1
0
mirror of https://github.com/e107inc/e107.git synced 2025-10-26 03:07:43 +01:00
Commit Graph

98 Commits

Author SHA1 Message Date
Nick Liu
dd36fbd51d Unify logic of e_user_model::checkAdminPerms() and getperms()
Along with extensive documentation, `getperms()` is now deprecated and
its replacements now have first-class support:
* `e_user_model::checkAdminPerms()` and `getperms()` both use
  `e_userperms::simulateHasAdminPerms()`.
* `e_user_model::checkPluginAdminPerms()` and `getperms('P', …, …)`
  both use `e_userperms::simulateHasPluginAdminPerms()`.

----

Partially reverts: https://github.com/e107inc/e107/commit/44526b43

Reverts: https://github.com/e107inc/e107/commit/001799cb

Fixes: https://github.com/e107inc/e107/issues/5064
2023-09-09 12:03:14 +02:00
camer0n
44526b435c Issue #5064 - Draft fix for user impersonation (getperms()) 2023-09-08 14:18:06 -07:00
Cameron
dec2941882 Issue #4757 - Make IP readable in email notification on user_changed_ip trigger. 2022-05-05 09:26:00 -07:00
Cameron
c2fc8fce0a Issue #4757 Prevent infinite loop and possible PHP 8.1 errors. 2022-04-21 10:54:43 -07:00
Cameron
64b1cdcbc2 Fixes #4757 and adds user_ip_changed trigger. 2022-04-18 15:09:12 -07:00
Cameron
55980a29a8 Generated PHPDoc for all classes in e107_handlers where one was missing. toNumber() updated to always return int or float. 2022-04-04 10:54:24 -07:00
Nick Liu
f1a2f2e768 #4633: Default to user_tracking "session" in user_model.php
Second part of
https://github.com/e107inc/e107/commit/94f3162

Fixes: #4633
2022-01-17 09:59:05 +01:00
Cameron
90ba858059 Added HTTP 503 header to sitedown.php and additional bot to robots list. 2021-03-31 12:14:18 -07:00
Cameron
c32e5bf1e2 e107::unserialize() will now return the array if the input is an array. Additional form-handler tests added for type: media, file and files. Admin-ui can now manage a change of field type from 'array' to 'json' without additional changes needed. 2021-02-08 08:44:44 -08:00
Cameron
49b8a9690d Issue #4020 2 new prefs added. Allow default collapsing of side-bar and enable/disable labels on nav-bar.
Icon cleanup and will now try to guess the right icon based on mode/action. Styling fixes. Removed unused admin stylesheets from bootstrap3.
2021-02-03 11:46:32 -08:00
Cameron
4b6d23dbf6 Issue #4356 Fixes a conflic with secureImage prefs. Added secureImage tests. 2021-02-02 19:18:44 -08:00
Cameron
94e37f47a1 Issue #4356 - Admin-area login issue. 2021-01-27 16:50:53 -08:00
Cameron
94f3162d94 Issue #4356 Admin login issue. 2021-01-27 16:19:37 -08:00
Cameron
60afb0ba1a Fix for bot icon in dashboard online table. 2021-01-25 19:00:31 -08:00
Cameron
76dbd4469e Fixed error in {XURL_ICONS} shortcode. Added a test. Fixed some warnings in the admin/language page. 2021-01-25 17:57:34 -08:00
Cameron
522d71d243 Reduced some memory usage. 2021-01-24 17:00:02 -08:00
Cameron
9487c620e3 Updated isBot() method. 2021-01-24 10:42:53 -08:00
Cameron
402d1f4126 Closes #1801 Code cleanup. Deprecated method errors added. 2020-12-22 14:48:28 -08:00
Cameron
3f8e043998 Replaced e107::getAdminLog() with e107::getLog(). e107::getAdminLog() will continue as a deprecated alias. 2020-12-22 09:36:02 -08:00
Cameron
601df26d51 Code optimization for speed and reduced memory usage. 2020-12-20 11:50:10 -08:00
Cameron
f5153bf640 Updating of deprecated method usage. Removal of old files. Log tests added. 2020-12-18 09:39:02 -08:00
Cameron
44e260b121 Code cleanup and optimization 2020-12-14 16:21:48 -08:00
Cameron
f605ddc552 Code optimization and cleanup. 2020-12-10 15:52:48 -08:00
Nick Liu
4fbf4a93ca Do not trigger user_login event if authentication fails
Related: #4236
2020-08-25 00:24:31 -05:00
Cameron
a6a98a82ad Code cleanup. Incompatible plugin alert now links directly to uninstall page for each plugin found. 2020-06-26 13:58:59 -07:00
Nick Liu
27dd9ab287 social: Fix broken update profile on login feature 2020-05-22 17:13:38 -05:00
Cameron
bd647b1514 Improved debugging info on social login update failure. 2020-04-09 10:03:42 -07:00
Nick Liu
379a963902 New API to detect if social login is enabled site-wide
The site-wide social login system is now backwards-compatible with how
the social_login_active core pref worked since commit
3b2d8333b6.

social_login_active's least significant bit is now treated as a global
bit, so if it's not set, no other bits are allowed to be set. This
un-breaks all existing checks for whether social_login_active is empty.

Except in themes, the social_login_active check has been replaced with
an e_user_provider API to check if social login is enabled site-wide.
2020-02-22 23:55:20 +01:00
Nick Liu
c260152b57 Redirect improvements for social logins
- FIX: Duplicate invalid login messages in userlogin::login()
- NEW: e_user_provider: Return URL passthrough to go back where intended
- MOD: Cleanup of some confusing APIs in e_user_provider
- MOD: Return URL passthrough in system/xup/*
- MOD: system/xup/test: Logout test renamed into something clearer
2020-02-19 21:22:53 +01:00
Nick Liu
dc66b508bf Factory for e_user_provider 2020-02-19 18:25:25 +01:00
Nick Liu
91bfc1df23 Core modifications to support Hybridauth 3
- MOD: Replaced e107::getPref('social_login') with
       SocialLoginConfigManager::getValidConfiguredProviderConfigs()
- FIX: signup_shortcodes updated with new social login providers
- MOD: e107::filter_request() code de-duplication: HTTP 400 exits
- MOD: Deprecated e107::getHybridAuth() to discourage direct access to
       third-party dependency Hybridauth
- FIX: Updated e_user_provider for Hybridauth 3
- FIX: e_user::tryProviderSession() and Hybridauth 3
- NEW: Dynamic auth provider support in social_adminarea
- NEW: Database migration for social plugin's social_login pref
2020-02-17 10:38:49 +01:00
Nick Liu
46c75ae4d0 Updated Hybridauth from v2.9.6 to v3.1.1 2020-02-17 10:38:49 +01:00
Nick Liu
d6eafdc3fc Null check for e_user_model::isBot() 2020-01-18 16:35:19 +01:00
Cameron
62863b4934 Issue #2146 PHP 7.3 class compatibility fix. More testing required. 2019-06-03 16:29:38 -07:00
Cameron
7dea524e8a BC Fix for icons in sitelinks. 2019-04-30 14:01:05 -07:00
Deltik
1f824faa69 Renormalized all text file line endings 2019-03-29 19:13:32 -05:00
Achim Ennenbach
322b5ba60d Switched add/remove functions to make use of the unified functions
from the user_class class (user_class::ucAdd(), user_class::ucRemove())
Fixed some typo and removed missing template vars
2019-03-20 18:16:00 +01:00
Cameron
9e6c2a79f0 Issue #3657 Add update limits on user_class changes throughout. 2019-02-22 11:10:05 -08:00
Cameron
41879e8a94 Issue #1745 - Initial Userclass was not being saved during Activation by admin. 2017-10-29 11:25:05 -07:00
Cameron
e3cf1e4086 Insert email address automatically during Social login if found and missing from database. 2017-10-23 13:01:19 -07:00
Lóna Lore
22a40e318b If timezone is not set by user, need to return an empty string in order to use default timezone is set for e107. 2016-12-13 21:42:57 +01:00
Lóna Lore
2f2b3cc7c0 Set default timezone in init_session(). 2016-12-13 21:31:59 +01:00
Lóna Lore
5ef0f56b8f Use "user_xup_updated" event name. 2016-12-01 22:57:00 +01:00
lonalore
77bcd16569 Trigger event with updated profile data. 2016-12-01 10:07:05 +01:00
lonalore
3fa89bc13a New "user_xup_profile_updated" event. 2016-12-01 09:53:50 +01:00
lonalore
8d838bb9a8 Prevent debug message if debug mode is disabled. 2016-12-01 09:39:32 +01:00
Lóna Lore
dbe3731091 Duplicated WHERE in SQL query. 2016-11-27 22:07:54 +01:00
Cameron
fb223639c1 Quick-Add-User email fixes. 2016-06-10 17:52:08 -07:00
Cameron
983d8bb4f4 Issue #1670 Social login preference to update displayName and/or Avatar. 2016-06-01 12:33:15 -07:00
Cameron
efbd6c3c2c Search Bot Userclass working again. 2016-05-18 12:10:03 -07:00