Micke/roundcubemail-plugins-kolab
0
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
2899 commits 23 branches 84 tags 13 MiB
Commit graph

60 commits

Author SHA1 Message Date
Aleksander Machniak
38e6afc903 Don't ignore (global) userlogins/sendmail logging in per_user_logging mode 2017-07-10 16:35:42 +02:00
Aleksander Machniak
a7d37da5e1 Improvements in kolab_auth::log_login_error() 
- Use "no-session" identifier when there's no session (e.g. syncroton, iRony)
- truncate username input if exceedingly long
 2017-06-07 10:19:51 +02:00
Aleksander Machniak
41e32e5b5a T2130: Write to userlogins log only when log_logins=true 
Also prevent from duplicate failure entries in that log.
 2016-12-30 06:30:51 -05:00
Aleksander Machniak
cbf4fa90d6 T1521: kolab_auth: Add possibility to close LDAP connection on request 2016-09-21 11:13:31 -04:00
Aleksander Machniak
c43008b94f Don't enable devel_mode in auditlog mode (#5466) 
Fixes unintentional less files use in Kolab skin.
 2016-06-29 16:51:49 +02:00
Aleksander Machniak
63ce7e9988 Don't use depracated Roundcube functions 2015-08-29 20:23:34 +02:00
Aleksander Machniak
d49a4457b1 D16: Don't abort authentication if $_SERVER['REMOTE_USER'] is set 2015-08-06 13:42:23 +02:00
Aleksander Machniak
ac4f6e7562 Avoid unused variables (also fixed some bugs) found in static code analysis 2014-11-21 10:03:18 +01:00
Aleksander Machniak
e00daea425 Remove debug code 2014-11-17 09:01:13 -05:00
Thomas Bruederli
a976842f03 Allow to limit user search (from new folder navigation) in multi-domain setups: 
Provide the 'kolab_users_directory' config option with placeholders %dc, %d, %u,
%fu or %dn in base_dn or filter properties.
 2014-11-17 14:33:04 +01:00
Thomas Bruederli
e618f0093c Support wildcard option to allow full access 2014-10-11 03:28:17 +02:00
Thomas Bruederli
1e0b0cdf9d Check effective rights for the login-as feature to improve the delegation model 
and allow controlling the administration privileges in LDAP (#1834).

This deprecates the config options 'kolab_auth_group', 'kolab_auth_role_value'
and 'kolab_auth_allowed_tasks'.

Admin privileges (per Roundcube task) and the required effective rights
are now defined in 'kolab_auth_admin_rights'.
 2014-10-11 03:14:45 +02:00
Aleksander Machniak
fbaa3f865e Add option to define list of tasks to which an admin has access (#3444) 
E.g. allow admins (using "Login as" feature) to see only user settings.
 2014-08-25 14:27:23 -04:00
Aleksander Machniak
a355288360 Fix so role-based plugins are loaded not required 2014-07-11 10:37:17 +02:00
Aleksander Machniak
26767a1669 Enable audit debugging only when logged as another user (Bug #3109), 
fix default of kolab_auth_auditlog in sample config file
 2014-06-02 14:02:31 +02:00
Aleksander Machniak
9a2a7e48a1 Fix SMTP authentication when using "Login As" feature 2014-03-13 10:29:47 +01:00
Aleksander Machniak
71c66461d5 Load per-user settings/plugins also just after log in 2014-02-20 15:41:12 +01:00
Aleksander Machniak
d7a607e1b1 Fix missing resolving of %dn in kolab_auth_role_settings 2014-01-24 13:44:04 +01:00
Thomas Bruederli
8996e8fa60 Adapt write_log hook to new per-user logging capabilities of Roundcube core (#2750): 
- Return the 'dir' property in write_log hook instead of writing the log directly
- Provide a user log directory during authentication with the username submitted or retrieved from LDAP respectively
- Requires Roundcube core rev 3786a4
 2014-01-16 10:04:03 +01:00
Thomas Bruederli
5bbbcca49c Report LDAP server error in plugin hook return data (#2727) 2014-01-07 15:31:48 +01:00
root
ab9c3db43a Improved role-based settings handling, especially 'skin' setting 2013-12-06 14:11:05 +01:00
Aleksander Machniak
004cd5ac56 Fixed kolab_auth_mailhost feature 2013-10-08 13:45:23 +02:00
Aleksander Machniak
d5af672f6b Fix sql debugging in audit mode 2013-10-07 12:38:36 +02:00
Aleksander Machniak
0cbce32636 Fixed kolab_auth_auditlog feature 2013-10-07 10:59:25 +02:00
Jeroen van Meeuwen (Kolab Systems)
c97615aeef Log failed logins (always) 2013-10-04 13:00:27 +02:00
Aleksander Machniak
a3ef9150a4 Update copyright year 2013-10-04 12:03:04 +02:00
Aleksander Machniak
1f3f8e69db Support multi-domain configuration of LDAP addressbooks (Bug #2292) 2013-10-04 11:54:49 +02:00
Aleksander Machniak
657093d838 Use password_ldap_bind hook to provide LDAP user DN for password change. (Request #2217) 
Requires ldap_simple driver to be enabled in password plugin config.
 2013-09-27 13:14:29 +02:00
Aleksander Machniak
6556c1a1d4 Improved performance of load_user_role_plugins_and_settings(), we cache 
some data in session so we can skip LDAP connection + bind + search
on every request (Bug #2241)
 2013-09-19 11:46:19 +02:00
Jeroen van Meeuwen (Kolab Systems)
610036138a Add the possibility to set the a mailhost attribute value to be used as the IMAP server address to connect to. 2013-09-11 16:33:07 +01:00
Aleksander Machniak
8002f2b0ca Take identities_level setting into consideration when identity form is going to be modified 2013-09-11 14:07:50 +02:00
Aleksander Machniak
cdd23787e2 Fix so kolab_delegation plugin can modify list of addresses in 
identity form (Bug #2191)
 2013-09-11 14:01:38 +02:00
Thomas Bruederli
74f1d3ba85 Hook into identities form and present a list of allowed sender email addresses (#2191) 2013-09-05 10:13:21 +02:00
Jeroen van Meeuwen (Kolab Systems)
44021155b0 Make sure we loop over non-empty arrays only 2013-08-19 13:54:08 +02:00
Jeroen van Meeuwen (Kolab Systems)
af0383d2d2 Correct typo (thanks to Daniel Morlock) 2013-08-05 15:37:23 +01:00
Jeroen van Meeuwen (Kolab Systems)
a6ee501a68 There's no need to get the user record 2013-08-05 11:18:29 +01:00
Jeroen van Meeuwen (Kolab Systems)
3d96d74298 Use $ldap->parse_vars to allow role specific settings and plugins to be applied to multi-domain environments through the expansion of '%dc' 2013-08-05 11:15:01 +01:00
Aleksander Machniak
e69e9b90ae Make kolab_auth's LDAP class be based on new rcube_ldap_generic class. 
Move kolab_auth_ldap into separate file.
Some improvements, including performance improvement in kolab_delegate
 2013-06-25 12:27:26 +02:00
Aleksander Machniak
27e57c7335 Fix undefined or unused variable errors caught in static code analysis 2013-05-07 12:16:11 +02:00
Thomas Bruederli
d85e012596 Adapt to recent changes in Roundcube core 2013-02-07 19:33:41 +01:00
Aleksander Machniak
035bd6fc3b Support Organization field in default identity (#1189) 2012-12-19 15:20:41 +01:00
Aleksander Machniak
5d7a7fc353 Revert last change, core uses storage_connect hook now 2012-12-13 14:42:37 +01:00
Aleksander Machniak
c666c6a757 Fix hook name: storage_connect -> imap_connect 2012-12-13 14:37:41 +01:00
Aleksander Machniak
82d9fc6fed Make possible reusage of LDAP object by other plugins 2012-12-04 14:43:36 +01:00
Aleksander Machniak
81fdc1642a Remove redundant parse_host() call 2012-10-17 13:46:49 +02:00
Aleksander Machniak
6d46e0c9f2 More Roundcube Framework related fixes 2012-10-17 13:43:08 +02:00
Aleksander Machniak
2d08c58e56 Fix/prepare plugins to use out of Roundcube (where rcmail object doesn't exist) 2012-10-17 11:54:25 +02:00
Aleksander Machniak
bde912a1fe Create identity for each email address of a new user 2012-10-08 11:32:49 +02:00
Aleksander Machniak
a7c06ff2fd Support array of fields in kolab_auth_name/kolab_auth_email config, 
use first non-empty value (#1012).
Fix lost kolab_auth_email handling.
 2012-10-08 10:15:32 +02:00
Aleksander Machniak
ad9a89eece Throw login error when LDAP connection failes or user not found in LDAP (Bug #512) 2012-10-08 09:38:16 +02:00