.php

MINOR Update @package values to match renaming sapphire

2012-04-15 10:50:19 +12:00

LoginAttempt.php

MINOR Update @package values to match renaming sapphire

2012-04-15 10:50:19 +12:00

LoginForm.php

MINOR Update @package values to match renaming sapphire

2012-04-15 10:50:19 +12:00

Member.php

BUG CMSProfileController::Member_ProfileForm() respecting canEdit() permissions on Member

2012-09-07 11:24:47 +12:00

MemberAuthenticator.php

MINOR Update @package values to match renaming sapphire

2012-04-15 10:50:19 +12:00

MemberCsvBulkLoader.php

MINOR Update @package values to match renaming sapphire

2012-04-15 10:50:19 +12:00

MemberLoginForm.php

API CHANGE Deprecate Member::sendInfo(), use Member_ChangePasswordEmail and Member_ForgotPasswordEmail class directly instead.

2012-05-05 10:04:46 +12:00

MemberPassword.php

BUGFIX: Increase size of varchar fields on MemberPassword to match those defined in Member. This fixes issues when the password hash is longer than 50 characters, and was being truncated when saved in MemberPassword.

2012-05-07 15:04:25 +12:00

PasswordEncryptor.php

BUGFIX Declare PasswordEncryptor_Blowfish::get_cost() as static

2012-06-15 12:13:33 +12:00

PasswordValidator.php

MINOR Update @package values to match renaming sapphire

2012-04-15 10:50:19 +12:00

Permission.php

MINOR Update @package values to match renaming sapphire

2012-04-15 10:50:19 +12:00

PermissionCheckboxSetField.php

MINOR Switching _t() calls from sprintf() to using injection parameters (#7170 )

2012-05-01 22:17:00 +02:00

PermissionProvider.php

MINOR Update @package values to match renaming sapphire

2012-04-15 10:50:19 +12:00

PermissionRole.php

MINOR Update @package values to match renaming sapphire

2012-04-15 10:50:19 +12:00

PermissionRoleCode.php

MINOR Update @package values to match renaming sapphire

2012-04-15 10:50:19 +12:00

RandomGenerator.php

FIX: check GetRandom() exists for RandomGenerator

2012-07-01 21:05:10 +12:00

Security.php

API CHANGE: Add Security::ignore_disallowed_actions() to allow site features to be disabled when permissions have failed, rather than redirecting to the log-in form. (Trac #7097 )

2012-06-15 15:17:48 +12:00

SecurityToken.php

API: add SecurityToken::reset() as a shortcut for regenerating a secure token.

2012-07-01 20:53:58 +12:00