07a6d7655f 
								
							 
						 
						
							
							
								
								First basic OpenID Connect implementation  
							
							
							
						 
						
							2020-07-01 23:27:50 +02:00  
				
					
						
							
							
								 
						
							
								8ce38d2158 
								
							 
						 
						
							
							
								
								Fixed not shown existing-email warning on new ldap user  
							
							... 
							
							
							
							- Reduced the amount of different exceptions from LDAP attempt so they
can be handled more consistently.
- Added test to cover.
- Also cleaned up LDAP tests to reduce boilterplate mocks.
Fixes  #2048  
							
						 
						
							2020-04-26 12:13:00 +01:00  
				
					
						
							
							
								 
						
							
								519283e643 
								
							 
						 
						
							
							
								
								Authenticated admins on all guards upon login  
							
							... 
							
							
							
							For #2031  
							
						 
						
							2020-04-25 18:19:22 +01:00  
				
					
						
							
							
								 
						
							
								ba1be9d710 
								
							 
						 
						
							
							
								
								Updated password reset process not to indicate if email exists  
							
							... 
							
							
							
							- Intended to prevent enumeration to check if a user exists.
- Updated messages on both the reqest-reset and set-password elements.
- Also updated notification auto-hide to be dynamic based upon the
amount of words within the notification.
- Added tests to cover.
For #2016  
							
						 
						
							2020-04-10 13:38:08 +01:00  
				
					
						
							
							
								 
						
							
								f84bf8e883 
								
							 
						 
						
							
							
								
								Updated test files to be PSR-4 compliant  
							
							... 
							
							
							
							Closes  #1924  
						
							2020-04-04 01:16:05 +01:00  
				
					
						
							
							
								 
						
							
								59aefe5371 
								
							 
						 
						
							
							
								
								Updated social auth to take name from email if empty  
							
							... 
							
							
							
							- Added tests to cover.
Fixes  #1853  
							
						 
						
							2020-03-10 19:09:22 +00:00  
				
					
						
							
							
								 
						
							
								01b95d91ba 
								
							 
						 
						
							
							
								
								Fixed side-effect in binary LDAP handling  
							
							... 
							
							
							
							- Was not stripping prefix when sending value to LDAP server in search.
- Updated test to cover. 
							
						 
						
							2020-02-15 22:35:15 +00:00  
				
					
						
							
							
								 
						
							
								29cc35a304 
								
							 
						 
						
							
							
								
								Added dump_user_details option to LDAP and added binary attribute decode option  
							
							... 
							
							
							
							Related to #1872  
							
						 
						
							2020-02-15 20:31:23 +00:00  
				
					
						
							
							
								 
						
							
								14363edb73 
								
							 
						 
						
							
							
								
								Fixed LDAP error thrown by not found user details  
							
							... 
							
							
							
							- Added testing to cover.
Related to #1876  
							
						 
						
							2020-02-15 14:44:36 +00:00  
				
					
						
							
							
								 
						
							
								3991fbe726 
								
							 
						 
						
							
							
								
								Checked over and aligned registration option behavior across all auth options  
							
							... 
							
							
							
							- Added tests to cover 
							
						 
						
							2020-02-02 17:31:00 +00:00  
				
					
						
							
							
								 
						
							
								e6c6de0848 
								
							 
						 
						
							
							
								
								Simplified guard names and rolled out guard route checks  
							
							... 
							
							
							
							- Included tests to cover for LDAP and SAML
- Updated wording for external auth id option.
- Updated 'assertPermissionError' test case to be usable in BrowserKitTests 
							
						 
						
							2020-02-02 13:10:21 +00:00  
				
					
						
							
							
								 
						
							
								5d08ec3cef 
								
							 
						 
						
							
							
								
								Fixed failing tests caused by auth changes  
							
							
							
						 
						
							2020-02-02 12:00:41 +00:00  
				
					
						
							
							
								 
						
							
								e06f9f7fe3 
								
							 
						 
						
							
							
								
								Removed setting override system due to confusing behaviour  
							
							... 
							
							
							
							- Was only used to disable registration when LDAP was enabled.
- Caused saved option not to show on settings page causing confusion.
- Extended setting logic where used to take ldap into account instead of
global override.
- Added warning on setting page to show registration enable setting is
not used while ldap is active.
For #1541  
							
						 
						
							2019-12-22 13:19:17 +00:00  
				
					
						
							
							
								 
						
							
								f9fa6904b9 
								
							 
						 
						
							
							
								
								Made LDAP auth ID attribute configurable  
							
							... 
							
							
							
							- Allows the field that gets stored as the "External Authentication ID"
to be configurable. Defined as LDAP_ID_ATTRIBUTE=uid in .env.
- Added test to cover usage.
- Also now auto-lowercases when searching for attributes in LDAP
response since PHP always provides them as lower case.
Closes  #592 . 
							
						 
						
							2019-12-16 12:40:21 +00:00  
				
					
						
							
							
								 
						
							
								c33ef4b9b2 
								
							 
						 
						
							
							
								
								Added tests to cover saml and added controller middleware  
							
							
							
						 
						
							2019-11-17 19:15:37 +00:00  
				
					
						
							
							
								 
						
							
								488325f459 
								
							 
						 
						
							
							
								
								Added the ability to auto-load config from metadata url  
							
							
							
						 
						
							2019-11-17 14:44:26 +00:00  
				
					
						
							
							
								 
						
							
								3a17ba2cb9 
								
							 
						 
						
							
							
								
								Started using OneLogin SAML lib directly  
							
							... 
							
							
							
							- Aligned and formatted config options.
- Provided way to override onelogin lib options if required.
- Added endpoints in core bookstack routes.
- Provided way to debug details provided by idp and formatted by
bookstack.
- Started on test work
- Handled case of email address already in use. 
							
						 
						
							2019-11-17 13:26:43 +00:00  
				
					
						
							
							
								 
						
							
								cbf9d701af 
								
							 
						 
						
							
							
								
								Updated to laravel 6  
							
							
							
						 
						
							2019-09-14 14:12:39 +01:00  
				
					
						
							
							
								 
						
							
								140298bd96 
								
							 
						 
						
							
							
								
								Updated to Laravel 5.8  
							
							
							
						 
						
							2019-09-13 23:58:40 +01:00  
				
					
						
							
							
								 
						
							
								aea5319256 
								
							 
						 
						
							
							
								
								Merge branch 'docker-development-environment' of git://github.com/timoschwarzer/BookStack into timoschwarzer-docker-development-environment  
							
							
							
						 
						
							2019-08-26 21:24:56 +01:00  
				
					
						
							
							
								 
						
							
								eab0ca9648 
								
							 
						 
						
							
							
								
								Covered new invite system with testing  
							
							... 
							
							
							
							Closes  #316  
						
							2019-08-18 13:55:28 +01:00  
				
					
						
							
							
								 
						
							
								9357620d55 
								
							 
						 
						
							
							
								
								Add docker development environment  
							
							
							
						 
						
							2019-08-12 16:43:39 +02:00  
				
					
						
							
							
								 
						
							
								4b0c4e621a 
								
							 
						 
						
							
							
								
								Replaced use of custom 'baseUrl' helper with 'url'  
							
							... 
							
							
							
							Also changed up how base URL setting was being done
by manipulating incoming request URLs instead of
altering then on generation. 
							
						 
						
							2019-08-04 14:26:39 +01:00  
				
					
						
							
							
								 
						
							
								8ae35f645a 
								
							 
						 
						
							
							
								
								Fixed faulty baseUrl rewrites  
							
							... 
							
							
							
							Fixes  #1452 
May help #1377  
						
							2019-05-19 16:25:05 +01:00  
				
					
						
							
							
								 
						
							
								4e49d06182 
								
							 
						 
						
							
							
								
								Merge branch 'fix/registraion-form-validation' of git://github.com/cw1998/BookStack into cw1998-fix/registraion-form-validation  
							
							
							
						 
						
							2019-04-21 12:24:39 +01:00  
				
					
						
							
							
								 
						
							
								c24764018a 
								
							 
						 
						
							
							
								
								Updated ldap server option parsing to work with protocol and port  
							
							... 
							
							
							
							- Aligns with PHP behaviour where ports is ignore for full LDAP URI.
- Added tests to check format being passed to LDAP is as expected.
- May be related to #1220 
- Related to #1386  and #1278  
							
						 
						
							2019-04-16 22:47:53 +01:00  
				
					
						
							
							
								 
						
							
								c8cf6731e2 
								
							 
						 
						
							
							
								
								Add min length validation on name on register form & add sign up link  
							
							
							
						 
						
							2019-04-16 12:18:51 +01:00  
				
					
						
							
							
								 
						
							
								44c537de1a 
								
							 
						 
						
							
							
								
								Performed some LDAP service/test cleanup  
							
							
							
						 
						
							2019-03-10 10:54:19 +00:00  
				
					
						
							
							
								 
						
							
								6d20bdc1fb 
								
							 
						 
						
							
							
								
								Preserve original display_name_attribute configuration values.  
							
							
							
						 
						
							2019-03-09 01:13:30 -05:00  
				
					
						
							
							
								 
						
							
								502ea608bf 
								
							 
						 
						
							
							
								
								Issue  #1306  - Unit Tests for LdapService Changes  
							
							
							
						 
						
							2019-03-09 01:08:49 -05:00  
				
					
						
							
							
								 
						
							
								26ec1cc3dc 
								
							 
						 
						
							
							
								
								Added proper escaping to LDAP filter operations  
							
							... 
							
							
							
							To cover #1163  
							
						 
						
							2018-12-20 20:04:09 +00:00  
				
					
						
							
							
								 
						
							
								178b5af83a 
								
							 
						 
						
							
							
								
								Added google select_account test  
							
							... 
							
							
							
							Also cleaned the function naming a little to be more descriptive of the
work they do. 
							
						 
						
							2018-11-10 14:52:43 +00:00  
				
					
						
							
							
								 
						
							
								919660678b 
								
							 
						 
						
							
							
								
								Re-structured the app code to be feature based rather than code type based  
							
							
							
						 
						
							2018-09-25 12:30:50 +01:00  
				
					
						
							
							
								 
						
							
								da58c41ab6 
								
							 
						 
						
							
							
								
								Prevented attachDefaultRole from trying to re-attach if already existing  
							
							... 
							
							
							
							Fixes  #1003 
Added test to cover 
						
							2018-09-22 22:09:34 +01:00  
				
					
						
							
							
								 
						
							
								e60d11ee04 
								
							 
						 
						
							
							
								
								Altered social auto-reg to be configurable per service  
							
							... 
							
							
							
							- Added {$service}_AUTO_REGISTER and {$service}_AUTO_CONFIRM_EMAIL env
options for each social auth system.
- Auto-register will allow registration from login, even if registration
is disabled.
- Auto-confirm-email indicates trust and will mark new registrants as
'email_confirmed' and skip 'confirmation email' flow.
- Also added covering tests. 
							
						 
						
							2018-09-21 18:05:06 +01:00  
				
					
						
							
							
								 
						
							
								f421d83627 
								
							 
						 
						
							
							
								
								Added ability to set custom ldap group -> role mapping  
							
							... 
							
							
							
							Added input in role form to allow matching against custom names.
Changed default mapping to use role display name instead of the hidden
DB name. 
							
						 
						
							2018-07-15 19:34:42 +01:00  
				
					
						
							
							
								 
						
							
								17bca662a7 
								
							 
						 
						
							
							
								
								Added tests to cover ldap group mapping  
							
							... 
							
							
							
							Also updated .env.example formatting.
Updated how LdapRepo uses Ldap so can be mocked by testing. 
							
						 
						
							2018-07-15 17:57:25 +01:00  
				
					
						
							
							
								 
						
							
								ec050a5eef 
								
							 
						 
						
							
							
								
								Fixed validation issue on register post  
							
							... 
							
							
							
							Added test to cover and also cleaned up RegisterController comments.
Fixes  #670  
							
						 
						
							2018-01-28 17:15:30 +00:00  
				
					
						
							
							
								 
						
							
								d89440d198 
								
							 
						 
						
							
							
								
								Fixed required email confirmation with domain restriction  
							
							... 
							
							
							
							Added test to cover scenario.
Closes  #573  
							
						 
						
							2017-11-11 18:09:48 +00:00  
				
					
						
							
							
								 
						
							
								c1fc06ae34 
								
							 
						 
						
							
							
								
								Merge branch 'master' of git://github.com/Cyber-Duck/BookStack into Cyber-Duck-master  
							
							
							
						 
						
							2017-07-27 16:20:38 +01:00  
				
					
						
							
							
								 
						
							
								f200b4183d 
								
							 
						 
						
							
							
								
								Defined LDAP constant for testing without LDAP installed  
							
							
							
						 
						
							2017-07-22 17:22:31 +01:00  
				
					
						
							
							
								 
						
							
								33642c20ec 
								
							 
						 
						
							
							
								
								Fixed faulty text rendering calls and LDAP tests  
							
							
							
						 
						
							2017-07-22 17:10:52 +01:00  
				
					
						
							
							
								 
						
							
								245294fbc5 
								
							 
						 
						
							
							
								
								Trying to make the tests green.  
							
							
							
						 
						
							2017-07-17 14:42:08 +01:00  
				
					
						
							
							
								 
						
							
								f38bc75ab4 
								
							 
						 
						
							
							
								
								Trying to make the tests green.  
							
							
							
						 
						
							2017-07-17 14:21:41 +01:00  
				
					
						
							
							
								 
						
							
								3407900abb 
								
							 
						 
						
							
							
								
								Trying to make the tests green.  
							
							
							
						 
						
							2017-07-17 14:18:03 +01:00  
				
					
						
							
							
								 
						
							
								33a2999a57 
								
							 
						 
						
							
							
								
								Namespaced tests to align with new laravel default  
							
							
							
						 
						
							2017-02-04 11:58:42 +00:00  
				
					
						
							
							
								 
						
							
								6669998c10 
								
							 
						 
						
							
							
								
								Upgraded to Laravel 5.4  
							
							
							
						 
						
							2017-01-25 19:35:40 +00:00  
				
					
						
							
							
								 
						
							
								f2917fc462 
								
							 
						 
						
							
							
								
								Added tests to cover social login actions  
							
							... 
							
							
							
							Closes  #244  
						
							2017-01-02 14:56:58 +00:00  
				
					
						
							
							
								 
						
							
								0775cd09a1 
								
							 
						 
						
							
							
								
								Extracted text for remaining views  
							
							
							
						 
						
							2016-12-04 14:08:04 +00:00  
				
					
						
							
							
								 
						
							
								57dc53ceff 
								
							 
						 
						
							
							
								
								Extracted text from book & chapter views  
							
							
							
						 
						
							2016-11-17 13:33:07 +00:00  
				
					
						
							
							
								 
						
							
								ac80723058 
								
							 
						 
						
							
							
								
								Merge fixes from branch 'v0.12'  
							
							
							
						 
						
							2016-11-12 11:40:54 +00:00  
				
					
						
							
							
								 
						
							
								8b43b91057 
								
							 
						 
						
							
							
								
								Improved password reset flow with notifications.  
							
							... 
							
							
							
							Also added links to sign-in/register.
Fixed links in emails sent out.
Fixes  #210  and #218 . 
							
						 
						
							2016-10-30 11:36:57 +00:00  
				
					
						
							
							
								 
						
							
								3b7d223b0c 
								
							 
						 
						
							
							
								
								Updated and added tests for new default user system  
							
							... 
							
							
							
							Closes  #138  
						
							2016-09-29 17:07:58 +01:00  
				
					
						
							
							
								 
						
							
								9dc9724e15 
								
							 
						 
						
							
							
								
								Laravel 5.3 upgrade ( #189 )  
							
							... 
							
							
							
							* Started move to laravel 5.3
* Started updating login & registration flows for laravel 5.3 update
* Updated app emails to notification system
* Fixed registations bugs and removed email confirmation model
* Fixed large portion of laravel post-upgrade issues
* Fixed and tested LDAP process 
							
						 
						
							2016-09-17 18:22:04 +01:00  
				
					
						
							
							
								 
						
							
								fcfb9470c9 
								
							 
						 
						
							
							
								
								Added further attribute endpoints and added tests  
							
							
							
						 
						
							2016-05-07 14:29:43 +01:00  
				
					
						
							
							
								 
						
							
								3a1cda5802 
								
							 
						 
						
							
							
								
								Updated ldap so extension not required in testing  
							
							
							
						 
						
							2016-05-02 11:38:07 +01:00  
				
					
						
							
							
								 
						
							
								8e614ecb6e 
								
							 
						 
						
							
							
								
								Updated tests to match recent email confirmation changes  
							
							
							
						 
						
							2016-04-03 12:34:10 +01:00  
				
					
						
							
							
								 
						
							
								473261be35 
								
							 
						 
						
							
							
								
								Finished initial implementation of custom role system  
							
							
							
						 
						
							2016-02-27 19:24:42 +00:00  
				
					
						
							
							
								 
						
							
								4442a2e6d1 
								
							 
						 
						
							
							
								
								Started work on user profile pages  
							
							
							
						 
						
							2016-02-16 21:25:11 +00:00  
				
					
						
							
							
								 
						
							
								d32460070f 
								
							 
						 
						
							
							
								
								Made ldap auth use the 'dn' if a 'uid' is not present.  
							
							... 
							
							
							
							Fixes  #56  
						
							2016-02-08 19:45:01 +00:00  
				
					
						
							
							
								 
						
							
								7bcd967fd9 
								
							 
						 
						
							
							
								
								Increased LDAP testing and fixed any Auth-based bugs found  
							
							
							
						 
						
							2016-01-17 15:20:07 +00:00  
				
					
						
							
							
								 
						
							
								0821672e70 
								
							 
						 
						
							
							
								
								Cleaned tests up, Started LDAP tests, Created LDAP wrapper  
							
							
							
						 
						
							2016-01-15 23:21:47 +00:00