Remove the inadvertant UTF-8 BOM from the beginning of the file, and initialize the contact variable properly (again).
Change the ldapweb.cgi script to use an additional property called email.contact which provides a contat email (particularly when email.sender is set to noreply@...). Update the skin configurations with this property, as well as the metacat.properties default.
If the user doesn's specify the ldap ca file path on the metacat.properties, it will use the default one.
Replace the operator "=~' by "eq" in comparing the two password fields.
dd a new routine to check if the uid has been taken already in the production space during the creation process.
use configured auth.base rather than hard-coded dc=ecoinformatics,dc=org. https://projects.ecoinformatics.org/ecoinfo/issues/6592
For the existing uidnumber, we decrease the size of vector for sorting.
Add the code to check if the existing highest uidNumber really exists.
In the getNextUidNumber method, a mechanism to look up the highest existing udiNumber was added.
Use an array of a hash to keep the orgName/orgLabel pair.
Use the verity=>none for start_tls method on some search methods.These methods will search the referral servers, some of which is using self-signed certificate. There is a difficuty to verify it.The search methods don't have any critical data, so the down-grade doesn't have too much impact.
when a user reset the password, we search the user to use the base=o=org,dc=ecoinformatics,dc=org and filter is uid=username.
Add the code to check if the stored the uidnext is a number or not.
Fixed a bug that a debug message is incorrect.
Add the missed the attriubtes such as uidNumber, gidNumber and et al.
Get the some properties from the metacat.properties file.
Add a new method to get the next avaliable uid.
When start tls, the verify was changed to "require" rather than "none".
actually remove the entry if it is expired (uncomment the function call). https://projects.ecoinformatics.org/ecoinfo/issues/6099
correct the createTimestamp filter and search base -- only remove inetOrgPerson entries, not any underlying structure that was added to store these temporary accounts. https://projects.ecoinformatics.org/ecoinfo/issues/6099
correct some syntax errors, date filter formatting. https://projects.ecoinformatics.org/ecoinfo/issues/6099
clear temporary accounts that have not been activated after a configurable number of hours. https://projects.ecoinformatics.org/ecoinfo/issues/6099
Remove an extra print content type statement.
Add a print statment for "content type". Otherwise, the html can't show up.
do not email a specific account reset URL so that the emails can be used in multiple UI contexts. https://projects.ecoinformatics.org/ecoinfo/issues/6066
Comment out some extral "contet type".
ensure all emailed links make sense for the UI that initiated them. also format referrals using the same options as the primary accounts (recursive call needed the html parameter). https://projects.ecoinformatics.org/ecoinfo/issues/6066
include optional email.overrideURL property for the account management page to send an email link that will result in a styled response. https://projects.ecoinformatics.org/ecoinfo/issues/6066
use AJAX method of including the captcha. https://projects.ecoinformatics.org/ecoinfo/issues/6098
Remove an extra space in the email message.
Edit some of the instructions for activating an account. https://projects.ecoinformatics.org/ecoinfo/issues/6063
Remove the knb information in the emails.
Add code to handle the looking up names.
Add a method to lookup users'account for the people who forgot their user name.
Add code to generate dc=tmp. Clean up some code.
Remove a reistriction that it didn't show the similar accounts of "ou=Account" in the user registration.
Use the specific template for the verification.
Fixed a bug that email verificaton doesn't work well on "ou=Account".
Fixed a bug to split the organization list from a property file.Fixed a bug to use a wrong object class for the ou.
Pass a organization list to the template.
Add code to get organization information from the ldapconfig.
First get the email sender from the skin properties. If it is null, get it from the metacat.properties file.
Reword a message for the failed verification.
Add code to handle the failure of the email server.
Add code to check if password match in the registeration.
Add the new feature for the email verification.
Fixed a bug that the url link was not correct in the email.
Send the verification email.
Add code to add a user to the tmp subtree.
Fixed a bug in creating a subtree.
Add code to generate temporary subtree if it didn't exist.
add a new subroutine to create a temporary account.
Read the recaptcha key from the metacat.properties.
Add the recaptcha protection.
handle https-only server configuration -- must pull resources from https not http for the skins etc.
filter ou=Account parameters as per #5244
Update the filename reference
Include hack for UCNRS organization properties.
- build up username using base if username isn't fully qualified (e.g. cn=Manager,dc=ecoinformatics,dc=org)- additional debugging statements for changePassword
- fix error reporting for failed password reset request- automatically generate necessary LDAP parameters from our defaults, included in auth.base and unaffiliated properties. This won't work for skins such as UCNRS with a different base, which still need to be ...
- reformat header- add debugging for getLdapEntry searches- add 'filter' parameter for organizations
Provide improved contextUrl, provide proper URL in password reset message body
Handle all places where ldap may be null
enclose more references to ldap and mesg in the if (ldap) statement.
made mesg var global to function.
left off ;
Do not try to use non-existant ldap object if ldap server is down.
Changing the ChangePassword method to fix password reset broke the password change functionality. Moved the fix (add dc to username) into the handleResetPassword function.
Fix typo after the error message
Include the dc in the user name when connecting to ldap to change password.
Handle non-responsive LDAP referrals without killing the script, but still require the main LDAP to be up.
Add cgiPrefix to the template variables.
Add a few more debugging messages to LDAPweb to help find timeout issues
Fix problem with failing authentication for creating new accounts. (Bug #3725)
minor change to help nick test irccat
Enable debugging for LDAPweb.
Update properties usage to be correct, use proper LDAP URL, move template function higher up to prevent prototyped subroutine definition issues.
Further rework on ldapweb.cgi for 1.9 compatibility. Finished changes needed to have skinnable presentation for ldapweb.cgi, and reworked the organization logic to be compatible with our current method of storing the data (organization.* within metacat.properties).
Merge 1.9 changes into Head
Merge METACAT_1_8_1 to cvs head.
Replace die statement in the script
Change the behavior if the ldap server is down. Now main server is down, a html will be sent back. If it is referral, it will ignore it.
dded TLS support to the ldapweb.cgi script, cleaned up some TempToolkittemplate processing so that the results display CSS properly, and some minorformatting issues. The TLS support should probably be enabled only if theserver supports it, which can be queried with supported_extensions, but for...
hardcoded the organization as unaffiliated
The template for displaying the error is not executed when passwords are not same. Hence the user doesnt know what the error was. Fixed this.
Added new actions so that error message is not shown the first time resetPassword and changePasswords are called. Also fixed a bug where $cfg was not being passed to genericHeader.tmpl
Integrating ldapweb.cgi & create-ldap-account.pl into metacat CVS tree.