forked from frankfarmer/Auth
-
Notifications
You must be signed in to change notification settings - Fork 0
/
package.xml
1022 lines (1001 loc) · 39.4 KB
/
package.xml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
517
518
519
520
521
522
523
524
525
526
527
528
529
530
531
532
533
534
535
536
537
538
539
540
541
542
543
544
545
546
547
548
549
550
551
552
553
554
555
556
557
558
559
560
561
562
563
564
565
566
567
568
569
570
571
572
573
574
575
576
577
578
579
580
581
582
583
584
585
586
587
588
589
590
591
592
593
594
595
596
597
598
599
600
601
602
603
604
605
606
607
608
609
610
611
612
613
614
615
616
617
618
619
620
621
622
623
624
625
626
627
628
629
630
631
632
633
634
635
636
637
638
639
640
641
642
643
644
645
646
647
648
649
650
651
652
653
654
655
656
657
658
659
660
661
662
663
664
665
666
667
668
669
670
671
672
673
674
675
676
677
678
679
680
681
682
683
684
685
686
687
688
689
690
691
692
693
694
695
696
697
698
699
700
701
702
703
704
705
706
707
708
709
710
711
712
713
714
715
716
717
718
719
720
721
722
723
724
725
726
727
728
729
730
731
732
733
734
735
736
737
738
739
740
741
742
743
744
745
746
747
748
749
750
751
752
753
754
755
756
757
758
759
760
761
762
763
764
765
766
767
768
769
770
771
772
773
774
775
776
777
778
779
780
781
782
783
784
785
786
787
788
789
790
791
792
793
794
795
796
797
798
799
800
801
802
803
804
805
806
807
808
809
810
811
812
813
814
815
816
817
818
819
820
821
822
823
824
825
826
827
828
829
830
831
832
833
834
835
836
837
838
839
840
841
842
843
844
845
846
847
848
849
850
851
852
853
854
855
856
857
858
859
860
861
862
863
864
865
866
867
868
869
870
871
872
873
874
875
876
877
878
879
880
881
882
883
884
885
886
887
888
889
890
891
892
893
894
895
896
897
898
899
900
901
902
903
904
905
906
907
908
909
910
911
912
913
914
915
916
917
918
919
920
921
922
923
924
925
926
927
928
929
930
931
932
933
934
935
936
937
938
939
940
941
942
943
944
945
946
947
948
949
950
951
952
953
954
955
956
957
958
959
960
961
962
963
964
965
966
967
968
969
970
971
972
973
974
975
976
977
978
979
980
981
982
983
984
985
986
987
988
989
990
991
992
993
994
995
996
997
998
999
1000
<?xml version="1.0" encoding="UTF-8"?>
<package packagerversion="1.9.4" version="2.0" xmlns="http://pear.php.net/dtd/package-2.0" xmlns:tasks="http://pear.php.net/dtd/tasks-1.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://pear.php.net/dtd/tasks-1.0 http://pear.php.net/dtd/tasks-1.0.xsd http://pear.php.net/dtd/package-2.0 http://pear.php.net/dtd/package-2.0.xsd">
<name>Auth</name>
<channel>pear.php.net</channel>
<summary>Creating an authentication system.</summary>
<description>The PEAR::Auth package provides methods for creating an authentication
system using PHP.
Currently it supports the following storage containers to read/write
the login data:
* All databases supported by the PEAR database layer
* All databases supported by the MDB database layer
* All databases supported by the MDB2 database layer
* Plaintext files
* LDAP servers
* POP3 servers
* IMAP servers
* vpopmail accounts (Using either PECL vpopmail or PEAR Net_Vpopmaild)
* RADIUS
* SAMBA password files
* SOAP (Using either PEAR SOAP package or PHP5 SOAP extension)
* PEAR website
* Kerberos V servers
* SAP servers</description>
<lead>
<name>Martin Jansen</name>
<user>MJ</user>
<email>[email protected]</email>
<active>no</active>
</lead>
<lead>
<name>Yavor Shahpasov</name>
<user>yavo</user>
<email>[email protected]</email>
<active>no</active>
</lead>
<lead>
<name>Adam Ashley</name>
<user>aashley</user>
<email>[email protected]</email>
<active>yes</active>
</lead>
<developer>
<name>James E. Flemer</name>
<user>jflemer</user>
<email>[email protected]</email>
<active>no</active>
</developer>
<developer>
<name>Adam Harvey</name>
<user>aharvey</user>
<email>[email protected]</email>
<active>yes</active>
</developer>
<date>2015-02-10</date>
<time>09:31:30</time>
<version>
<release>1.6.5</release>
<api>1.6.0</api>
</version>
<stability>
<release>stable</release>
<api>stable</api>
</stability>
<license uri="http://www.php.net/license">PHP License</license>
<notes>
QA release
Bug #20054 Auth package files installed to wrong directory
Bug #19806 Bad role for md5.js
Request #19805 Please Provides LICENSE file
Bug #18199 Auth 1.6.4
Request #18097 Auth Log Observer
Request #19670 Session_Name
Bug #19704 Array to string conversion notice pops up
Bug #19438 MDB2 container does not handle non string value properly
Bug #17284 Auth_Container_File->fetchData doesn't match the parent's method
Request #17156 Don't call Auth::updateIdle() statically
Bug #17097 listUsers() throws "undefined variable" on file without users:
Request #16059 Auth container for the CAS service
Bug #16044 Auth_Container_RADIUS and MSCHAPv1
Bug #13627 Add crypt mode to File container
Request #12537 No ability to delete data set with setAuthData()
</notes>
<contents>
<dir baseinstalldir="/" name="/">
<file baseinstalldir="/" md5sum="9a73b9f521e14a622c175aa867e98437" name="Auth/Anonymous.php" role="php" />
<file baseinstalldir="/" md5sum="9443d194a6bdd2d7267fd3ec5f5ed6a1" name="Auth/Auth.php" role="php" />
<file baseinstalldir="/" md5sum="cc93db994338de02cfc92103872989e1" name="Auth/Container.php" role="php" />
<file baseinstalldir="/" md5sum="14884b282125b4904dfc81dba884e50b" name="Auth/Controller.php" role="php" />
<file baseinstalldir="/" md5sum="740eef802918d0557cc2b22915ec15d1" name="Auth/Container/Array.php" role="php" />
<file baseinstalldir="/" md5sum="380a230b4a0afd92144f9c51f4393e09" name="Auth/Container/CAS.php" role="php" />
<file baseinstalldir="/" md5sum="a39f0eb21d4436f42f1f9e6095b7ea01" name="Auth/Container/DB.php" role="php" />
<file baseinstalldir="/" md5sum="36dd4212e450031b9a3dc3a6ad9c0494" name="Auth/Container/DBLite.php" role="php" />
<file baseinstalldir="/" md5sum="b921b0c058a4b09b09506bf0fbe1b140" name="Auth/Container/File.php" role="php" />
<file baseinstalldir="/" md5sum="229f1b07a248666bd10038216d2b34fe" name="Auth/Container/IMAP.php" role="php" />
<file baseinstalldir="/" md5sum="8123f56ce924e7b7ecd05b13c4002949" name="Auth/Container/KADM5.php" role="php" />
<file baseinstalldir="/" md5sum="6b5622aeddeaa98a72fa743569a8f919" name="Auth/Container/LDAP.php" role="php" />
<file baseinstalldir="/" md5sum="8f9e9a30b6ebd4c48892a4cac4239a3b" name="Auth/Container/MDB.php" role="php" />
<file baseinstalldir="/" md5sum="c2e45cd314f31a04d868fd59be0a737c" name="Auth/Container/MDB2.php" role="php" />
<file baseinstalldir="/" md5sum="01675866059f2b139ccfb1459b0d01df" name="Auth/Container/Multiple.php" role="php" />
<file baseinstalldir="/" md5sum="8dc4c09b14942ae8c2eb4757a895b088" name="Auth/Container/NetVPOPMaild.php" role="php" />
<file baseinstalldir="/" md5sum="e5ee7fdde024739eb6fbd7a4a99bdbb0" name="Auth/Container/PEAR.php" role="php" />
<file baseinstalldir="/" md5sum="5334d916c51021a5c4285edffd14f5af" name="Auth/Container/POP3.php" role="php" />
<file baseinstalldir="/" md5sum="c0479c8557e236066171d2f04debde02" name="Auth/Container/RADIUS.php" role="php" />
<file baseinstalldir="/" md5sum="193f120299ab67c09d8c0bd58129fc18" name="Auth/Container/SAP.php" role="php" />
<file baseinstalldir="/" md5sum="e2f74ef8487104b26a9eeeb3547c02f5" name="Auth/Container/SMBPasswd.php" role="php" />
<file baseinstalldir="/" md5sum="29a917c0a61f668f9b4dd151f31ac0bd" name="Auth/Container/SOAP.php" role="php" />
<file baseinstalldir="/" md5sum="014ba90dfddb87bb0bf8e7acfb2c6c18" name="Auth/Container/SOAP5.php" role="php" />
<file baseinstalldir="/" md5sum="434e87fb7c3e730a75258413cd8d1d0a" name="Auth/Container/vpopmail.php" role="php" />
<file baseinstalldir="/" md5sum="d00480ed0d97df8c950abd7d79f57c8b" name="Auth/Frontend/Html.php" role="php" />
<file baseinstalldir="/" md5sum="6d03025f455869185b57b5c138fd1c01" name="Auth/Frontend/md5.js" role="php" />
<file baseinstalldir="/" md5sum="767d6d8fad565204e813ccdeaf8f2b3a" name="Auth/Log/Observer.php" role="php" />
<file baseinstalldir="/" md5sum="797b51ba0f58858ab014771aa1b26fd6" name="examples/logging.php" role="doc" />
<file baseinstalldir="/" md5sum="c0234bbeeb10e24cdb6f64272e5e9831" name="examples/multi-container.php" role="doc" />
<file baseinstalldir="/" md5sum="557f04d5a64da1ec6ba4ecf6c9579738" name="tests/AllTests.php" role="test" />
<file baseinstalldir="/" md5sum="cca77b6315af90b71bebc258d1ef8023" name="tests/auth_container_db_options.php" role="test" />
<file baseinstalldir="/" md5sum="907193304f6f6d0a03321a344d81a8a8" name="tests/auth_container_file_options.php" role="test" />
<file baseinstalldir="/" md5sum="70468618acb6cf9314c234f241e93aae" name="tests/auth_container_imap_options.php" role="test" />
<file baseinstalldir="/" md5sum="7e41dc017dbc7f9c3841f205736cf2ab" name="tests/auth_container_pop3a_options.php" role="test" />
<file baseinstalldir="/" md5sum="f2884c6ddc8f0405364aad909105f0d5" name="tests/auth_container_pop3_options.php" role="test" />
<file baseinstalldir="/" md5sum="3796a67d8c5d3f281ceb414638f60cfa" name="tests/bug8735.passwd" role="test" />
<file baseinstalldir="/" md5sum="643f72125a8db7dc785ac6ca560b6269" name="tests/bug8735.phpt" role="test" />
<file baseinstalldir="/" md5sum="dc174dd0cfc732de9279563f8ba6cfff" name="tests/bug16044.phpt" role="test" />
<file baseinstalldir="/" md5sum="692a0e45513dcc8e1b7355bb5bdd2077" name="tests/DBContainer.php" role="test" />
<file baseinstalldir="/" md5sum="50d1cb84bc05e366f5e008615d934eed" name="tests/DBLiteContainer.php" role="test" />
<file baseinstalldir="/" md5sum="a9a8456cb66ef8dcb146556d118ef3d7" name="tests/FileContainer.php" role="test" />
<file baseinstalldir="/" md5sum="0341915e13c4f7ddf7aad9834f82be3c" name="tests/IMAPContainer.php" role="test" />
<file baseinstalldir="/" md5sum="5f96ab73177df5061f883390e8f2a47a" name="tests/MDB2Container.php" role="test" />
<file baseinstalldir="/" md5sum="f7928f2c094663f7cbb610e9956bee9a" name="tests/MDBContainer.php" role="test" />
<file baseinstalldir="/" md5sum="1ec0bca44f16f6eb9c5ef03c27a5c7af" name="tests/mysql_test_db.sql" role="test" />
<file baseinstalldir="/" md5sum="59dec3188c5f598aa4d5d1d79108ea53" name="tests/POP3aContainer.php" role="test" />
<file baseinstalldir="/" md5sum="ecd4407ad49b5c136599367888496e0a" name="tests/POP3Container.php" role="test" />
<file baseinstalldir="/" md5sum="340b52d2c30edbd2ecc77421d1c995db" name="tests/TestAuthContainer.php" role="test">
<tasks:replace from="@php_dir@" to="php_dir" type="pear-config" />
</file>
<file baseinstalldir="/" md5sum="db9782123c381f0d638ed9ace4f6d42d" name="tests/tests.php" role="test" />
<file baseinstalldir="/" md5sum="270ba53683db7e4dca16426a21a01e63" name="Auth.php" role="php" />
<file baseinstalldir="/" md5sum="53f05a6e3a5b5c826269492cc793515c" name="composer.json" role="data" />
<file baseinstalldir="/" md5sum="52dd90569008fee5bcdbb22d945b1108" name="LICENSE" role="data" />
<file baseinstalldir="/" md5sum="14012d9f7ed31ca900dc177cc37df9b5" name="README.AdvancedSecurity" role="doc" />
<file baseinstalldir="/" md5sum="38eac955611c0458f057799e6160a361" name="README.Auth" role="doc" />
</dir>
</contents>
<dependencies>
<required>
<php>
<min>4.3.3</min>
</php>
<pearinstaller>
<min>1.4.0b1</min>
</pearinstaller>
</required>
<optional>
<package>
<name>Log</name>
<channel>pear.php.net</channel>
<min>1.9.10</min>
</package>
<package>
<name>File_Passwd</name>
<channel>pear.php.net</channel>
<min>1.1.0</min>
</package>
<package>
<name>Net_POP3</name>
<channel>pear.php.net</channel>
<min>1.3.0</min>
</package>
<package>
<name>DB</name>
<channel>pear.php.net</channel>
<min>1.6.0</min>
</package>
<package>
<name>MDB</name>
<channel>pear.php.net</channel>
</package>
<package>
<name>MDB2</name>
<channel>pear.php.net</channel>
<min>2.0.0RC1</min>
</package>
<package>
<name>Auth_RADIUS</name>
<channel>pear.php.net</channel>
</package>
<package>
<name>Crypt_CHAP</name>
<channel>pear.php.net</channel>
<min>1.0.0</min>
</package>
<package>
<name>File_SMBPasswd</name>
<channel>pear.php.net</channel>
<min>1.0.0</min>
</package>
<package>
<name>HTTP_Client</name>
<channel>pear.php.net</channel>
<min>1.1.0</min>
</package>
<package>
<name>SOAP</name>
<channel>pear.php.net</channel>
<min>0.9.0</min>
</package>
<package>
<name>Net_Vpopmaild</name>
<channel>pear.php.net</channel>
<min>0.1.0</min>
</package>
<package>
<name>vpopmail</name>
<channel>pecl.php.net</channel>
<min>0.2</min>
<providesextension>vpopmail</providesextension>
</package>
<package>
<name>kadm5</name>
<channel>pecl.php.net</channel>
<min>0.2.3</min>
<providesextension>kadm5</providesextension>
</package>
<extension>
<name>imap</name>
</extension>
<extension>
<name>saprfc</name>
</extension>
<extension>
<name>soap</name>
</extension>
</optional>
</dependencies>
<phprelease />
<changelog>
<release>
<version>
<release>1.2.2</release>
<api>1.2.2</api>
</version>
<stability>
<release>stable</release>
<api>stable</api>
</stability>
<date>2003-07-29</date>
<license uri="http://www.php.net/license">PHP License</license>
<notes>
* Added support for passing contaner as an object
* Added fix when db_fileds is *
* Added Test Suite (experimental)
* Added generic support for arbitrary password crypting functions
different than MD5, DES and plain text. (Patch by Tom Anderson)
* Added new MDB storage container written by Lorenzo Alberton
* Added new Container for SAMBA password files (SMBPasswd)
</notes>
</release>
<release>
<version>
<release>1.2.3</release>
<api>1.2.3</api>
</version>
<stability>
<release>stable</release>
<api>stable</api>
</stability>
<date>2003-09-08</date>
<license uri="http://www.php.net/license">PHP License</license>
<notes>
* new Method to auth_container getUser()
* New Auth_Container_File, using new File_Passwd class. Provided by Michael Wallner <[email protected]>
* Login/Logout callbacks now get a reference to auth
* New Login Failed Callback added (method setFailedLoginCallback)
* SOAP container patch to keep a reference to the Soap responce by Bruno Pedro <[email protected]>
* Auth is now installed in /pear-dir/Auth.php instead of /pear-dir/Auth/Auth.php, an
empty file /pear-dev/Auth/Auth.php wich includes Auth.php is added for BC
* The contaner now gets a reference to the auth object ($auth->storage->_auth_obj)
*Some patches from the pear-dev list bellow
[email protected] - Patch to use a method of the container in Auth_Container::verifyPassword
-Lorenzo Alberton <[email protected]> - Patch to use variable session variable name, untill now the variable auth was used
-Marcos Neves <[email protected]> - Avaoid error when calling getAuthData() before the login
</notes>
</release>
<release>
<version>
<release>1.3.0r1</release>
<api>1.3.0r1</api>
</version>
<stability>
<release>beta</release>
<api>beta</api>
</stability>
<date>2004-06-04</date>
<license uri="http://www.php.net/license">PHP License</license>
<notes>
* Changes to LDAP container:
- check for loaded ldap extension at startup as suggested by Markku Turunen
- make ldap version configurable via config array
- documentation fix for active directory default user container
[ 14/Jun/2004 - jw]
* Added an Auth_Controller class, to manage automatic redirection to login page and redirect back
to the calling page [04/06/2004 - Yavo]
* Changes to LDAP container:
- additional attribute fetching to authData via new option attributes
- utf8 encoding username for ldapv3 (fixes german umlaut problem)
- make scope definable for user and group searching seperately
- remove useroc, groupoc and replace them with userfilter, groupfilter which is way more flexible
- updated documentation on all new and changed parameters
As some of the parameters changed this one is not backwards compatible to earlier versions.
Look at the top of the class where all parameters are explained in detail.
[08/April/2004 - jw]
* Added new MDB2 container [30/March/2004 - quipo]
* Implements changePassword and CS fixed, patch from Cipriano Groenendal <[email protected]>
[29/March/2004 - yavo]
* Added options for changing the post variables, patch supplied by Moritz Heidkamp <[email protected]>
[03/March/2004 - yavo]
* Added method setAdvancedSecurity and set advanced security to off by default, if turned on auth will perform additional
security checks if ip or user agent has changed across requests
* Login is now performed only if showLogin is true, do not allow for logins to be performed from any page which calls auth->start
spotted by Matt Eaton <[email protected]> [16/Jan/2004 - yavo]
* Fixed bug noted by Jeroen Houben <[email protected]>, calling loginFailedCallback
would not have the proper status set [16/Jan/2004 - yavo]
* Added PEAR container, authenticate the user against the pear web site
(probably php.net also) [16/Dec/2003 - yavo]
</notes>
</release>
<release>
<version>
<release>1.3.0r3</release>
<api>1.3.0r3</api>
</version>
<stability>
<release>beta</release>
<api>beta</api>
</stability>
<date>2004-08-07</date>
<license uri="http://www.php.net/license">PHP License</license>
<notes>
* Moved login screen generation code to Auth/Frontend/Html.php
In the future the frontend will be configurable.
* Implemented support for Challenge / Responce password authenthication
have to enable advanced security $auth->setAdvancedSecurity
will work only with DB container and cryptType = none|md5
* Implemented setAllowLogin to control which pages are allowed to perform login,
to preservce BC. Previusly the showLogin flag was used to control this - yavo
* Implmented lazy loading for the storage constructor, constructor is only created when needed
to make Auth more lightweight (this might be adding a bit more overhead to login and usermanagement functions)
* Removed include of PEAR, was not used anywhare in Auth.php
* Created a new storage container DBLite same as DB but with the user manipulation functions removed (50% smaller)
* Added a new method staticCheckAuth which can be called statically with only the auth options
* Auth::importGlobalVariable method was removed and replaced by references to global variables
* Removed all calls to $session[$this->_sessionName], made local reference session point to that instead
* Changed call_user_func to call_user_func_array for the callbacks, to avoid using @ for passing variables by reference
* Code Cleanup, removed most vi comments
</notes>
</release>
<release>
<version>
<release>1.3.0r4</release>
<api>1.3.0r4</api>
</version>
<stability>
<release>beta</release>
<api>beta</api>
</stability>
<date>2006-02-14</date>
<license uri="http://www.php.net/license">PHP License</license>
<notes>
This release fixes a security issue that allows an attacker to perform
injection attacks against the underlying storage containers. Upgrading
is strongly recommended if you are using beta releases of the Auth
package.
* Improved parameter validation in the DB and LPAP containers. (Patch
provided by Matthew Van Gundy.)
* Fixed Bug #3101: Wrong variable names in Auth/Container/File.php (mike)
* renamed supportsChallengeResponce() to supportsChallengeResponse()
in the DB container (quipo)
* Fixed Bug #4347: recognition of DB and MDB objects passed as dsn
* Fixed Bug #6324: updated MDB2 container
* Fixed Bug #5174: "Only variable references should be returned by reference"
bug in _factory()
* Fixed Bug #2446: english language typos.
This results in a BC break for any custom containers that have implemented
supportsChallengeResponce(). Also all containers already
supportsChallengeResponse() instead of supportsChallengeResponce() and
therefore the call in Auth_Frontend_Html always called the default
implementation and not the container implementation.
</notes>
</release>
<release>
<version>
<release>1.3.0r5</release>
<api>1.3.0r5</api>
</version>
<stability>
<release>beta</release>
<api>beta</api>
</stability>
<date>2006-02-21</date>
<license uri="http://www.php.net/license">PHP License</license>
<notes>
* Fixed Bug #2873: Allow calling programs to gracefully handle being unable
to connect/bind to LDAP server.
* Fixed Bug #4918: Added support to specify which authentication method to
prefer when authenticating against a POP3 backend.
* Fixed Bug #6644: Added support for LDAP_OPT_REFERRALS. Setting to false can
improve compatibility with Active Directory.
* Fixed Bug #6791: Made all calls to call_user_func() call_user_func_array and
made calls consistant per change done in 1.3.0r3.
* Fixed Bug #6803: depreciated DB function. Now requires DB >= 1.6.0
* Fixed Bug #6808: Whenever Auth_Container_DB attempts to change the database
make sure the connection/DB object exists and is correct before attempting to
use the DB quoting features.
</notes>
</release>
<release>
<version>
<release>1.3.0RC6</release>
<api>1.3.0RC6</api>
</version>
<stability>
<release>beta</release>
<api>beta</api>
</stability>
<date>2006-02-22</date>
<license uri="http://www.php.net/license">PHP License</license>
<notes>
</notes>
</release>
<release>
<version>
<release>1.3.0RC7</release>
<api>1.3.0RC7</api>
</version>
<stability>
<release>beta</release>
<api>beta</api>
</stability>
<date>2006-03-01</date>
<license uri="http://www.php.net/license">PHP License</license>
<notes>
This release is primarily a coding standard clean-up before the 1.3.0 final
release.
In addition the following improvements to the LDAP Container where supplied
by Hugues Peeters <[email protected]>.
* Changed default attrformat to AUTH so that loaded attributes are
presented in the same format as other backends provide.
* Added compatibility support to 1.2 style configuration options
* Attributes option now accepts a comma seperated string as well as
as array the same as db_fields in the DB, MDB and MDB2 backends.
Finally there are additional checks that the relevant PHP module is loaded
when loading the IMAP and VPOPMail Containers.
</notes>
</release>
<release>
<version>
<release>1.3.0</release>
<api>1.3.0</api>
</version>
<stability>
<release>stable</release>
<api>stable</api>
</stability>
<date>2006-03-03</date>
<license uri="http://www.php.net/license">PHP License</license>
<notes>
This is the final stable release of Auth 1.3.0. This version contains many new
features over previous versions. Summary of changes:
* New MDB2 container [30/March/2004 - quipo]
* New PEAR container, authenticate against pear.php.net [16/Dec/2003 - yavo]
* New Advanced Security mode to catch man-in-the-middle attacks.
* Added options for changing the post variables, patch supplied by Moritz
Heidkamp <[email protected]>
* New DBLite container, same as DB but with the user manipulation functions
removed (50% smaller).
* Split login form to Auth_Frontend_HTML with goal to make it easily
customisable.
Numerous other small fixes and improvements to all storage containers thanks
to the following people: Matt Eaton, Jeroen Houben, Cipriano Groenendal,
Markku Turunen, Matthew Van Gundy, marc at practeo dot ch and I'm sure many
others that have contributed over the years it's taken to get this release
out.
</notes>
</release>
<release>
<version>
<release>1.3.1RC1</release>
<api>1.3.1RC1</api>
</version>
<stability>
<release>beta</release>
<api>beta</api>
</stability>
<date>2006-08-11</date>
<license uri="http://www.php.net/license">PHP License</license>
<notes>
This release candidate is test the numerous fixes described below. It is also
to get feedback on the change made for Bug #8407. Bug #8407 adds automatic
quoting of table and field names used in SQL in the Database backends.
* Fixed Bug #7031: session_regenerate_id() not cleaning up old session storage.
Fix for this bug in PHP5.1.0+ has been done, still a problem in older versions
of PHP.
* Fixed Bug #7421: Allow false to be passed in for allowLogin and advancedSecurity
options.
* Fixed Bug #7434: Enable start_tls support for LDAP Container by Stuart Prescott
<[email protected]>
* Fixed Bug #7537: Made File Container capable of using all File_Passwd backends.
* Fixed Bug #7841: Added missing </center>. Really the whole frontend needs
reworking.
* Fixed Bug #7860: Removed deprecated session_register call.
* Fixed Bug #7899: sessionValidThru() returning incorrect value when no idle
timeout set.
* Fixed Bug #7956: Session handling had several security bugs before PHP4.3.3.
Bumped PHP dependancy so we don't have to deal with them.
* Fixed Bug #8076: MDB & MDB2 Containers not using default db_fields values
* Fixed Bug #8351: Documentation of $loginFailedCallback pointed to incorrect
set function.
* Fixed Bug #8406: Error message updates by Adam Harvey <[email protected]>
* Fixed Bug #8407: Database containers don't quote table/field names by Adam
Harvey <[email protected]>
</notes>
</release>
<release>
<version>
<release>1.3.1</release>
<api>1.3.1</api>
</version>
<stability>
<release>stable</release>
<api>stable</api>
</stability>
<date>2006-08-21</date>
<license uri="http://www.php.net/license">PHP License</license>
<notes>
* Fixed Bug #7031: session_regenerate_id() not cleaning up old session storage.
Fix for this bug in PHP5.1.0+ has been done, still a problem in older versions
of PHP.
* Fixed Bug #7421: Allow false to be passed in for allowLogin and advancedSecurity
options.
* Fixed Bug #7434: Enable start_tls support for LDAP Container by Stuart Prescott
<[email protected]>
* Fixed Bug #7537: Made File Container capable of using all File_Passwd backends.
* Fixed Bug #7841: Added missing </center>. Really the whole frontend needs
reworking.
* Fixed Bug #7860: Removed deprecated session_register call.
* Fixed Bug #7899: sessionValidThru() returning incorrect value when no idle
timeout set.
* Fixed Bug #7956: Session handling had several security bugs before PHP4.3.3.
Bumped PHP dependancy so we don't have to deal with them.
* Fixed Bug #8076: MDB & MDB2 Containers not using default db_fields values
* Fixed Bug #8351: Documentation of $loginFailedCallback pointed to incorrect
set function.
* Fixed Bug #8406: Error message updates by Adam Harvey <[email protected]>
* Fixed Bug #8407: Database containers don't quote table/field names by Adam
Harvey <[email protected]>
</notes>
</release>
<release>
<version>
<release>1.3.2</release>
<api>1.3.2</api>
</version>
<stability>
<release>stable</release>
<api>stable</api>
</stability>
<date>2006-08-31</date>
<license uri="http://www.php.net/license">PHP License</license>
<notes>
* Fixed Bug #8524: Notice from attempting to perform string operation on what
might be an array in DB, DBLite, MDB and MDB2. Thanks to dozoyousan at gmail
dot com.
* Remove debug message from RADIUS Container when using CHAP_MD5 or MSCHAPv1
style passwords. Thanks to Stoyan Stefanov <ssttoo at gmail dot com> for
pointing out this 3yr old bug.
</notes>
</release>
<release>
<date>2006-09-11</date>
<time>03:30:33</time>
<version>
<release>1.4.0RC1</release>
<api>1.4.0</api>
</version>
<stability>
<release>beta</release>
<api>stable</api>
</stability>
<license uri="http://www.php.net/license">PHP License</license>
<notes>
* Added new SOAP container that makes use of the PHP5 SOAP Client. Thanks to
Marcel Oelke <puRe at rednoize dot com>. Fixes #2612.
* Added support for trying all the user accounts returned from an LDAP server
not just the first one so as to support authenticating against Lotus Notes
which allows identical usernames where the only difference is the password.
Fixes #5365.
* Added new Array container for simple authentication setups where it's easier
to list users in the file than setup some sort of backend. Thanks to
georg_1 at have2 dot com. Fixes #5832.
* Added KADM5 container that makes use of the PECL kadm5 extension to
authenticate against Kerberos 5 servers. Thanks to Andrew Teixeira
<ateixeira at gmail dot com>. Fixes #6671.
* Fixed #8597. Remove references to $GLOBALS['HTTP_*_VARS'] now that we require
PHP 4.3.3+ for other reasons.
* Added SAP container that makes use of the SAPRFC extension available from
http://saprfc.sourceforge.net/. Thanks to Stoyan Stefanov <ssttoo at gmail dot com>.
Fixes #8637.
* Fix #8599. Allow identifier quoting in DB, DBLite, MDB and MDB2 backends to
be switched off by developer.
</notes>
</release>
<release>
<date>2006-09-21</date>
<time>10:00:00</time>
<version>
<release>1.4.0RC3</release>
<api>1.4.0</api>
</version>
<stability>
<release>beta</release>
<api>stable</api>
</stability>
<license uri="http://www.php.net/license">PHP License</license>
<notes>
* Fix Bug #8732: Auth_Container_DB having problems with SQLite databases.
SQLite returns the name of quoted field names including the quotes instead
of stripping the quotes like all other DBs.
* Fix Bug #8735: Auth_Container_File::addUser() working on different instances
of File_Passwrd object.
</notes>
</release>
<release>
<date>2006-10-20</date>
<time>10:00:00</time>
<version>
<release>1.4.0</release>
<api>1.4.0</api>
</version>
<stability>
<release>stable</release>
<api>stable</api>
</stability>
<license uri="http://www.php.net/license">PHP License</license>
<notes>
* Added new SOAP container that makes use of the PHP5 SOAP Client. Thanks to
Marcel Oelke <puRe at rednoize dot com>. Fixes #2612.
* Added support for trying all the user accounts returned from an LDAP server
not just the first one so as to support authenticating against Lotus Notes
which allows identical usernames where the only difference is the password.
Fixes #5365.
* Added new Array container for simple authentication setups where it's easier
to list users in the file than setup some sort of backend. Thanks to
georg_1 at have2 dot com. Fixes #5832.
* Added KADM5 container that makes use of the PECL kadm5 extension to
authenticate against Kerberos 5 servers. Thanks to Andrew Teixeira
<ateixeira at gmail dot com>. Fixes #6671.
* Fixed #8597. Remove references to $GLOBALS['HTTP_*_VARS'] now that we require
PHP 4.3.3+ for other reasons.
* Added SAP container that makes use of the SAPRFC extension available from
http://saprfc.sourceforge.net/. Thanks to Stoyan Stefanov <ssttoo at gmail dot com>.
Fixes #8637.
* Fix #8599. Allow identifier quoting in DB, DBLite, MDB and MDB2 backends to
be switched off by developer.
* Fix Bug #8732: Auth_Container_DB having problems with SQLite databases.
SQLite returns the name of quoted field names including the quotes instead
of stripping the quotes like all other DBs.
* Fix Bug #8735: Auth_Container_File::addUser() working on different instances
of File_Passwrd object.
</notes>
</release>
<release>
<date>2006-10-28</date>
<time>07:00:00</time>
<version>
<release>1.4.1</release>
<api>1.4.0</api>
</version>
<stability>
<release>stable</release>
<api>stable</api>
</stability>
<license uri="http://www.php.net/license">PHP License</license>
<notes>
* Forgot to add Auth/Container/Array.php to package2.xml.
</notes>
</release>
<release>
<date>2006-11-10</date>
<time>07:00:00</time>
<version>
<release>1.4.2</release>
<api>1.4.0</api>
</version>
<stability>
<release>stable</release>
<api>stable</api>
</stability>
<license uri="http://www.php.net/license">PHP License</license>
<notes>
* Fixed Bug #9241: Callback functions where being passed a copy of
the login object instead of a reference to it under PHP4.
* Fixed Bug #9286: Comparison of passwords and their hashes could give
false positive.
</notes>
</release>
<release>
<date>2006-12-06</date>
<time>07:00:00</time>
<version>
<release>1.4.3</release>
<api>1.4.0</api>
</version>
<stability>
<release>stable</release>
<api>stable</api>
</stability>
<license uri="http://www.php.net/license">PHP License</license>
<notes>
* Fixed Bug #9380: Default Auth_Container_POP3 configuration not
working.
* Fixed Bug #9407: Add callback in checkAuth() process.
* Fixed Bug #9479: Typo in Auth_Container_KADM5::_checkServer causes
failure. Thanks to Matt T. Proud (khanreaper at nerp dot net).
</notes>
</release>
<release>
<date>2007-01-17</date>
<time>07:00:00</time>
<version>
<release>1.5.0RC1</release>
<api>1.5.0</api>
</version>
<stability>
<release>beta</release>
<api>stable</api>
</stability>
<license uri="http://www.php.net/license">PHP License</license>
<notes>
* Completed Request #2229: Ability to attach fall through containers. This
is implemented through the use of a new container Auth_Container_Multiple.
See multi-container.php in examples directory.
* Completed Request #4126: Enhancements to Advanced Security Mode. Thanks
to makler at man dot torun dot pl.
* Completed Request #6949: Use Log package for debugging messages. See logging.php
in examples directory.
* Completed Request #7089: Add optional extra WHERE options to DB and MDB(2)
containers.
* Add ability to pass an instanciated DB, MDB or MDB2 database connection to each
of the respective Auth Containers.
</notes>
</release>
<release>
<date>2007-02-02</date>
<time>07:00:00</time>
<version>
<release>1.5.0RC2</release>
<api>1.5.0</api>
</version>
<stability>
<release>beta</release>
<api>stable</api>
</stability>
<license uri="http://www.php.net/license">PHP License</license>
<notes>
* Fixed Bug #9944: Logging constants not defined when logging disabled.
* Fixed Bug #10000: Stupid developer didn't stop to look what he was doing
and broke things.
* Fixed Bug #10004: Logging of connection failures in LDAP container missing.
</notes>
</release>
<release>
<date>2007-02-13</date>
<time>10:35:00</time>
<version>
<release>1.5.0</release>
<api>1.5.0</api>
</version>
<stability>
<release>stable</release>
<api>stable</api>
</stability>
<license uri="http://www.php.net/license">PHP License</license>
<notes>
* Completed Request #2229: Ability to attach fall through containers. This
is implemented through the use of a new container Auth_Container_Multiple.
See multi-container.php in examples directory.
* Completed Request #4126: Enhancements to Advanced Security Mode. Thanks
to makler at man dot torun dot pl.
* Completed Request #6949: Use Log package for debugging messages. See logging.php
in examples directory.
* Completed Request #7089: Add optional extra WHERE options to DB and MDB(2)
containers.
* Fixed Bug #9944: Logging constants not defined when logging disabled.
* Fixed Bug #10000: Stupid developer didn't stop to look what he was doing
and broke things.
* Fixed Bug #10004: Logging of connection failures in LDAP container missing.
</notes>
</release>
<release>
<date>2007-03-23</date>
<time>10:35:00</time>
<version>
<release>1.5.1</release>
<api>1.5.0</api>
</version>
<stability>
<release>stable</release>
<api>stable</api>
</stability>
<license uri="http://www.php.net/license">PHP License</license>
<notes>
* Added missing optional dependancy on PEAR Log to package.xml
* Fixed Bug #10125: Auth_Container_LDAP::fetchData only fetching attributes for
first entry.
</notes>
</release>
<release>
<date>2007-06-12</date>
<time>10:35:00</time>
<version>
<release>1.5.2</release>
<api>1.5.0</api>
</version>
<stability>
<release>stable</release>
<api>stable</api>
</stability>
<license uri="http://www.php.net/license">PHP License</license>
<notes>
* Feature Request #10729: Optionally regenerate session id on every page request.
Thanks to Bernhard for patch.
* Fixed Bug #10785: Notice when Auth::logout() called with a login callback
defined but no user logged in. Suggested fix thanks to Sascha Grossenbacher.
</notes>
</release>
<release>
<date>2007-07-02</date>
<time>10:35:00</time>
<version>
<release>1.5.3</release>
<api>1.5.0</api>
</version>
<stability>
<release>stable</release>
<api>stable</api>
</stability>
<license uri="http://www.php.net/license">PHP License</license>
<notes>
* Fixed Bug: If Auth::setSessionName() is called new session name variable is
not initialised so checks for session storage fail.
* Fixed Bug #11396: Auth_Container_Pear doesn't work with latest changes to
pear.php.net. Fix by Adam Harvey.
* Fixed Bug #11476: SOAP5 container's _validateOptions() and _setDefaults()
functions where setting options into the wrong object parameter. Thanks to
Köles Mihály for fix.
</notes>
</release>
<release>
<date>2007-07-02</date>
<time>10:35:00</time>
<version>
<release>1.5.4</release>
<api>1.5.0</api>
</version>
<stability>
<release>stable</release>
<api>stable</api>
</stability>
<license uri="http://www.php.net/license">PHP License</license>
<notes>
* Fixed Bug #11499: Redundant parameter in Auth_Container_SOAP5::_validateOptions()
definition. Thanks to Koles Mihaly for spotting this.
</notes>
</release>
<release>
<date>2008-04-04</date>
<time>10:35:00</time>
<version>
<release>1.6.0</release>
<api>1.5.0</api>
</version>
<stability>
<release>stable</release>
<api>stable</api>
</stability>
<license uri="http://www.php.net/license">PHP License</license>
<notes>
* Fixed Bug #12112: Advanced Security Cookie has different settings to
session cookie.
* Implemented Request #13337: New vpopmail container utilising Net_Vpopmaild.
Patch supplied by Bill Shupp (shupp)
* Implemented Request #13418: Karma support for PEAR Container. Patch supplied
by Christian Weiske (cweiske).
* Added correct debug message for when no login has occured instead of session
storage not found.
* Implemented Request #12061: Auto Quote handle database schema changes. ie
schema.tableName -> "schema"."tableName"
* Implemented Request #12087: Ability to select which Advanced Security options
are used.
* Fixed Doc Bug #12156: Correction to doc page for Auth::setSessionName() by
Adam Harvey (aharvey)
</notes>
</release>
<release>
<date>2008-04-04</date>
<time>15:33:00</time>
<version>
<release>1.6.1</release>
<api>1.5.0</api>
</version>
<stability>
<release>stable</release>
<api>stable</api>
</stability>
<license uri="http://www.php.net/license">PHP License</license>
<notes>
* Actually included the new NetVPOPMaild container file.
*mutter*grumble*stupid package.xml*grumble*mutter*
* Fix Bug #13578: Parse errors in DB Containers
</notes>
</release>
<release>
<version>
<release>1.6.2</release>
<api>1.5.0</api>
</version>
<stability>
<release>stable</release>
<api>stable</api>
</stability>
<date>2010-02-12</date>
<license uri="http://www.php.net/license">PHP License</license>
<notes>
* Fix Bug #13756: Variable name mispelling in SAP container
* Fix Bug #13757: AUTH_LOG_ERR used but not defined
* Fix Bug #14248: Typo and documentation fixes
* Fix Bug #16676: Notices in PEAR container (cweiske)
</notes>
</release>
<release>
<version>
<release>1.6.3</release>
<api>1.5.0</api>
</version>
<stability>
<release>stable</release>
<api>stable</api>
</stability>
<date>2010-10-26</date>
<license uri="http://www.php.net/license">PHP License</license>
<notes>
Automatically built QA release
Bug #17691 PATCH: Using explode instead of split - doconnor
</notes>
</release>
<release>
<version>
<release>1.6.4</release>
<api>1.5.0</api>
</version>
<stability>
<release>stable</release>
<api>stable</api>
</stability>
<date>2010-10-26</date>
<license uri="http://www.php.net/license">PHP License</license>
<notes>
Fix baseinstalldir
</notes>
</release>
<release>
<version>
<release>1.6.5</release>
<api>1.6.0</api>
</version>
<stability>
<release>stable</release>
<api>stable</api>
</stability>
<date>2015-02-10</date>
<license uri="http://www.php.net/license">PHP License</license>
<notes>
QA release
Bug #20054 Auth package files installed to wrong directory
Bug #19806 Bad role for md5.js