chamilo-lms

Commit Graph

Author	SHA1	Message	Date
Angel Fernando Quiroz Campos	43a9bd1fb8	Security: Add 'auth_openid_allowed_providers' configuration setting to fix potential unauthenticated blind SSRF via openid.	11 months ago
NicoDucou	07dae4f0e8	Fix calls to get_time_spent_on_platform	2 years ago
Yannick Warnier	12655c3ff7	Internal: Add additional check on alternative authentication source file to avoid logging useless warnings	2 years ago
Yannick Warnier	2b5fe974fb	Internal: Remove deprecated redirect to course homepage when pointing to resource in a course - refs BT#20217	3 years ago
Christian	3684cca0b4	Plugin - Improve User session with lti client and provider - refs BT#20093	3 years ago
Christian	e04cdda990	Plugin - Improve validation to block users ims_lti outside a tool provider - refs BT#20093	3 years ago
Christian	a1815e6529	Plugin - Add validation to block users ims_lti outside a tool provider - refs BT#20093	3 years ago
Angel Fernando Quiroz Campos	3fddcc0aa8	User: Add login_max_attempt_before_blocking_account configuration setting - refs BT#20083 Block a user account if there are multiple failed login attempts. It requires DB changes: ```sql CREATE TABLE track_e_login_attempt ( login_id INT AUTO_INCREMENT NOT NULL, username VARCHAR(100) NOT NULL, login_date DATETIME NOT NULL, user_ip VARCHAR(39) NOT NULL, success TINYINT(1) NOT NULL, INDEX idx_track_e_login_attempt_username_success (username, success), PRIMARY KEY (login_id) ) DEFAULT CHARACTER SET utf8 COLLATE utf8_unicode_ci ENGINE = InnoDB; ``` Then add the "@" symbol to TrackELoginAttempt` class in the `ORM\Entity()` line.	3 years ago
Angel Fernando Quiroz Campos	ef4f048216	Fix E_NOTICE	3 years ago
Yannick Warnier	6b1eb331f6	Internal: Improve code for automated password encryption change - refs GH#4063	3 years ago
NicoDucou	fe28809ec1	SSO: CAS: MultiURLs fix redirect all the time to main page after login -refs BT#19857	3 years ago
Yannick Warnier	90ff7648d4	Minor: Documentation fixes	4 years ago
Christian	a6a004f759	User - Update user expiration in x days or months when login the first time -refs BT#19600	4 years ago
Angel Fernando Quiroz Campos	37849c21a5	Minor: Format code	4 years ago
NicoDucou	5484a1369a	Plugin: OAuth2: SSO: Adding force redirect option for the plugin -refs BT#19346	4 years ago
Angel Fernando Quiroz Campos	0fd60b52ad	Minor: Format code	4 years ago
NicoDucou	208832b651	Session: set session redirection before course legal agreement verification -refs BT#19519	4 years ago
Renaud Lemaire	331604ae76	detection of user password encryption from database, grant login despite configured encryption and re-encrypt password with configured encryption	4 years ago
Christian	4317eaa8d8	Minor: Clean code from flintci - refs BT#18997	4 years ago
NicoDucou	38fa7b1a5b	SSO: CAS: MultiURLs management and adding login event registery -refs BT#19294 and BT#19178	4 years ago
NicoDucou	ad0963d19a	SSO: fix CAS skip force redirect to use the configuration variable and not a specific path	4 years ago
Julio Montoya	9ec3007d29	Admin: Add config hide_breadcrumb_if_not_allowed BT#18892 - If the user is blocked with not allowed (red message), then the breadcrumb is hidden. Adds more checks if course doesn't exists inside a session.	4 years ago
Julio Montoya	f06ca10afb	Add admin config force_renew_password_at_first_login BT#18811	4 years ago
Angel Fernando Quiroz Campos	6fda6da964	Minor - Format code	4 years ago
Julio Montoya	18569f01a8	Cas: Add skip force in folder setting BT#18672 $cas['skip_force_redirect_in'] = ['/main/webservices'];	4 years ago
Julio	84c2d48d31	CAS: Use $_POST instead of $_REQUEST BT#18252 Add checkLoginCas $_GET parameter in order to check if user is already logged in.	5 years ago
Julio	ed4e98eac4	CAS: Use $_REQUEST instead of $_POST BT#18252	5 years ago
Julio Montoya	b5a4ee2dcd	Minor - format code	5 years ago
Julio Montoya	b91eaec6d4	CAS: Update user cas attributes after login BT#17620	5 years ago
Julio Montoya	0673b5ad39	Minor - Fix CAS user attributes	5 years ago
Julio Montoya	ed41263f5c	Minor - load correct user	5 years ago
Julio Montoya	cb52fdfe67	CAS: add user as admin BT#17620	5 years ago
Julio Montoya	4604ae78b3	Admin: Add config "cas_user_map" update user fields from CAS attributes BT#17620	5 years ago
Julio Montoya	d676dc9dd6	Admin: Add config course_sequence_valid_only_in_same_session BT#17789 Check only same course session	5 years ago
Julio Montoya	c9583d1055	Allow check legal if course is private and allows subscribtions BT#17542	5 years ago
Julio Montoya	5374f51c00	Minor - remove unused code	5 years ago
Julio Montoya	aec09c102d	Improve speed, avoid joining unused tables BT#16924 requires testing Problem appears when the login and the user table are big.	6 years ago
Yannick Warnier	549da1ce6e	Internal: Remove unnecessary quoting of INT in queries + rename user.user_id to user.id whenever possible in local.inc.php	6 years ago
Julio Montoya	0982d429cf	Flint fixes	6 years ago
Julio	c231b66911	Add course sequences BT#16255	6 years ago
Julio Montoya	40cb06687e	Minor - format code	6 years ago
Sébastien Ducoulombier	6926a4e165	quick fix to prevent redirection loop - refs BT#16484	6 years ago
Sébastien Ducoulombier	37bef440be	enable cas→replace_login_form	6 years ago
Sébastien Ducoulombier	7e8a4c66a7	ignore user.auth_source when CAS authenticated - refs BT#16484	6 years ago
Sébastien Ducoulombier	5df5a8f077	existing CAS integration reimplemented - refs BT#16484	6 years ago
Angel Fernando Quiroz Campos	94b7402812	Hook: Add hook for check login credentials - refs BT#15992	6 years ago
Julio Montoya	ccbea3d20a	SortableTable: clean URL params when changing student/teacher view BT#16150	6 years ago
Julio Montoya	b080daa43a	Fix redirect from course base to course session only for students BT#16000	6 years ago
Angel Fernando Quiroz Campos	7aaf04346b	Reset cId and gId when login - refs BT#15095	7 years ago
Julio Montoya	b3ecc0e09b	Minor - flint fixes	7 years ago

1 2 3 4 5 ...

428 Commits (43a9bd1fb8b3f57e7935a6a6bc48975e2063b01b)