Commit Graph

82 Commits

Author SHA1 Message Date
942a20cdf6
prevent leaving logged in user without logged in status in case of no https connector 2023-01-16 13:53:28 +01:00
eba45c4dfd
remove configurable RP url, because browser reject such unvalid combinations 2022-12-15 23:08:23 +01:00
68b9f53c14
improve code 2022-12-13 22:24:33 +01:00
4183ebcf99
add further tests 2022-12-13 22:16:45 +01:00
f16fbee5d8
improve code 2022-12-13 22:05:29 +01:00
e9a1969c4c
improve code 2022-12-13 13:23:00 +01:00
ca7fd769aa
add setup tests 2022-12-12 23:23:10 +01:00
9f0ad7d26f
add further tests 2022-12-10 23:55:53 +01:00
e80182f5e4
add further tests 2022-12-09 22:23:32 +01:00
4308df335b
add further tests 2022-12-09 00:02:51 +01:00
001610645c
adjust mockable function calls, make compatible to same class extensions from TOTP plugin 2022-12-07 12:03:24 +01:00
318338552c
add further tests 2022-12-06 22:42:12 +01:00
ed9a06ee2d
move OXID object getters to testing library 2022-12-05 11:00:49 +01:00
7157d85375
add further tests 2022-12-03 00:33:46 +01:00
5fa3a28196
add further tests 2022-12-02 15:56:17 +01:00
9c8c3b34e9
add further tests 2022-12-01 23:46:09 +01:00
f3d8e55db1
add further tests 2022-12-01 00:45:39 +01:00
c7f48bf960
extract assertAuth and login procedure to separate classes 2022-11-30 01:27:05 +01:00
dd9d9490b8
add admin controller tests 2022-11-27 01:02:23 +01:00
a80d5dcde5
set selected language for webauthn form 2022-11-24 20:37:02 +01:00
9e0b92c9a9
transfer profile and language selection through webauthn process 2022-11-24 09:10:45 +01:00
26556eb889
restore assertAuth in component instead in frontend controller, prevent check login parent call (OTP doesnt require this anymore) 2022-11-24 01:02:20 +01:00
e866141a34
separate session var names between frontend and backend 2022-11-23 09:36:35 +01:00
f74d6985fb
add admin controller tests, improve controller classes 2022-11-23 00:18:09 +01:00
3bbfde7794
add admin controller tests 2022-11-22 00:26:04 +01:00
b995437483
add frontend controller tests 2022-11-21 00:29:50 +01:00
b21d5cf622
fix missing is string check 2022-11-13 21:43:33 +01:00
55cf8007ec
layout admin panel 2022-11-12 23:49:56 +01:00
c971adcb69
fix non string value check 2022-11-12 23:49:39 +01:00
fc338a19de
fix template block names 2022-11-12 00:50:45 +01:00
deb598bbe5
rename module methods in extended OXID classes to prevent conflicts with other modules 2022-11-09 12:04:35 +01:00
4c29245ddb
rename module methods in extended OXID classes to prevent conflicts with other modules 2022-11-09 11:21:09 +01:00
8fccae9412
show unsecure message in myAccount, if shop is not in https 2022-11-09 11:19:53 +01:00
f8a755dc6f
remove possible login vulnerability 2022-11-08 23:12:56 +01:00
2bf7399aa4
move webauthn check to deeper implemented login method 2022-11-08 22:47:11 +01:00
64f974d486
add frontend password login tests 2022-11-08 22:19:45 +01:00
d4d57fd631
add webauthn redirect test 2022-11-08 10:19:43 +01:00
eae7291120
add first integration test 2022-11-08 01:12:11 +01:00
215e0dcd36
change license notes 2022-11-04 23:02:30 +01:00
f156e7ad19
improve code 2022-11-04 22:02:44 +01:00
2efed69b3b
add workaround note for pending pull request 2022-11-04 09:01:48 +01:00
f061462c12
improve java script 2022-11-04 08:38:40 +01:00
51e97bae62
replace redirect call to fnc call return parameter 2022-11-04 08:38:08 +01:00
8aff5c8008
format log messages in exception class 2022-11-04 00:12:42 +01:00
d41c3da290
log trace to reported error 2022-11-04 00:05:52 +01:00
8237917a06
don't perform a redirect after frontend logout
shop retrieves session id from outdated cookie, causes strange behaviours
2022-11-03 23:59:14 +01:00
bfdb6454d8
make relying party URL configurable 2022-11-03 13:43:39 +01:00
8df85439e4
improve error handling 2022-11-03 13:42:41 +01:00
925d55cb01
increase credential id field length 2022-11-03 10:32:49 +01:00
620339a42c
destroy input validator in checkout user login form 2022-11-02 22:50:06 +01:00