cacert
/
cacert-webdb
8
0
Fork 0
Code Issues Pull Requests 4 Projects Releases 2 Wiki Activity
The main CAcert website code. This repository started as a conversion of the CVS repository from http://www.cacert.org/cacert-cvs.tar.bz2
You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
1,320 Commits
5 Branches
2 Tags
49 MiB
PHP 76.5%
HTML 14.8%
Perl 4.3%
JavaScript 1.6%
Shell 1.5%
Other 1.2%
 
 
 
 
 
 
main
add-quality-check-script
bug-1562
bug-1561
fix/bug-1550
v2023.09.16
v2024.05.20
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '560be526c4'
${ noResults }
Go to file
Jan Dittberner 560be526c4 Fix client certificate login 
This change fixes the client certificate login for cases where duplicate
serial numbers have been issued and recorded in the emailcerts table.

Email addresses from the client certificate are used as an additional
matching parameter.

- includes/lib/general.php got a new function
  get_email_addresses_from_client_cert to create an array of email
  addresses from the environment variables set by Apache httpd
- includes/loggedin.php and www/index.php use the new function to pass
  email addresses to the get_user_id_from_cert function
- get_user_id_from_cert in includes/lib/general.php has been enhanced to
  use a JOIN over the emailcerts, root_certs and email tables. All
  parameters are escaped via mysql_real_escape_string
- SQL errors in get_user_id_from_cert are now handled
- a match from get_user_id_from_cert is only returned when there is
  exactly one row in the result set

The code and the used query have been tested with Apache 2.4.10 and PHP
5.6 from Debian Jessie and a MariaDB 10.11 in strict mode using a
container based test setup to match the current production setup as
close as possible.
 		5 months ago
CommModule Use Digest::SHA instead of removed Digest::SHA1 5 months ago
cgi-bin Changed license to GPLv2 17 years ago
includes Fix client certificate login 5 months ago
locale Remove locale/cv.c 5 months ago
pages Add missing closing a tag for link 1 year ago
scripts Add migration script for missing users DEFAULTs 1 year ago
stamp Combined fixes for 10 years ago
tmp Fix for https://bugs.cacert.org/view.php?id=896 : 14 years ago
tverify http://bugs.cacert.org/view.php?id=588 16 years ago
www Fix client certificate login 5 months ago
.gitignore Ignore files that are dynamically generated 5 months ago
LICENSE Changed license to GPLv2 17 years ago
README Fix for https://bugs.cacert.org/view.php?id=918 13 years ago

README 

LibreSSL Documentation

(c) 2005-2008 by CAcert Inc.
License: GNU-GPLv2

System Requirements:
Linux/POSIX
PHP
GetText
UFPDF - PDF generation library from http://acko.net/node/56
OpenSSL - X.509 toolkit from http://www.openssl.org/
openssl-vulnkey including blacklists for all common key sizes
GnuPG - OpenPGP toolkit from http://www.gnupg.org/
whois - whois client from http://www.linux.it/~md/software/
XEnroll - Enrollment Active-X control for IE5/6 from Microsoft (search for xenroll.cab)
CommModule - CAcert Communication Module