Commit History

Author SHA1 Message Date
  Joas Schilling 6acfea61d0 Fix tests 7 years ago
  Roeland Jago Douma e368a745aa Set last-login-check on basic auth 8 years ago
  Christoph Wurst 6543182d13 fix parameter order 8 years ago
  Christoph Wurst 9b808c4014 do not remember session tokens by default 8 years ago
  Lukas Reschke 9d6e01ef40 Add missing tests and fix PHPDoc 8 years ago
  Christoph Wurst 6f86e468d4 inject ISecureRandom into user session and use injected config too 8 years ago
  Christoph Wurst d907666232 bring back remember-me 8 years ago
  Roeland Jago Douma f722640a32 Proper DI of config 8 years ago
  Roeland Jago Douma 593d52fe91 Fix and cleanup SessionTest 8 years ago
  Vincent Petry 6d1e858aa4 Fix logClientIn for non-existing users (#26292) 8 years ago
  Robin Appelman 90db361827 Add test to ensure token times are updated 8 years ago
  Robin Appelman 25ed6714c7 dont update the auth token twice 8 years ago
  Roeland Jago Douma d616984879 Fix getMock User 8 years ago
  Robin Appelman 6c93fe08f5 dont get bruteforce delay twice 8 years ago
  Lukas Reschke c1589f163c Mitigate race condition 8 years ago
  Lukas Reschke ba4f12baa0 Implement brute force protection 8 years ago
  Christoph Wurst 1710de8afb Login hooks (#25260) 8 years ago
  Christoph Wurst 89198e62e8 check login name when authenticating with client token 8 years ago
  Vincent Petry 3db5de95bd Merge pull request #25172 from owncloud/token-login-validation 8 years ago
  Christoph Wurst b805908dca update session token password on user password change 8 years ago
  Christoph Wurst 56199eba37 fix unit test warning/errors 8 years ago
  Christoph Wurst 8ef5431e7a fix user session tests 8 years ago
  Christoph Wurst 82b50d126c add PasswordLoginForbiddenException 8 years ago
  Christoph Wurst 465807490d create session token only for clients that support cookies 8 years ago
  Christoph Wurst ec929f07f2 When creating a session token, make sure it's the login password and not a device token 8 years ago
  Christoph Wurst c58d8159d7 Create session tokens for apache auth users 8 years ago
  Christoph Wurst 28ce7dd262 do not allow client password logins if token auth is enforced or 2FA is enabled 8 years ago
  Christoph Wurst ad10485cec when generating browser/device token, save the login name for later password checks 8 years ago
  Christoph Wurst c20cdc2213 invalidate user session if the user is disabled 8 years ago
  Joas Schilling 94ad54ec9b Move tests/ to PSR-4 (#24731) 8 years ago