Version 3.114 - Tuleap 9.0 * story #9396 have project members automatically synchronized with LDAP (Deal with deleted LDAP group) Version 3.113 - Tuleap 9.0 * story #9396: Warn that project admins are not removed during daily synchronization Version 3.112 - Tuleap 9.0 * story #9396: have project members automatically synchronized with LDAP (Add new projet members during daily synchonization) Version 3.111 - Tuleap 9.0 * story #9396 have project members automatically synchronized with LDAP (Add synchronize checkbox) Version 3.110 - Tuleap 9.0 * request #9523: Ldap user confirmation login date can be reset Version 3.109 - Tuleap 8.19 * request #9445: Too many reminders sent to admins about users to be deleted Version 3.108 - Tuleap 8.19 * request #9419 It should be possible to create ldap users at XML import Version 3.107 - Tuleap 8.19 * request #9406: Missing login CSRF protection Version 3.106 - Tuleap 8.18 * request #9335 Do not inherit default trackers when importing from XML Version 3.105 - Tuleap 8.18 * request #9352: Migrated Tuleap user to LDAP one can't log in Version 3.104 - Tuleap 8.18 * request #9300: Configuration files are not properly loaded in Perl environnement Version 3.103 - Tuleap 8.17 * Duplicate LDAP binding Version 3.102 - Tuleap 8.15 * request #8972: LDAP plugin does not directly use mysql_* API anymore Version 3.101 - Tuleap 8.14 * request #8957: Authorization failed for repository enabling svn token Version 3.100 - Tuleap 8.13 * request #8918: LDAP directory bindings to a user group are kept after the ugroup removal Version 3.99 - Tuleap 8.13 * request #8949: SVN authentication with mod_perl using LDAP fails due to misconfiguration Version 3.98 - Tuleap 8.12 * request #8894: Synchronization between LDAP and Tuleap ugroups does not work Version 3.97 - Tuleap 8.12 * story #8631: Add login buttons on the login page Version 3.96 - Tuleap 8.12 * story #8816 have dedicated svnroot for plugin Version 3.95 - Tuleap 8.11 * story #8791 : be able to checkout a SVN repository Version 3.94 - Tuleap 8.10 * Handle SVN tokens using LDAP Version 3.93 - Tuleap 8.10 * story #8608: SVN service homepage display a specific message if svn tokens are allowed Version 3.92 - Tuleap 8.10 * request #8732: LDAP write does not properly create LDAP account from a new Tuleap account Version 3.91 - Tuleap 8.10 * story #8608: Remove some technical debt Version 3.90 - Tuleap 8.10 * story #8608: Define projects that can use SVN tokens Version 3.89 - Tuleap 8.10 * story #8618: SVN authentication with mod_perl is able to fallback to LDAP Version 3.88 - Tuleap 8.10 * request #8717: Improper user groups authorization verification for SVN ressources Version 3.87 - Tuleap 8.7 * request #8444: User account created from LDAP does not use generated password Version 3.86 - Tuleap 8.7 * request #7951: Mail confirmation code are not properly generated for LDAP validation email Version 3.85 - Tuleap 8.5 * request #8331: fix notice on ldap group binding whenconfig is openLDAP and $sys_ldap_server_type is not defined Version 3.84 - Tuleap 8.5 * story #8207: use Active Directory as an LDAP directory Version 3.83 - Tuleap 8.5 * request #7915 Flag gerrit user account as inactive when they are suspended from ldap Version 3.82 - Tuleap 8.4 * request #8185: Write ldap not working with codendi auth type Version 3.81 - Tuleap 8.3 * request #8135: cannot log-in with non-ldap account if ldap plugin activated Version 3.80 - Tuleap 8.3 * request #8093: User is not created in LDAP when done by site admin Version 3.79 - Tuleap 8.2 * request #8060: I should be able to use the gerrit replication feature if Tuleap use a LDAP write server Version 3.78 - Tuleap 8.1 * request #8043: Add more info on var usage in ldap.inc Version 3.77 - Tuleap 8.1 * Fix tests Version 3.76 - Tuleap 8.1 * story #7984: Fix LDAP write usage Version 3.75 - Tuleap 8.1 * story #7984: provision LDAP from Tuleap Version 3.74 - Tuleap 8.1 * request #7797: Fix persistent XSS in autocomplete forms Version 3.73 - Tuleap 8.1 * story #7886 - rename Config to ForgeConfig for Mediawiki 1.23 Version 3.72 - Tuleap 8.1 * Move sys_allow_anon in the database (story #7813: grant restricted users access to git repositories) Version 3.71 - Tuleap 7.10 * Fix mistake in ldap.inc comment Version 3.70 - Tuleap 7.10 * Fix unit tests for webdav & config & karma tests Version 3.69 - Tuleap 7.10 * Fix request #7761: Fatal error when accessing default trackers templates Version 3.68 - Tuleap 7.10 * request #7757: LDAP daily sync now search in subtrees Version 3.67 - Tuleap 7.10 * request #7744: Fix non persistent XSS and a open redirection in search modules and login form Version 3.66 - Tuleap 7.9 * request #7739: LDAP autocompletion seems broken Version 3.65 - Tuleap 7.9 * request #7718 Fix LDAP injections Version 3.64 - Tuleap 7.8 * request #7524: Threshold for ldap daily synchro Version 3.63 - Tuleap 7.8 * request #7654: Fix ldap error in codendi_daily (Contrib STMicroelectronics) Version 3.62 - Tuleap 7.8 * request #7449: Adding logging to debug ldap connexion issues Version 3.61 - Tuleap 7.7 * request #7620 - Cannot add non LDAP user to project Version 3.60 - Tuleap 7.7 * Fix request #7616: Fatal error while adding a user to the project Version 3.59 - Tuleap 7.7 * Fix master Version 3.58 - Tuleap 7.7 * request #7605: Synchronization with LDAP, not systematically done Version 3.57 - Tuleap 7.7 * fts: deleted tracker and artifacts are also deleted in elastic search Version 3.56 - Tuleap 7.6 * Refactoring: plugins should not leak into the core Version 3.55 - Tuleap 7.6 * Update to latest autoload/phpab version Version 3.54 - Tuleap 7.6 * request #7441 Notification email after LDAP daily syncro sent to project admins while user is not suspended Version 3.53 - Tuleap 7.6 * request #7251 - Send a reminder to project admins about the automatic cleanup of suspended LDAP users Version 3.52 - Tuleap 7.4 * request #7239 - LDAP/Tuleap user synchronization no longer retrieve extra attributes Regression introduced by request #7151 (commit feb42fe) Before that modification, Tuleap retrieved all LDAP default attributed. After this patch, if a site use a custom LDAP_UserSync (in /etc/tuleap/plugins/ldap/site-content/synchronize_user.txt) and rely on extra paramters for custom synchronization, the process will be broken. This commit rewrite (with test) the LDAP authentication and ensure that extra params are fetched if they are defined. Version 3.51 - Tuleap 7.3 * Follow-up request #7104: DRY on subversion repository path Version 3.50 - Tuleap 7.3 * request #7151 LDAP connector doesn't fetch eduid Version 3.49 - Tuleap 7.3 * Update autoload Version 3.48 - Tuleap 7.3 * request #6570: users that Tuleap can no-longer find on a LDAP server are automatically set to deleted Version 3.47 - Tuleap 7.2 * story #5756: search with nice interface (tasks #7102: fix facets on search page) Version 3.46 - Tuleap 7.2 * tasks #7069: cleaning-up search use - all searches have same pagination - search more is coherant for end-user Version 3.45 - Tuleap 7.2 * story #5756: search with nice interface (also story #7019) Version 3.44 - Tuleap 7.1 * request #6545: Notify project admins when ldap users are suspended. (Contrib STMicroelectronics) Version 3.43 - Tuleap 7.1 * story #6341: see maintenance & preferences pages into a single page Version 3.42 - Tuleap 7.0 * story #6455 - beautiful register and change password page Version 3.41 - Tuleap 6.12 * story #5679 - upgrade to gerrit REST API Version 3.40 - Tuleap 6.12 * story #5998 - Delegate the validation of projects to users Version 3.39 - Tuleap 6.7 * Dev: remove a bunch of explicit require_once Version 3.38 - Tuleap 6.7 * Story #5280: Integrate bootstrap to continue interface overhaul Version 3.37 - Tuleap 6.7 * Internal API: normalize Events Version 3.36 - Tuleap 6.6 * Fix fatal error when user is not LDAP but do browse a gerrit git repo Version 3.35 - Tuleap 6.6 * Modifying the login form presented by LDAP plugin Version 3.34 - Tuleap 6.6 * sla #4968: Fix XSS in search enties building Version 3.33 - Tuleap 6.4 * Update help to refer to the new documentation based on sphinx Version 3.32 - Tuleap 6.4 * update the description fields of my project through SOAP Version 3.31 - Tuleap 6.2 * Update user creation after change in core (ensure user consistency) Version 3.30 - Tuleap 6.1 * Fix art #3535 - Apache authentication fails with Active Directory Version 3.29 - Tuleap 5.13 * Development: LDAP now provides an LDAP user to all platform Version 3.28 - Tuleap 5.13 * Fix sla #3147: Do not update ldap login when project is not using svn/ldap Version 3.27 - Tuleap 5.12 * Development: SystemEvents can now be processed by application owner instead of root Version 3.26 - Tuleap 5.12 * Rename User class to PFUser to allow integration of mediawiki Version 3.25 - Tuleap 5.11 * Improve user experience with user group management (contrib STMicroelectronics) Version 3.24 - Tuleap 5.11 * Forbid login when user as an LDAP id but LDAP authentication failed Version 3.23 - Tuleap 5.11 * Development: add new hook to provide LDAP uid to other component of the application Version 3.22 - Tuleap 5.7 * Fix art #1679: Not redirected to Personal Page after log in from Tuleap Home page Version 3.21 - Tuleap 5.6 * User groups can be bound to a group of another project (Contrib STMicroelectronics) Version 3.20 - Tuleap 5.6 * Improve compatibility with Active Directory: make autocomplete on user names works (contrib Orange). Version 3.19 - Tuleap 5.5 * LDAP plugin now includes bind_dn/password in Apache configuration if needed * Normalize to lowercase Version 3.18 - Tuleap 5.5 * Various permissions cleanups and POSIX compatibility for shell scripts (Contrib Raphaƫl Hertzog) Version 3.17 - Tuleap 5.4 * Synchronize binded ldap ugroup (Contrib STMicroelectronics) Version 3.16 - Tuleap 5.3 * Fix notice Version 3.15 - Tuleap 5.2 * Fix the fix made for version 3.14 (typo in method name). * Makes non anonymous bind work with Python connector (used in viewvc). Version 3.14 - Tuleap 5.2 * Fix first bind done to check connexion validity. If anonymous bind is disabled, all bind should be authenticated otherwise server can disable the connexion. Thanks to Marc Dumais for investigation and report. Version 3.13 - Tuleap 5.0 * Fix unit tests Version 3.12 - Tuleap 4.0.27 * Add 2 new variables for fine grain LDAP plugin behaviour: * $sys_ldap_user_management: Enable usage of LDAP for people management. For instance autocompletion on user list, automatic creation of users not already referenced in the forge. * $sys_ldap_grp_enabled: This allows to mirror a LDAP group defined in LDAP directory within the forge. * Note: for backward compatibility reasons, if the variables are not defined the default behaviour is to enable the corresponding feature. Version 3.11 (Tuleap 4.0.26) * Fix Security issue (Contrib STMicroelectronics) Version 3.10 (Tuleap 4.0.26) * Can now disable/enable LDAP daily synchronization in ldap.inc * Add the Orange implementation of LDAP_UserSync Version 3.9 (Tuleap 4.0.25) * Checkbox checked by default when importing an LDAP group (contrib STMicroelectronics) Version 3.8 * Update synchro example to suspend users upon given criterion. Version 3.7 (Tuleap 4.0.24) * Use PHP5 constructor & fix method signature Version 3.6 (Tuleap 4.0.23) == Bug Fix == * backlog #185: Propagate LDAP login changes in SVNAccessFile Version 3.5 (Tuleap 4.0.22) == Bug Fix == * Add CSRF countermeasures * Fix LDAP options settings (for better compat with LDAPv3 directories, hence AD) Version 3.4 (Codendi_ST 4.0.17) What Changed? ============ ** Make Codendi look for people in several LDAP branches, according to the config ** Add the autocompletion for external users