5f89d48036
Remove leftover header call
2024-05-05 21:22:16 +02:00
560be526c4
Fix client certificate login
...
This change fixes the client certificate login for cases where duplicate
serial numbers have been issued and recorded in the emailcerts table.
Email addresses from the client certificate are used as an additional
matching parameter.
- includes/lib/general.php got a new function
get_email_addresses_from_client_cert to create an array of email
addresses from the environment variables set by Apache httpd
- includes/loggedin.php and www/index.php use the new function to pass
email addresses to the get_user_id_from_cert function
- get_user_id_from_cert in includes/lib/general.php has been enhanced to
use a JOIN over the emailcerts, root_certs and email tables. All
parameters are escaped via mysql_real_escape_string
- SQL errors in get_user_id_from_cert are now handled
- a match from get_user_id_from_cert is only returned when there is
exactly one row in the result set
The code and the used query have been tested with Apache 2.4.10 and PHP
5.6 from Debian Jessie and a MariaDB 10.11 in strict mode using a
container based test setup to match the current production setup as
close as possible.
2024-05-05 20:08:53 +02:00
e2f9138035
Merge pull request 'Ignore files that are dynamically generated' ( !12 ) from update-gitignore into main
...
Reviewed-on: #12
Reviewed-by: Dirk Astrath <dirk@cacert.org>
2024-05-04 13:42:35 +00:00
443467c435
Merge pull request 'Add class 3 root-certificates signed in 2021' ( !13 ) from add-2021-class3-certificate-files into main
...
Reviewed-on: #13
Reviewed-by: Dirk Astrath <dirk@cacert.org>
2024-05-04 13:41:26 +00:00
6e23a0bd87
Merge pull request 'Use Digest::SHA instead of removed Digest::SHA1' ( !14 ) from fix-sha-digest-import into main
...
Reviewed-on: #14
Reviewed-by: Dirk Astrath <dirk@cacert.org>
2024-05-04 13:39:03 +00:00
f14c9ad991
Merge pull request 'Remove locale/cv.c' ( !15 ) from remove-unused-c-code into main
...
Reviewed-on: #15
Reviewed-by: Dirk Astrath <dirk@cacert.org>
2024-05-04 13:37:24 +00:00
6d2da10fa2
Remove locale/cv.c
...
This change removes locale/cv.c. It does not seem to be used anywhere in
the current system. None of the current critical team members knows
about its history. It might have been replaced by
locale/escape_special_chars.php long ago.
2024-05-04 10:10:02 +02:00
5d9c8689cc
Use Digest::SHA instead of removed Digest::SHA1
...
This fixes the Digest import in server.pl. Digest::SHA1 has long been
replaced by the more generic Digest::SHA.
2024-05-03 20:00:23 +02:00
6e3549c21a
Add class 3 certificates signed in 2021
...
These files have been referenced in pages/index/3.php since commit
bf7dcbd0
2024-05-03 19:58:42 +02:00
03b6d7c4bf
Ignore files that are dynamically generated
2024-05-03 19:54:16 +02:00
0dc3bd7626
Merge pull request 'Redirect to code.cacert.org for source code' ( !11 ) from feature/replace-static-tarballs-with-code-reference into main
...
Reviewed-on: #11
Reviewed-by: Dirk Astrath <dirk@cacert.org>
2023-09-17 09:18:01 +00:00
bf2ab338d1
Merge pull request 'Remove opinionated comments on hash algorithms' ( !10 ) from bugfix/remove-opinionated-hash-algorithm-descriptions into main
...
Reviewed-on: #10
2023-09-17 09:12:18 +00:00
62dc71fb4d
Redirect to code.cacert.org for source code
2023-09-17 11:11:03 +02:00
f6831c82af
Remove opinionated comments on hash algorithms
2023-09-17 11:04:02 +02:00
efb9f4b461
Merge pull request 'Add missing closing a tag for link' ( #9 ) from add-closing-tag-for-csr-app-link into main
...
Reviewed-on: #9
2023-09-17 08:59:39 +00:00
ccd5273c7b
Add missing closing a tag for link
2023-09-17 10:49:48 +02:00
37fd9a3127
Merge pull request 'bugfix/1551-link-to-csr-app' ( #8 ) from bugfix/1551-link-to-csr-app into main
...
Reviewed-on: #8
Reviewed-by: Dirk Astrath <dirk@cacert.org>
2023-09-17 08:42:03 +00:00
3ecb1a6d1a
Enable expert options by default
...
addresses https://bugs.cacert.org/view.php?id=1551
2023-09-16 21:28:23 +02:00
91f7e11751
Add link to new CSR generator application
...
addresses https://bugs.cacert.org/view.php?id=1551
2023-09-16 21:27:10 +02:00
53d4d108ce
Merge pull request 'Remove old sponsoring links' ( #7 ) from bugfix/1423-remove-tunix-and-oan-links into main
...
Reviewed-on: #7
Reviewed-by: Dirk Astrath <dirk@cacert.org>
2023-09-16 17:12:59 +00:00
3e25be237d
Remove old sponsoring links
...
fixes https://bugs.cacert.org/view.php?id=1423
2023-09-16 16:23:16 +02:00
8521ac0719
Merge pull request 'Use integer values for type when inserting into ordomaincerts' ( #3 ) from bugfix/1548-proper-type-for-orgdomain-insert into main
...
Reviewed-on: #3
2023-07-17 16:46:13 +00:00
ae4f01bcbe
Merge branch 'main' into bugfix/1548-proper-type-for-orgdomain-insert
2023-07-16 20:27:16 +00:00
c9ab54b30a
Merge pull request 'Add migration script for missing users DEFAULTs' ( #4 ) from bugfix/1549-add-missing-defaults-on-users-table into main
...
Reviewed-on: #4
Applied in prod by @dirk
2023-07-16 20:26:01 +00:00
10540621a8
Add migration script for missing users DEFAULTs
...
This commit adds a migration script to add missing DEFAULT values on the
users table. INSERTs into the users table fail without these DEFAULTs on
MariaDB in strict mode.
2023-07-14 18:18:49 +02:00
bdb30f8898
Use integer values for type when inserting into ordomaincerts
...
MySQL tolerated INSERTs of an empty string in the type column of the
ordomaincerts table. This commit uses an integer value of 0 as default
instead to ensure that MariaDB with strict settings accepts the INSERT
too.
2023-07-14 18:06:10 +02:00
2884caf1a5
Merge pull request 'Fix l10n handling on Debian 11' ( #1 ) from fix-l10n-bug-1542 into master
...
Reviewed-on: #1
2022-07-07 17:02:14 +00:00
687497c82f
Fix l10n handling on Debian 11
...
Fixes bug #1542
2022-07-07 17:56:50 +02:00
9140217aa7
Change outgoing mail hostname to ping.cacert.org
...
Fixes bug #1541
2022-07-07 17:07:55 +02:00
bf7dcbd080
Bug 1440
2021-07-04 18:51:27 +00:00
Wytze van der Raay
dadc7dea1e
Add scripts for mass info mailing on Sep 6 & 7, 2019.
2019-09-07 13:24:59 +00:00
Wytze van der Raay
9240496af8
Fixes for https://bugs.cacert.org/view.php?id=1305 :
...
CAcert Class1 root certificate needs to be reissued with
an updated CDP and a SHA-based signature.
See the message thread preserved in
https://lists.cacert.org/wws/arc/cacert-systemlog/2016-03/
for more information on the re-signed root certificates
installed and enabled by this commit.
2019-04-10 09:39:33 +00:00
Wytze van der Raay
21ffacf9f2
Fixes for https://bugs.cacert.org/view.php?id=1305 :
...
CAcert Class1 root certificate needs to be reissued with
an updated CDP and a SHA-based signature.
See the message thread preserved in
https://lists.cacert.org/wws/arc/cacert-systemlog/2016-03/
for more information on the re-signed root certificates
installed and enabled by this commit.
2019-04-10 09:37:24 +00:00
Wytze van der Raay
62a2d72a07
Emergency fix for https://bugs.cacert.org/view.php?id=1459
...
"e-mail verification fails for many addresses since upgrade from PHP 5.5 to PHP 5.6"
2019-02-23 08:28:50 +00:00
Wytze van der Raay
f6b81bfed9
Fix for https://bugs.cacert.org/view.php?id=1430
2019-02-14 08:19:33 +00:00
Wytze van der Raay
7757afc66d
Switch to xz compression (instead of bz2) to reduce the size of the huge CommModule logfiles.
2018-09-06 10:25:38 +00:00
Wytze van der Raay
217611ad71
Change FILE_OWNER to pootle in order to match the updated translations.cacert.org server.
2018-09-06 10:22:12 +00:00
Wytze van der Raay
cf3d1470a2
Add mailing scripts for ATE at Nykobing F, Denmark in September 2015.
2015-08-29 13:12:32 +00:00
Wytze van der Raay
1f7b668f1b
Fix for https://bugs.cacert.org/view.php?id=1389
...
Wrong encoding for mails sent with function sendmail()
2015-08-28 15:40:09 +00:00
Wytze van der Raay
c8b4a22f25
Signer part of fix for https://bugs.cacert.org/view.php?id=1392
...
Issue of certificates to arbitrary domains.
2015-07-29 10:07:18 +00:00
Wytze van der Raay
9464b4e07a
Additional patch for https://bugs.cacert.org/view.php?id=1392
...
Issue of certificates to arbitrary domains.
2015-07-27 07:21:52 +00:00
Wytze van der Raay
edae6c8e40
Fix for https://bugs.cacert.org/view.php?id=1392
...
Issue of certificates to arbitrary domains
2015-07-25 14:51:01 +00:00
Wytze van der Raay
0fc491d308
Add mailing scripts for ATE at FrOsCon, Sankt Augustin, Germany in August 2015.
2015-07-07 13:56:41 +00:00
Wytze van der Raay
40322cf67d
Add mailing script for ATE in Dresden, Germany.
2015-04-28 14:22:46 +00:00
Wytze van der Raay
669bb34002
Add mailing script for ATE in Bremen, Germany.
2015-04-21 10:40:42 +00:00
Wytze van der Raay
44a3943358
Fix for https://bugs.cacert.org/view.php?id=1341
...
"Rate limit for login attempts"
2015-03-13 09:02:26 +00:00
Wytze van der Raay
d01b5efe5f
Fix syntax problems before executing these two mailing scripts.
2015-02-21 15:03:04 +00:00
Wytze van der Raay
9c95fb7987
Add two scripts for mailing to members who have agreed to the CCA when
...
the wrong document was online for a short period at the beginning 2015.
2015-02-21 14:06:54 +00:00
Wytze van der Raay
d0132571dc
Fixes for https://bugs.cacert.org/view.php?id=597
...
"email notification for revoked certificates"
and for https://bugs.cacert.org/view.php?id=773
"No confirmation of revocation of server certificate"
2015-02-13 14:08:22 +00:00
Wytze van der Raay
912a5fb6bd
Add new scripts for mass mailings permitted by CAcert arbitration.
2015-01-21 11:14:27 +00:00