Jan Dittberner
c61f0c4519
Merge branch 'main' into use-https-for-verification-links
4 months ago
Jan Dittberner
0f75bdcdac
Use https links instead of http
5 months ago
Jan Dittberner
9a672e9bf9
Improve client certificate issuing
...
- add more comprehensive message when a user does not select an email address or the SSO flag
- fix missing value for coll_found in emailcerts INSERT query
- handle database errors when the emailcerts INSERT query fails
5 months ago
Jan Dittberner
bdb30f8898
Use integer values for type when inserting into ordomaincerts
...
MySQL tolerated INSERTs of an empty string in the type column of the
ordomaincerts table. This commit uses an integer value of 0 as default
instead to ensure that MariaDB with strict settings accepts the INSERT
too.
1 year ago
Wytze van der Raay
cf5a6ce0a3
Fix for https://bugs.cacert.org/view.php?id=790
...
"Creating organisation client certs by pasted CSR"
10 years ago
Wytze van der Raay
add8566161
Fix for https://bugs.cacert.org/view.php?id=28
...
"Wrong language for ''you've been assured'' & ''[CAcert.org] Client Certificate'' emails"
10 years ago
Wytze van der Raay
4f70392a23
Fix for https://bugs.cacert.org/view.php?id=1273
...
"Replace all backtick operators with calls to runCommand() or shell_exec()"
10 years ago
Mendel Mobach
8be54e45e9
Fix for https://bugs.cacert.org/view.php?id=1339
10 years ago
Wytze van der Raay
924e6b0337
Intermediate patch for https://bugs.cacert.org/view.php?id=807
...
"CAcert ignores signature algorithm from csr".
This patch introduces the UI for our members to choose which signature
algorithm they want their certificates signed with. Among the choices
are SHA-256, SHA-384 and SHA-512. Further choices may be included as our
signer and web frontend permit.
10 years ago
Wytze van der Raay
ccc2a6f534
Combined fixes for
...
- https://bugs.cacert.org/view.php?id=413
"Add a web page indicating the certificate request is still pending"
- https://bugs.cacert.org/view.php?id=1138
"Implement to log the SE activity"
- https://bugs.cacert.org/view.php?id=1221
"Inconsistency in Assurance Management"
10 years ago
Wytze van der Raay
14aafe2212
Fix for https://bugs.cacert.org/view.php?id=1275
...
"Missing quotes around"masteracc" array index"
10 years ago
Wytze van der Raay
b740a14b10
Fix for https://bugs.cacert.org/view.php?id=372
...
"Renewing certificates fails to update links between domains and the certificate
properly which causes issues"
10 years ago
Mendel Mobach
1112d76dd5
fix for https://bugs.cacert.org/view.php?id=1272
...
"Arbitrary Code Execution via SQL injection on certain database fields"
11 years ago
Mendel Mobach
ea8c675168
fix for https://bugs.cacert.org/view.php?id=1266
...
"Second-order SQL injection in Certificate-related queries"
11 years ago
Wytze van der Raay
eff4f484ff
Fix for https://bugs.cacert.org/view.php?id=448
...
"when revoking a certificate, confusing info is given to the user"
11 years ago
Wytze van der Raay
1b49547d06
Fix for https://bugs.cacert.org/view.php?id=440
...
"Problem with subjectAltName"
11 years ago
Wytze van der Raay
0d230706fc
Fix for https://bugs.cacert.org/view.php?id=1195
...
"Take out change ability on pages/account/6.php"
11 years ago
Wytze van der Raay
3b79d4bd1b
Fix for https://bugs.cacert.org/view.php?id=1236
...
"Security questions rejected invalid on adding middle name"
11 years ago
Wytze van der Raay
3ac5042e96
Fix for https://bugs.cacert.org/view.php?id=1010
...
"Reorder the view on organisation certificates"
11 years ago
Wytze van der Raay
fc979343e1
Fix for https://bugs.cacert.org/view.php?id=569
...
"output order when removing email address"
11 years ago
Wytze van der Raay
3dfac78f84
Jumbo patch for the following issues:
...
https://bugs.cacert.org/view.php?id=893
Extend Delete account feature for support
https://bugs.cacert.org/view.php?id=1123
Add the Check CCA acception to all certificate creation processes
https://bugs.cacert.org/view.php?id=1136
Extend SE console with the functionality to revoke all user certificates of an user account
https://bugs.cacert.org/view.php?id=1137
Record the CCA acception for entering an assurance
https://bugs.cacert.org/view.php?id=1177
Combine wot.inc.php, notary.inc.php and temp-function.php
11 years ago
root
47d3b2b0a2
Fix for http://bugs.cacert.org/view.php?id=782
...
Add "notes" field to certificate information.
11 years ago
Wytze van der Raay
e870b86839
Improved fix for https://bugs.cacert.org/view.php?id=922
...
CAcert application code problem causing missing "certificate about to expire messages"
11 years ago
Wytze van der Raay
291f6cb1d4
Fix for https://bugs.cacert.org/view.php?id=964
...
"VBscript, Weak Keys script 4.php, 17.php to combine / select box key
size and lower limit to 2048" (Codename: Blackjack)
12 years ago
Wytze van der Raay
bd2f3898b4
Backing out the changes made earlier today for:
...
Fix for https://bugs.cacert.org/view.php?id=922
"CAcert application code problem causing missing 'certificate about to expire'
messages"
since that new code is locking up the mysql server.
12 years ago
Wytze van der Raay
27236c1388
Fix for https://bugs.cacert.org/view.php?id=860
...
"someone accessed your password and secret questions page, plz change pwd translation mixed and garbled, text is tanslated in TL"
12 years ago
Wytze van der Raay
39e859c96c
Fix for https://bugs.cacert.org/view.php?id=922
...
"CAcert application code problem causing missing 'certificate about to expire' messages"
12 years ago
Wytze van der Raay
316ef65915
Fix for https://bugs.cacert.org/view.php?id=978
...
"Invalid SPKAC requests are not properly validated"
12 years ago
Wytze van der Raay
ccad5d5e16
Fix for https://bugs.cacert.org/view.php?id=981
...
New layout of view for Organisation Administrators in account/id35
12 years ago
Wytze van der Raay
1d69ee1289
Fix for https://bugs.cacert.org/view.php?id=789
...
Editing domain for organisations does not work.
12 years ago
Wytze van der Raay
46a36a95e4
Fix for https://bugs.cacert.org/view.php?id=967
...
Give an OA the opportuntiy to check if a designated Organisation Admininistrator
is a CAcert assurer.
12 years ago
root
2679d75dfc
Fix for https://bugs.cacert.org/view.php?id=985
...
"Move from translingo to pootle"
13 years ago
Wytze van der Raay
0161d32e3d
Fix for https://bugs.cacert.org/view.php?id=966 :
...
Delete Admin for [organization] deletes admin even though cancel button
is pressed.
13 years ago
Wytze van der Raay
3d4f9beb37
Fix for https://bugs.cacert.org/view.php?id=953 (After change of
...
password change on account.php?id=14 does not meet requirements wrong redirect)
13 years ago
Wytze van der Raay
8571e6f0a9
Fix for https://bugs.cacert.org/view.php?id=918
...
(detection and prevention of weak keys for CAcert-issued certificates)
13 years ago
Philipp Dunkel
e89b61e045
http://bugs.cacert.org/view.php?id=817
15 years ago
Philipp Dunkel
5b2687358b
Text improvement due to support request
15 years ago
Philipp Dunkel
414ea03c2c
Bug in the doubleval() function that only affected the production system
15 years ago
Philipp Dunkel
45a79bce52
Prevented wrong root certificate selection due to session problem
15 years ago
Philipp Dunkel
20a89f4232
Removed old code
15 years ago
Philipp Dunkel
50b7f0283f
Refactored certificate issueing to use the new generatecertpath function
15 years ago
Philipp Dunkel
4046e845a8
http://bugs.cacert.org/view.php?id=781
15 years ago
Philipp Dunkel
a73302888f
http://bugs.cacert.org/view.php?id=608
15 years ago
Philipp Dunkel
5e2319f7b6
Improved register_globals handling
15 years ago
Philipp Dunkel
19b6f8692b
Added NullByte Prevention
15 years ago
Philipp Dunkel
9b70628acc
Tagged Text
16 years ago
Philipp Dunkel
f522b17554
Improved server certificate renewal. Another bug is still there.
16 years ago
root
c0fa2d9054
https://bugs.cacert.org/view.php?id=215
16 years ago
root
c7e24e56f7
Fixed a hole
...
Added OCSP renewal support
16 years ago
root
365e014d14
Cleanup of CSRs
...
Standardisation of temp names
16 years ago