Top Level :: Authentication
Package Information: LiveUser
| » Version | » Information |
|---|---|
| 0.16.14 |
Easy InstallNot sure? Get more info. pear install LiveUser-0.16.14 Pyrus InstallTry PEAR2's installer, Pyrus. php pyrus.phar install pear/LiveUser-0.16.14 Release date: 2010-10-15 14:32 UTC Release state: beta Release uploaded by: doconnor Changelog: QA release Bug #9517 Config Parameter permContainer=>storage=>PDO=>prefix doesn't work dufuz Bug #13014 PHP Warning on setcookie() dufuz Bug #13154 Example 4:schema validation error dufuz Bug #13391 example 5 - MDB2_Schema Error in demodata.xml dufuz Bug #13650 Examples (demodata script) problem dufuz Doc Bug #14954 mention ACL in the description/documention kguest Bug #15126 Assigning the return value of new by reference is deprecated doconnor Bug #15127 Parse error: syntax error, unexpected T_RETURN in ./LiveUser/Perm/Storage/Cache doconnor Bug #17723 Patch: Avoid ereg in favor of preg_match olleolleolle Dependencies:
|
| 0.16.13 |
Easy InstallNot sure? Get more info. pear install LiveUser-0.16.13 Pyrus InstallTry PEAR2's installer, Pyrus. php pyrus.phar install pear/LiveUser-0.16.13 Release date: 2008-01-28 03:29 UTC Release state: beta Release uploaded by: arnaud Changelog: - #9418: Initialization for example 5 wrong - #9575: Example trips over MySQL boolean/int - #9581: Add support for session.cookie_httponly Dependencies:
|
| 0.16.12 |
Easy InstallNot sure? Get more info. pear install LiveUser-0.16.12 Pyrus InstallTry PEAR2's installer, Pyrus. php pyrus.phar install pear/LiveUser-0.16.12 Release date: 2006-08-22 13:34 UTC Release state: beta Release uploaded by: lsmith Changelog: - wrong use of pdo fetch method, when no result could be fetched it returns false with no error. Swith to using fetchAll and check for an empty array - we cannot decrypt most of the encryption method used by the hash extension so we default to returning the unmodified string - the wrong variable was used to report the type of permission container when an error occured - push an error on the stack when the encryption method cannot be found - make sequence columns primary key - properly disconnect the pdo object - make it possible to set the status message mapping - register options for create (Bug #7704) - use the hash extension if it is present for the password encryption - refactored decryptPW() and encryptPW() into static methods in the LiveUser class - force null instead of false for PDO fetch() calls that return empty sets - fixed logging into example1 - debug => false in conf doesn't work (Bug #7564; thx to Matthias) - added support for user defined handle fields in DB, MDB, MDB2 and PDO containers you can set a list of fields in your auth container storage config, default is 'handle', example: 'handles' => array('handle', 'auth_user_id', 'email') these fields are now used to find the right user on login (Request #7781) - fixed LiveUser::decryptPW(): added missing third parameter 'secret' - check if safe_mode is enabled in fileExists() to determine what algo to use (Bug #8296) Dependencies:
|
| 0.16.11 |
Easy InstallNot sure? Get more info. pear install LiveUser-0.16.11 Pyrus InstallTry PEAR2's installer, Pyrus. php pyrus.phar install pear/LiveUser-0.16.11 Release date: 2006-04-19 04:44 UTC Release state: beta Release uploaded by: lsmith Changelog: - parse error typo fix in PEARAuth container (bug #6968) - minor improvements to the phpdoc comments in PEARAuth container - use ugly fopen() hack in fileExists() http://marc.theaimsgroup.com/?l=pear-dev&m=114148949106207&w=2 - changed API for readuserData(), auth_user_id parameter now contains the auth_user_id to use - login() now supports passing in an auth_user_id instead of the handle/password - made stack property public - typo fix in PDO container readImplyingRights() method (bug #7195) - expanded error handling in Log instance creation - handle if no proper credentials where passed to readUserData() (bug #7262) - replace isset() with array_key_exists() where applicable - disable __autoload() in class_exists() calls (bug #7304) - brought property names in line s/rights/right_ids *BC break* - MDB2_Schema 0.5 and MDB2 2.0.1 handles nulls in schema files properly so there is no need to disable MDB2_PORTABILITY_EMPTY_TO_NULL in the installer Dependencies:
|
| 0.16.10 |
Easy InstallNot sure? Get more info. pear install LiveUser-0.16.10 Pyrus InstallTry PEAR2's installer, Pyrus. php pyrus.phar install pear/LiveUser-0.16.10 Release date: 2006-02-27 13:17 UTC Release state: beta Release uploaded by: lsmith Changelog: - Do not include Cache.php since its only a concept and not implemented yet - fixed serious issue with right reading in the Medium and Complex container - right_level may not be null in schema (use default if not explicitly set) - phpdoc improvements - bumped dependency for MDB2 to first stable release - added missing optional dependency on mcrypt - made admin user a superadmin in example4 - bumped copyright to 2006 Dependencies:
|
| 0.16.9 |
Easy InstallNot sure? Get more info. pear install LiveUser-0.16.9 Pyrus InstallTry PEAR2's installer, Pyrus. php pyrus.phar install pear/LiveUser-0.16.9 Release date: 2006-02-21 14:38 UTC Release state: beta Release uploaded by: lsmith Changelog: This releases fixes a minor security issue that is limited to the optional remember me feature. This issue was report to us by GulfTech Security Research. The issue would allow an attacker to determine the existance of files inside the file system, as well as being able to delete files: - if the relativ path is shorter than 32 characters (including a null byte) - if null bytes are handled inside the "_COOKIE" superglobal, for example through usage of magic_quotes_gpc, the issue becomes essentially limited to files ending with ".lu". All installations using the remember me feature are strongly urged to update. This release also changes some other aspects including a BC break so developers can optionally patch their current installations from the changes in the following commit: http://cvs.php.net/viewcvs.cgi/pear/LiveUser/LiveUser.php?r1=1.148&r2=1.149&diff_format=u - fixed major bug in PEARAuth container: auth_user_id is not an optional property - added passwordEncryptionMode and secret to phpdoc comment - made cryptRC4() method public to match usage in auth common in the client and admin api - fixed handling of the secret user defineable property (bug #6551) - added support for user_group_ids (bug #6517) - allow grouprights and groupusers table to join eachother - updateProperty doesn't update the session (bug #6612) - renamed "connection" config option to "dbc" *BC BREAK* - cleaned up and unified init() in the storage classes - added example for dumping SQL to a file to installer - add support for force_seq to installer - removed allowDuplicateHandles and allowEmptyPasswords options, they are now handled through the table definition in the given Globals.php (overwriteable via the config array) *BC BREAK* - initial untested support for PDO in the installer - added examples for setting length and defaults to installer - use overwrite when unlink is enabled in the installer - reworked handling of merging user with group rights *BC BREAK* When using the Medium or Complex container a user may gain rights through direct assignment or through membership in a group that has rights assigned. The user and group rights are merged with the following logic: * if the right is only assigned to a member group but not the user the right is available to the user at the level at which the group has the right * if the right is only assigned to the user at a level greater than zero but not to a member group the right is available to the user at the level at which user has the right * if the right is only assigned to the user at a level equal to zero but not to a member group the right is available to the user at the level at which user has the right * if the right is only assigned to the user at a level lower than zero but not to a member group then the right is unavailable to the user * if the is assigned to a member group and the user and the level at which the user has the right is greater than zero, then the right is available to the user at higher level of the two * if the is assigned to a member group and the user and the level at which the user has the right is equal to zero, then the right is unavailable to the user * if the is assigned to a member group and the user and the level at which the user has the right is lower than zero, then the right is available to the user at the minimum of the group assigned level and the addition of the negativ user level and the maximum level Example: The user as the following right_id => level pairs array 1 => 3 2 => -2 3 => 0 5 => -1 The groups he is a member of have the following right_id => level pairs array 1 => 1 2 => 3 3 => 3 4 => 2 The final right_id => level pairs are as follows array 1 => 3 // user has a higher level (3) than the group level (1) 2 => 1 // 3 - 2 means a maximum possible level of 1 4 => 2 // only group has the right at level 2 5 => 2 // only user has the right at level 3 - 1 = 2 Dependencies:
|
| 0.16.8 |
Easy InstallNot sure? Get more info. pear install LiveUser-0.16.8 Pyrus InstallTry PEAR2's installer, Pyrus. php pyrus.phar install pear/LiveUser-0.16.8 Release date: 2005-12-21 06:27 UTC Release state: beta Release uploaded by: lsmith Changelog: - clearer status and error messages - fix a bug with the passed Log object being discarded - extra debug info when the auth container is instantiated - more helpful error message when the class cannot be loaded - make the PEAR::Auth wrapper use the passed handle and password - fixed phpdoc typo in singleton method (bug #5668) - fixed ability to call singleton() with only the conf parameter set, even if singleton was never called before (bug #5669) - fixed issue in factoryStorage() that would lead to modifying the config array (bug #5526) - added ability to disable executing the sql commands on installSchema() - set status after logging out not before - tweaked error messages for failed factory method calls - fix for calling singleton without a signature string (bug #5905) - attempt at checking if it is safe to start the session, add an error to the stack if not and return - minor performance tweak in login() - reordered code inside login() to make onFailedMapping events more powerful - improved handling of INACTIVE status - stop using backendArrayIndex infavor of containerName property in the auth instance - removed loginTimeout feature (disable lastlogin if you are concerned about the cost of updating the lastlogin time) - handle option user data properties in readUserData() in the PEAR::Auth wrapper - added a few return true's for method that returned void so far - tons of phpdoc and whitespace fixes and additions - add missing css file in example5 - only read remember me cookie in login() if remember was passed as true (bug #6215) - handle and password are passed to reeadUserData in the PEARAuth container - reworked file loading in loadClass() to work around issues in safe_mode with LiveUser::fileExists() (bug #6226) - moved all explict handling of logout() and login() out of the init() method *BC BREAK* - made setRememberCookie(), readRememberCookie() and deleteRememberCookie public - setRememberCookie() no longer accepts a remember parameter - added PDO backend and optional pdo based config for example5 Dependencies:
|
| 0.16.7 |
Easy InstallNot sure? Get more info. pear install LiveUser-0.16.7 Pyrus InstallTry PEAR2's installer, Pyrus. php pyrus.phar install pear/LiveUser-0.16.7 Release date: 2005-10-10 06:53 UTC Release state: beta Release uploaded by: lsmith Changelog: - typo fix getMessage => getMessage() (bug #5283) - added parameter to unlink backup file to force new creation in installSchema() - fixed join points in implied_rights table in the perm Globals.php - removed unnecessary join in readUserRights() of the database containers - removed autoInit (all init() manually instead) *BC BREAK* - reworked log/debug handling (there is a new 'debug' conf option which can either be a bool or a log instance) - made the log property public which made it possible to remove addErrorLog() - renamed loadPEARLog() to PEARLogFactory and reworked it to return a Log instance as a static method - added an optional signature parameter to singleton() instead of using the handle/password/confName parameters (which no longer exist) *BC BREAK* - made login() and logout() public - made freeze() private - prefixed all private properties/methods with an underscore Dependencies:
|
| 0.16.6 |
Easy InstallNot sure? Get more info. pear install LiveUser-0.16.6 Pyrus InstallTry PEAR2's installer, Pyrus. php pyrus.phar install pear/LiveUser-0.16.6 Release date: 2005-09-02 08:43 UTC Release state: beta Release uploaded by: lsmith Changelog: - various fixes to the Session auth container - various fixes to the PEARAuth auth container - added error handler and more comments to the install.php - removed updateLastLogin option - delete remember me cookie in all error cases while reading the remember me cookie - cosmetic fixes to the examples in demodata.php - (re-)added example5 (more or less the same as example4) Dependencies:
|
| 0.16.5 |
Easy InstallNot sure? Get more info. pear install LiveUser-0.16.5 Pyrus InstallTry PEAR2's installer, Pyrus. php pyrus.phar install pear/LiveUser-0.16.5 Release date: 2005-08-17 08:26 UTC Release state: beta Release uploaded by: lsmith Changelog: - fixed bugs related to is_active handling (resulting in users being able to login that are set to in active!) *SECURITY ISSUE* - fixed bug in getProperty() that would make it impossible to fetch the values of internal config properties (bug #5110) - pass the storage config array by ref after all Dependencies:
|
| 0.16.4 |
Easy InstallNot sure? Get more info. pear install LiveUser-0.16.4 Pyrus InstallTry PEAR2's installer, Pyrus. php pyrus.phar install pear/LiveUser-0.16.4 Release date: 2005-08-15 10:53 UTC Release state: beta Release uploaded by: dufuz Changelog: - writeSchema returns error objects and not false on error - added error handling around call to parent::init() - assign _storage property by ref in the permission container - moved area admin code from the medium into the complex container - tweaked error handling in login()/readUserData() - only assign the perm instance to _perm if mapUser/unfreeze succeeded - fixed bug in the auth container common class that made is_active a required and not optional feature as intended - fixed bug in MDB/MDB2 perm storage layer that could lead to incorrect datatype being used when the alias feature is used Dependencies:
|
| 0.16.3 |
Easy InstallNot sure? Get more info. pear install LiveUser-0.16.3 Pyrus InstallTry PEAR2's installer, Pyrus. php pyrus.phar install pear/LiveUser-0.16.3 Release date: 2005-08-09 07:56 UTC Release state: beta Release uploaded by: lsmith Changelog: - added new custom user field "name" to example1 - added missing config entries to example1 and example2 - all user related container properties now use lower case with underscores instead of lower bumby camel to better match the storage layer naming. this allows for a much simplified readUserData() method (BC break!) - copy storage config before passing it to the storageFactory() since this method messes with the values which causes the original to be modified due to using pass by reference - use getProperty() to read properties of the auth container - use static calls for all factory method calls - disconnect on logout() (bug #4928) - fixed bugs in storageFactory() Dependencies:
|
| 0.16.2 |
Easy InstallNot sure? Get more info. pear install LiveUser-0.16.2 Pyrus InstallTry PEAR2's installer, Pyrus. php pyrus.phar install pear/LiveUser-0.16.2 Release date: 2005-07-20 04:36 UTC Release state: beta Release uploaded by: lsmith Changelog: - time() call prevented the rememberMe cookie from being set under IE - dont use serialize() for the cookie data due to security concerns Note: this breaks all remember me cookies currently set! - fixed parse error in PEARAuth container (bug #4797) - cleaned up lastlogin handling (bug #4843) - nuke error due to disconnecting on logout() - php 4.4 reference assignment fixes Dependencies:
|
| 0.16.1 |
Easy InstallNot sure? Get more info. pear install LiveUser-0.16.1 Pyrus InstallTry PEAR2's installer, Pyrus. php pyrus.phar install pear/LiveUser-0.16.1 Release date: 2005-07-05 06:50 UTC Release state: beta Release uploaded by: lsmith Changelog: - fixed typo in cookie lifetime computation (and introduced LIVEUSER_DAY_SECONDS) - fixed bug that would lead to dropping all user assigned rigts for area admins - cosmetic fixes to error messages (username => handle) Dependencies:
|
| 0.16.0 |
Easy InstallNot sure? Get more info. pear install LiveUser-0.16.0 Pyrus InstallTry PEAR2's installer, Pyrus. php pyrus.phar install pear/LiveUser-0.16.0 Release date: 2005-06-21 05:40 UTC Release state: beta Release uploaded by: lsmith Changelog: - updated MDB2 dependency - made readConfig() public - use LIVEUSER_STATUS_AUTHINITERROR and LIVEUSER_STATUS_PERMINITERROR - removed 'ids' from GLOBALS.php array since this is no longer used in the admin - added support for table name aliasing - added updateProperty() method - dont raise an error when login() was not able to authenticate the user - storageFactory() is no longer permission specific - only return false in init() method if an error occured - always overwrite status with auth failed in login() when the current status is UNKNOWN - updated a few status message with clearer messages - delay storing of the auth container instance in a property until its clear that the perm container will not produce errors - kill _auth and _perm property values at the beginning of login() - added new event "onFailedMapping" when an auth user cannot be mapped to a perm user authentication - reworked _readUserData() in the auth containers to optionally read by auth user id instead of by handle/passwd (fairly untested) - made _readUserData() public (and renamed it to readUserData() - made auth fields dynamic (thx dan) - updated to use the new auth config layout due to using admin storage - tweaked disconnect to only disconnect when a new connection was made - updated Globals.php file (removed all optional fields, added users table alias) permission - cleaned up _readImpliedRights() - fixed bug in readUserRights() that would lead to overwriting the proper right keys - tweaked disconnect to only disconnect when a new connection was made installer - generate auth and perm schema on the fly (removed pre generated ones from cvs) - separated schema generation and schema writing in two methods in the installer - forgot to pass 'create' param to installSchema() in installPermSchema() - use MDB2_Schema as an optional dependency for the schema installer - improved handling of defaults in the installer - improved DB seq support in the installer - options can now be passed to the installer - severely reworked the install API - added more infos into the old file names - updated code with the new auth config layout and as a result removed generateAuthSchema() and renamed generatePermSchema() to generateSchema() - added table name prefix to all indexes, since some rdbms (notably pgsql) dont like it if the same index name is used (bug #4593) examples - example5 was added again - demo data for examples 4 and 5 was converted to MDB2_Schema format - a script to install database based examples can be found under docs/examples/demodata.php. Type php demodata.php -h for usage. - updated examples to use the new auth config layout due to using admin storage - tweaked error handling on init() call - use MDB2 in the examples instead of DB Dependencies:
|
| 0.15.1 |
Easy InstallNot sure? Get more info. pear install LiveUser-0.15.1 Pyrus InstallTry PEAR2's installer, Pyrus. php pyrus.phar install pear/LiveUser-0.15.1 Release date: 2005-03-30 14:01 UTC Release state: beta Release uploaded by: lsmith Changelog: - checkRightLevel incorrectly required that a user needs to be authenticated - moved logic in regard to handling empty owner id's into complex container - typo fix in error message (bug #3899) - fixed bug auth_user_id => authUserId in liveuser_user queries (bug #3964) Dependencies:
|
| 0.15.0 |
Easy InstallNot sure? Get more info. pear install LiveUser-0.15.0 Pyrus InstallTry PEAR2's installer, Pyrus. php pyrus.phar install pear/LiveUser-0.15.0 Release date: 2005-03-15 07:34 UTC Release state: beta Release uploaded by: lsmith Changelog: Important: We are migrading away from .sql dumps which were MySQL specific towards the MDB2 xml schema format. Therefore we have removed the .sql files from the sql directory in favor if xml schema files and a installer class defined in install.php. general notes - moved all config parameter handling inside the containers into init() methods - reworked RC4 handling into cryptRC4() method - fixed bug in LiveUser_Perm_Storage_XML::mapUser() method which would result in read issues if the user is not the first user in the xml file - moved authTableCols from the database containers into common - added conversion of PEAR errors to error stack in several places - disable password checks in the auth containters if password is set to false in the authTableCols config option - some cleanups and refactoring to add support for the authTableCols fields in the XML container like in the database containers - added Session auth container that checks a password as set inside the session. this could be useful in combination with a CAPTCHA - use LIVEUSER_ERROR constant instead of LIVEUSER_ADMIN_ERROR_QUERY_BUILDER - added allowEmptyPasswords auth container option - added install.php class to handle database schema installation via the MDB2 - removed sql files from the sql directory schema manager to provide support for other RDBMS than only MySQL - removed unused userExists() auth container method (use admin interface instead) - accept all config parameters by reference inside the containers - move readAreaAdminsAreas over to Complex where it should be. - the observers mechanism now use PEAR::Event_Dispatcher auth schema structure - handle is now unqiue by default perm schema structure - moved default database structure into separate file (using the GLOBALS super globals) - default datatype for auth_user_id should be 'text' (thx Matthias aka Nomatt for spotting) - table rights_implied should have been right_implied in the perm schema structure - removed has_level from the database schema - added area_admin_areas and all it's joins - fixed remember me feature in example2 - remove empty placeholders and block in loadTemplate() calls in example4 - added translation_id field in liveuser_translations table - fixed bug in group subgroup table joining in the schema structure examples - fixed bug in example1 onLogout -> postLogout (bug #3135) - fixed php5 issues in example4 - all examples now have a unique database name by default Dependencies:
|
| 0.14.0 |
Easy InstallNot sure? Get more info. pear install LiveUser-0.14.0 Pyrus InstallTry PEAR2's installer, Pyrus. php pyrus.phar install pear/LiveUser-0.14.0 Release date: 2004-12-20 11:29 UTC Release state: beta Release uploaded by: lsmith Changelog: - DB containers no longer use CASE in the sql query. - lazy loading of PEAR::Log - getProperty can now handle mixed case field names, on the auth side. - Fixed Bug #2672, #2713, #2714 Typo fixes - Bug #2692 some SQL files go installed under pear_folder/LiveUser/sql/ which are from now on installed in pear_folder/LiveUser/misc/schema/ - fixed regenid option - refactored client part to the new class layout (using storage containers) - fixed example2 to use the new config layout - disabled perm caching by default - added sessionName param to (un)freeze method calls to the perm container - removed options of reading parameters from the superglobals - reworked init() method severly - remove the callback that catches PEAR_Error errors - adding getErrors() method to get the error stack - added LiveUser::checkGroup() in order to check for membership in groups - added second auth container to example4 - fix #2678: have more control on callback function - added 'session_cookie_params' option - LiveUser now expects a true from the auth container unfreeze() method - Removed a potential security issue in Auth freeze() - added Observers, see the wiki for more information - added an observer class in example1 and example4 to show how they work - added usage example for multiple auth containers to example4 - added support for checking arbitrary values in unfreeze() (for example the user agent) to make session high-jacking more difficult) - use the new config array - moved example3 to the admin package - moved connection handling into init() methods that are called inside the factory methods - moved error handling over to error stack Dependencies:
|
| 0.13.3 |
Easy InstallNot sure? Get more info. pear install LiveUser-0.13.3 Pyrus InstallTry PEAR2's installer, Pyrus. php pyrus.phar install pear/LiveUser-0.13.3 Release date: 2004-10-23 10:09 UTC Release state: beta Release uploaded by: arnaud Changelog: - Docs for getUsers was updated to reflect that we removed the simple filtering - Fixed auth to perm mapping (also taking into account the auth container name) - Fix #2538 added LIVEUSER_ERROR_WRONG_CREDENTIALS as an error when credentials are wrong. The factory method on failure now returns an array of the error stack if there is one or false. - Fix #2528 LiverUser::Factory calls PEAR::isError. The methods return false and not a PEAR_Error so the check is wrong - Fix #1957 one to many boolean in the type array in getRights. - Fix #2527 have raiseError in the admin class and change the calls from PEAR::raiseError to LiveUser_Admin::raiseError. - Fix #2568 LiveUser_Admin::setAdminAuthContainer() returns true on failure Dependencies: |
| 0.13.2 |
Easy InstallNot sure? Get more info. pear install LiveUser-0.13.2 Pyrus InstallTry PEAR2's installer, Pyrus. php pyrus.phar install pear/LiveUser-0.13.2 Release date: 2004-10-13 10:12 UTC Release state: beta Release uploaded by: lsmith Changelog: - in getGroups() in /Admin/Perm DB groups. was appended to the sql query with implode, which didn't work for the is_active part since CASE needs to be before groups.is_active - add check on the third and fourth parameter to avoid a warning from older code in addUser/updateUser in /Admin/Auth - addUser() in the Admin class has a BC break since it wasn't synced with addUser of Auth - Same goes with updateUser from the Admin Class - Making sure that optinalFields and customFields are array in addGroup/editGroup - When neither optional nor custom array was supplied to addGroup/editGroup/addUser it would fail. - Removed sql parts which used scope, since we removed it from the create table statements - Now all implied rights are removed before the right it self is removed - Now all subgroup assignments are removed before removing the group it self - Now user is removed after all groups that he/she was owner of has set the owner_user_id to NULL - When assigning a subgroup now one can't assign a group as it's own parent. - Bug #2206 fixed, now more then one level of subgroups is displayed and getGroups has been optiomized, no more intensive database querying. - Now if a assigning a subgroup, it gives back a error if the group id and subgroup id have been added before in another record, that is if the group id has been added as a subgroup id for the current subgroup id (confusing when one explains, but the fix stops a potential silly loop in getGroups) - Crypt_RC4 wasn't loaded because of a typo - fixed direct passing of remember parameter to the LiveUser::factory() method (fix for bug #2491) - fixed critical bug in writeable checking inside LiveUser::_storeCookiePasswdId() (fix for bug #2492) - The group table was updated so now group_define_name is default NULL and allows NULL values. - set proper default type in LiveUser_Admin::addUser() Dependencies: |
| 0.13.1 |
Easy InstallNot sure? Get more info. pear install LiveUser-0.13.1 Pyrus InstallTry PEAR2's installer, Pyrus. php pyrus.phar install pear/LiveUser-0.13.1 Release date: 2004-10-02 05:03 UTC Release state: beta Release uploaded by: arnaud Changelog: - updated depencies - In getGroups, changed sizeif(customFields > 0) to count(customFields) > 0 - Fixed some missing . and ; in the perm containers - Came back with the old code for getting of custom getProperty until we make the new code work. - Misplacing of a MDB2 quoting in a DB container - fixed bug in define_name handling of all admin containers - cleaned up usage of LiveUser::status property and added LIVEUSER_STATUS_OK Dependencies: |
| 0.13.0 |
Easy InstallNot sure? Get more info. pear install LiveUser-0.13.0 Pyrus InstallTry PEAR2's installer, Pyrus. php pyrus.phar install pear/LiveUser-0.13.0 Release date: 2004-09-30 14:46 UTC Release state: beta Release uploaded by: arnaud Changelog: - refactored client to use ErrorStack, have a look at http://pear.php.net/manual/en/core.pear.pear-errorstack.php - refactored class loading - refactored login mechanism - removed LiveUser::getAuthAdminObjectByName() (use LiveUser/Admin.php instead) - BC Break! getUserFromGroup renamed to getUsersFromGroup to descripe better what the function is doing - userExists now should work if checked for password also in MDB[2] - added checks if _auth property is an object (fix for bug #1925) - added missing ['required'] in _readUserData() method (fix for bug #1925) - LiveUser_Admin_Perm_Container*::addUser() method now requires explicitly (instead of implicitly) that an auth container name is passed (fix for bug #1814) - fixed several serious bugs in getUsers() (bug #1800) - fixed indexes on relationship tables (fixed bug #1609) - check if custom authTableCols/groupTableCols conf setting is set before using - fixed LiveUser_Admin_Perm_Container_*::getGroups() - fixed constructors in the MDB[2] admin containers - added simple __toString() method - readded isError() until we have moved all the admin code to PEAR_ErrorStack - BC break! checkRight/checkRightLevel returns LIVEUSER_MAX_LEVEL when null is passed and not when false is passed as the right_id - fixed calls to container: _readUserData() and updateUserData() in LiveUser_Auth_Common - prevent infinite loop in LiveUser_Permn_Common::checkRight() - empty rights array in LiveUser::checkRight() means that the max right is returned - improved error handling in LiveUser_Perm_Container_*_Simple::init() method - fixed client directory structure to map "_" in class names to "/" in filenames - fixed LiveUser_Admin_Auth_Container_*::addUser()/updateUser()/getUsers() methods to be inline with the recent changes with authTableCols - fixed LiveUser_Admin_Auth_Container_*_Medium::addGroup()/updateGroup() methods to be inline with the recent changes with groupTableCols (MDB2? only) - fixed result type handling in LiveUser_Admin_Perm_Container_MDB2?_*::getRights() - typo fix in LiveUser_Admin_Perm_Container_MDB2_Complex::grantGroupRight() - fixed bug in LiveUser_Perm_*_Medium::readGroups() - dont default to debug true - fixed 'cache_perm' option false - don't allow 'reginid' option if a save handler has been defined - add optional parameter to only fetch the ID in admin->perm->getAuthUserId() - improved handling of optional fields in LiveUser_Auth_Container_*::_readUserData() - removed shorthand filter option in LiveUser_Admin_Perm_Container_*::getUsers() - removed DROP TABLE IF EXISTS in the database schema as well as removing all references to scope - removeUser() now removes the user him self the last - updated the documents that come with the examples in hope they will be clearer now. - improved filter handling in LiveUser_Admin::getUser() Dependencies:
|
| 0.12.0 |
Easy InstallNot sure? Get more info. pear install LiveUser-0.12.0 Pyrus InstallTry PEAR2's installer, Pyrus. php pyrus.phar install pear/LiveUser-0.12.0 Release date: 2004-06-19 13:58 UTC Release state: beta Release uploaded by: arnaud Changelog: - fixed several issues in the PEAR_Auth container (BC break in the configuration settings, see the documentation at the top of the container for details) - fixed bug in inactive setting - cleaned up error handling inside the LiveUser class (ErrorStack might be the better long term solution) - added LiveUser::statusMessage() to fix ambigutity inside LiveUser::errorMessage() - removed broken LiveUser::getRights() method (use LiveUser::getProperty() instead) - LiveUser::checkRight() now returns LIVEUSER_MAX_LEVEL if the rights parameter is exactly (===) false, or if the right evaluates to false and the user is logged in - simplified LiveUser::checkRightLevel() to use LiveUser::checkRight() - fixed issue in the 'regenid' handling of the 'destroy' configuration, which would lead to regeneration of session ID's if 'destroy' is set to true - don't execute any logout callbacks if a logout was initiated to do a new login (fix for bug #1122) - added LIVEUSER_STATUS_AUTHFAILED constant to denote when no auth container was able to recognize the login as valid (fix for bug #1276) - readded group_define_name field - cleaned up unique setting of *_define_name fields (fix for bug #1131) - don't fetch rights with a right level of below 0 in the simple perm containers (a similar fix may have to be applied to the medium container) - remove setting of the authName property in the permission containers in the LiveUser_Admin class because it can lead to inconsistent data - use the perm_user_id inside the LiveUser_Admin class to uniquely identify users (people who dont use the perm container can obviously just call the auth container methods directly instead) - expanded LiveUser_Admin::setAdminContainers() to also accept an authName - removed native_name field from liveuser_languages table (use the translation table instead) - added group_type field to liveuser_groups to optionally be able to differentiate between user groups and roles) - unified the handling of customfields in all relevant methods - added getUserFromGroup() method into the perm medium admin containers - removed the updateAuthUserId() method infavor of updateUser() in the perm simple admin containers that can also handle the perm type field - removed liveuser_users create statements from the examples (need to update the documentation in the examples) - added ability to disable caching of perm information in the session by setting the 'cache_perm' option to false (untested) - cleaned up schema sql files (fix bug #1532) - fixed issues in Admin.php addUser() and updateUser() (fix bug #1560) - reworked customfield handling (fix bug #1554) : the array for table columns configuration was changed due to a problem in the custom fields handling. This incurs a BC break. It will enable us and you to cope with change more easily in the future and will give users a flexible way of fetching and inserting custom fields. It is hopefully the BC break to end BC breaks. - instances of user_id where renamed auth_user_id where appropriate - improved error messages for method stubs in the interface classes (common.php) - fixed naming inconsistency for LiveUser_Auth_Common:_updateUserData() (fix bug #1661) - dont read data from the container if no perm user was found (fix bug #1654) - examples were updated to reflect recent changes (tested under PHP5 RC3/MySQL 4.0.x and PHP 4.3.x/MySQL 3.23.x) * Know issues: - MDB uses a column name of 'sequence' for sequences where as DB uses 'id' thus when switching between containers you have to rename the column Dependencies: |
| 0.11.1 |
Easy InstallNot sure? Get more info. pear install LiveUser-0.11.1 Pyrus InstallTry PEAR2's installer, Pyrus. php pyrus.phar install pear/LiveUser-0.11.1 Release date: 2004-04-28 16:30 UTC Release state: beta Release uploaded by: arnaud Changelog: - minor fixes on the examples Dependencies: |
| 0.11.0 |
Easy InstallNot sure? Get more info. pear install LiveUser-0.11.0 Pyrus InstallTry PEAR2's installer, Pyrus. php pyrus.phar install pear/LiveUser-0.11.0 Release date: 2004-04-28 05:40 UTC Release state: beta Release uploaded by: lsmith Changelog: - only disconnect when the disconnect option is set to true (default: null) - fixed bug in call in init() in combination with direct passing of handle and password - added ability to set the login/logout method to false to disable the feature - login/logout method can now be post, get and request (the last one is new) - fixed all the examples, should be mostly bug free now, method => get is now used in logout, example 5 uses the newly added method singleton, all sql files were updated and work now after they broke when last release was made. - two_letter_name in liveuser_languages and right_define_name in liveuser_rights were made unique in perm_db.sql - change all quote() to quoteSmart() in DB container since quote() is deprecated as of DB 1.6, so new dependancy of DB 1.6 is added. - added ability to pass and array as the value of the owner_user_id parameter in checkRightLevel() - if you use addUser in the admin perm containers then you have to state the auth container name else you get error msg back - SHA1 encryption option added, PHP4.3 is needed if SHA1 encryption is used - RC4 encryption added, Crypt_RC4 must be installed to use this - added function getUser to all Auth containers in /Admin, this function gets all info requested for given user and returns it in a array. - _getPermUserId made public, now is getPermUserId Perm containers in /Admin also added getAuthUserId in the same Perm containers - customFields have been added to addUser and editUser (also in Admin class) Note type is optional for DB, thus it's needed for MDB and MDB2, we recommend that you use type even though you use DB, so if you change to MDB[2], it will be no problem for you. usage example for Admin class: $custom = array( array('name' => 'name', 'value' => 'asdf', 'type' => 'text'), array('name' => 'email', 'value' => 'fleh@example.com', 'type' => 'text') ); $user_id = $admin->adduser('johndoe', 'dummypass', true, null, null, null, $custom); using the auth container straight would be: $user_id = $admin->addUser('johndoe', 'dummypass', true, null, null, null, $custom); - Admin Class - addUser now works with DB/MDB/MDB2 - removeUser now works with DB/MDB/MDB2 - updateUser now works with DB/MDB/MDB2 - getUser now works with DB/MDB/MDB2 - searchUser now works with DB/MDB/MDB2 Please test the Admin class for us and report any issue that you encounter if any. Note. it's still experimental. - customFields have been added to addGroup, editGroup and getGroups and this is used in the same way as customFields for addUser/editUser - checkRight() and checkRightLevel() both return the level of the given right or false - checkRightLevel() can now check multiple right id's similar to how checkRight() can - Admin Class - tweaked setAdminContainers() method - fixed issues with non numeric keys in $this->_conf['authContainers'] in side setAdminAuthContainer() and setAdminContainers() - applied several fixes to auth getUsers() to fix the custom field support - expanded filter support in perm getUsers() to also allow group_id filtering - made group_id param option in perm removeUserFromGroup() - Removed group_define_name from perm_db.sql and from code since this was apart of the old language system. - fixed remember me (bug #570) and unified remember me passing - database container can now accept an options array - fixed a bug in readGroupRights() which would result in lower level's potentially overwriting higher levels Dependencies: |
| 0.10.0 |
Easy InstallNot sure? Get more info. pear install LiveUser-0.10.0 Pyrus InstallTry PEAR2's installer, Pyrus. php pyrus.phar install pear/LiveUser-0.10.0 Release date: 2004-03-11 14:41 UTC Release state: beta Release uploaded by: lsmith Changelog: * General notes + SQL queries are now standards compliant IMPORTANT : DB Schema change ! Since 'comment' is reserved in Oracle, the field was renamed 'description' in the translations table The file you should use for the permissions setting is perm_db.sql + added MDB2 container + added class to provide a unified interface to the Auth and Perm container * Auth admin containers : + fixed countless bugs and added several missing methods * Perm admin containers : + restuctured class hirarchy to Common <- Simple <- Medium <- Complex + it was not possible to update a group without resetting 'is_active' + method to update the auth_user_id used in the auth/perm_user_id mapping (updateAuthUserId) + getPermUserId() now also optionally expects an auth container name + all methods (expect for getPermUserId()) now expect a permUserId instead of an authUserId + fixed countless bugs and added several missing methods + perm containers now follow the following inheritance structure (complex extends medium extends simple) * Client part changes + totaly reworked session handling - objects are no more serialized only the relevant property values - ressources are not freed automatically anymore (use the new disconnect method) - added 'session_save_handler' option to allow custom session handler + fixed a bunch if bugs and typos + restuctured class hirarchy to Common <- Simple <- Medium <- Complex + totally reworked parts of the perm db containers (especially in the complex container) + rights the user gets through being an areaadmin are now directly added to the rights array + keys (maybe a string now) in the authContainers array are now used to unique identify the auth container + upon sucessful login the status remained to WRONG_LOGIN thus calling the login function if force_login was set to true + fixed bugs in the remember me feature + added sanity checks in unfreeze() + if the force login option is set to true the custom login function is called twice. Add a check to not call the login function in tryLogin if force login is set to true + a basic unified admin class made its way into this version. It is pretty simple but will provide means to have high-level methods like addUser which will add a user to bother containers (auth and admin). + Setting 'passwordEncryptionMode' in the configuration array has no effect for the database auth container + using LIVEUSER_MAX_LEVEL constant for default right level instead of hardcoding level 3 + relying on status property alone in isInactive() + ensuring that in all method that write to the status property, the status is never overwritten with incorrect information + added a new status constant for when the user was logged out + removed now unneeded idled and expired property + removed deprecated constants + all constants related to error codes are now prefixed with LIVEUSER_ERROR + removed getHandle() method as it provided no value over getProperty('handle') + change install location for LiveUser/LiveUser.php (now include 'LiveUser.php') + change install location for LiveUser/Admin/Admin.php (now include 'LiveUser/Admin.php') + added the ability to specify a logout method and logout varname + added MDB xml schema files + fixed several minor issues in the sql files + renamed all instances of owner_perm_user_id to owner_user_id + all files from the old sql dir are now installed into data/misc/schema + examples no longer contain liveuser schema related statements; use the generic LiveUser schema files instead Dependencies: |
| 0.9 |
Easy InstallNot sure? Get more info. pear install LiveUser-0.9 Pyrus InstallTry PEAR2's installer, Pyrus. php pyrus.phar install pear/LiveUser-0.9 Release date: 2003-10-08 21:07 UTC Release state: beta Release uploaded by: mw21st Changelog: - Admin classes * getRights in DB and MDB based admin classes was fixed (it was returning too many rows) * getAllUsers was implemented in DB based Admin Perm classes * lowercased all keys in the authTableCol option to prevent issues with certain DB/MDB container * a user is active by default when adding it with the admin class * fixed missing checks for arrays infront of foreach calls in the admin classes * updateArea now accepts application_id as second parameter - LiveUser * fix rememberMe feature * fix issues with using Crypt_RC4 (used optionnally by rememberMe feature) * processLogout logs out if handle and password have been passed to the script * changed PHPSESSION to PHPSESSID which is the php default * when an inactive user is found the auth object is not cached anymore * update sql shema: + password -> passwd because it is a reserved word in some DB + changed all instances of user_id in the schema either to perm_user_id or auth_user_id ################################################### # Warning # # # # Some changes were made to the DB schema. # # # # A script is provided for MySQL # # # # Go into your PEAR_DATA_DIR/LiveUser/sql and run # # # # Perm_DB_Complex_0.8.1-0.9.diff.sql # # # # on your database # # # # It should also be noted that some minor BC # # issues occurred in the admin classes. # # # # ! Please read the above notes carefully ! # ################################################### Dependencies: |
| 0.8.1 |
Easy InstallNot sure? Get more info. pear install LiveUser-0.8.1 Pyrus InstallTry PEAR2's installer, Pyrus. php pyrus.phar install pear/LiveUser-0.8.1 Release date: 2003-08-28 13:33 UTC Release state: beta Release uploaded by: mw21st Changelog: * one file was not included in the 0.8 distribution * Administration class DB_Medium now extends from the DB_Common admin class Dependencies: |
| 0.8 |
Easy InstallNot sure? Get more info. pear install LiveUser-0.8 Pyrus InstallTry PEAR2's installer, Pyrus. php pyrus.phar install pear/LiveUser-0.8 Release date: 2003-08-26 22:11 UTC Release state: beta Release uploaded by: mw21st Changelog: This release marks the leap from "alpha" to "beta" stage. LiveUser has been stable for a while and been used in some real-life applications. We´re finally satisfied with the API and do not expect anymore BC breaks from now on. If BC breaks should occur in future versions, they will result in a new major version number (according to PEAR rules). If you still find any bugs, please report them to us. To get started quickly, please download the tutorial from http://projects.21st-hq.de/liveuser/ and see the examples. - dropped direct support for XML config files in favour of a new config array format that can easily be read/modified/written by PEAR::Config (this marks the most drastic BC change!) - added MDB backends - added experimental PEAR::Auth wrapper - added direct passing of username, password and logout - removed the need to define a login/logout method - added table/column abstraction in the Auth container - moved logout code to its own public method called logout() - DB_Complex permission administration class moved to the new directory layout for admin classes - admin classes accept a second parameter being the configuration array used (the one used with LiveUser::factory) - auth admin classes use table abstraction - perm admin classes table prefix - note: the Admin/Perm/DB_Medium and DB_Complex along with Admin/Auth/DB should be the most up-to-date Dependencies: |
| 0.7 |
Easy InstallNot sure? Get more info. pear install LiveUser-0.7 Pyrus InstallTry PEAR2's installer, Pyrus. php pyrus.phar install pear/LiveUser-0.7 Release date: 2003-06-01 19:24 UTC Release state: alpha Release uploaded by: mw21st Changelog: * LoginManager renamed to LiveUser (file and class) to ensure consistency with other pear packages * some changes were made to enhance performance thus not hindering an application using it. * Classes do not extend from PEAR anymore since the error handling was not used to its full extent * Error management was improved. A simple raiseError method is implemented only including the PEAR base class when necessary. * Code Cleanup, some methods are not necessary anymore * A change was made in the cookie handling. An id of the password is stored in the cookie and on the server. They will be matched against one another. An encrypted version of the password is also kept on the server because some containers like LDAP need the password. LU tries to use the mcrypt extension and if not available relies on Crypt_Rc4 for password encryption/decryption. Because of this LiveUser needs a directory with write access.If you do no have access to the ini_get() function please set a constant named LIVEUSER_TMPDIR with an absolute path to a writeable directory. Please remember that cookies are not safe and use at your own risk. * Started improving the admin class for DB_Complex, added a new admin class for DB_Simple, moved both admn classes to a new directory "Admin". Note: While the rest of the API is quite stable now, expect changes in the admin API and the DB schema for language management soon * Variable table prefix for the db containers. * LiveUser class (formerly known as LoginManager) now has a status flag. * Enhanced configuration options. * Short readme with images of the sql schemas. Dependencies:
|
| 0.6.1 |
Easy InstallNot sure? Get more info. pear install LiveUser-0.6.1 Pyrus InstallTry PEAR2's installer, Pyrus. php pyrus.phar install pear/LiveUser-0.6.1 Release date: 2003-03-17 23:54 UTC Release state: alpha Release uploaded by: mw21st Changelog: Major features in this release: * Fixed some bugs * One new auth container (XML) * Two new permissions container (DB_Simple and XML_Simple) * Added new examples Dependencies:
|
| 0.6 |
Easy InstallNot sure? Get more info. pear install LiveUser-0.6 Pyrus InstallTry PEAR2's installer, Pyrus. php pyrus.phar install pear/LiveUser-0.6 Release date: 2003-03-17 18:54 UTC Release state: alpha Release uploaded by: mw21st Changelog: Major features in this release: * Fixed some bugs * One new auth container (XML) * Two new permissions container (DB_Simple and XML_Simple) * Added new examples Dependencies:
|
| 0.5.1 |
Easy InstallNot sure? Get more info. pear install LiveUser-0.5.1 Pyrus InstallTry PEAR2's installer, Pyrus. php pyrus.phar install pear/LiveUser-0.5.1 Release date: 2003-03-10 21:18 UTC Release state: alpha Release uploaded by: mw21st Changelog: Fixed broken release 0.5 (Loginmanager.php was outdated). Major features release: * Fixed many bugs * Two new permissions container (medium and complex) * XML configuration cache added * Optimisations and performance changes * Enhanced user interface * Added expire and idle functionality Dependencies:
|
| 0.5 |
Easy InstallNot sure? Get more info. pear install LiveUser-0.5 Pyrus InstallTry PEAR2's installer, Pyrus. php pyrus.phar install pear/LiveUser-0.5 Release date: 2003-03-10 19:34 UTC Release state: alpha Release uploaded by: mw21st Changelog: Major features releases: * Fixed many bugs * Two new permissions container (medium and complex) * XML configuration cache added * Optimisations and performance changes * Enhanced user interface * Added expire and idle functionality Dependencies:
|
| 0.3 |
Easy InstallNot sure? Get more info. pear install LiveUser-0.3 Pyrus InstallTry PEAR2's installer, Pyrus. php pyrus.phar install pear/LiveUser-0.3 Release date: 2002-10-09 21:57 UTC Release state: alpha Release uploaded by: mw21st Changelog: Initial package release Dependencies:
|