Lines of Code
[root]/Classes/Security/Authentication/Token
| Author | Changes | Lines of Code | Lines per Change |
|---|---|---|---|
| Totals | 41 (100.0%) | 912 (100.0%) | 22.2 |
| andi | 13 (31.7%) | 723 (79.3%) | 55.6 |
| robert | 11 (26.8%) | 112 (12.3%) | 10.1 |
| k-fish | 17 (41.5%) | 77 (8.4%) | 4.5 |
Removed everything in trunk after move to git.
0 lines of code changed in 3 files:
[+BUGFIX] FLOW3 (Security): Shortened some variable names in HTML (input fields with a name longer than 64 characters are ignored in default Suhosin setups), fixes #6315.
5 lines of code changed in 1 file:
[-TASK] FLOW3: Removed @version keyword from files, resolves #8835.
0 lines of code changed in 1 file:
[+FEATURE] FLOW3 (Security): The new AccountFactory now allows for convenient creation of a new account with username and password. Resolves #5846
[+BUGFIX] FLOW3 (Property): Fixed the failing tests of the Property Mapper. Also replaced a few occurrences of $objectManager->get() by $objectManager->create()
4 lines of code changed in 1 file:
[+FEATURE] FLOW3 (Object): Implemented a static object container which is automatically built. It's essentially a hardcoded version of the autowired and configured object dependencies - just a lot faster. Many tests are still missing, but the version in this commit should be mostly functional. Addresses #3740 and resolves #2123.
[!!!][~API] FLOW3 (Object): Heavily refactored the Object Manager and its tests. The most important change is the removal of the Object Factory whose create() method is now located in the Object Manager. Furthermore, the getObject() method has been renamed to get() and a few minor important API functions within the Object Manager have been modified. This commit also contains a script which allows for semi automatically migrating existing code to the new API (see ./flow3 migrate objectmanagerusage). Resolves #6562
[~TASK] FLOW3 (Configuration): The Configuration Manager and its YAML source now doesn't depend on the YAML package anymore but refers to a YAML parser class within the FLOW3 package. Resolves #6564.
5 lines of code changed in 1 file:
[~TASK] FLOW3 (Security): Removed the GrantedAuhorityInterface and replaced all uses of "Granted Authority" by "Role". Resolves #6317
3 lines of code changed in 1 file:
[~TASK] FLOW3 (Documentation): Updated the Coding Guidelines: removed inconsistent exceptions from the general class naming rules. Also added the rule that names of aspect classes must end with "Aspect". Relates to #5658
[~TASK] Global: Renamed many classes and interfaces in order to be consistent with FLOW3's naming rules. A migration script to update third-party applications will follow soon. Resolves #5658
6 lines of code changed in 1 file:
[~TASK] FLOW3 (Environment): Renamed getRawGETArguments() and getRawPOSTArguments() to getRawGetArguments() and getRawPostArguments().
5 lines of code changed in 1 file:
[+API] FLOW3 (AOP): Added the JoinPoint class to the supported API. Also added a new method "hasException()" to the JoinPoint implementation. Resolves #5480
[~TASK] FLOW3 (Cache): Set the log level of flushCachesByTag to DEBUG
[~FEATURE] FLOW3 (Security): Implemented a logging aspect which currently logs all relevant actions of the authentication mechanism. The advices are currently active regardless of the configured logging threshold. Addresses #5481
[~TASK] FLOW3 (Security): Removed getSecurityContext() from the Authentication Manager Interface ? it was not used anywhere.
[~CONFIGURATION] FLOW3 (Security): Removed the requestPatterns configuration from the default security configuration. This configuration was only an example and got in the way if one wanted to reuse the DefaultProvider configuration for other login controllers.
[~TASK] Fluid (ViewHelpers): Corrected some inline documentation in the FormViewHelper
0 lines of code changed in 1 file:
[~BUGFIX] FLOW3 (Object): The object serializer now handles persitence objects correctly.
[~TASK] FLOW3 (AOP): Removed the FLOW3 Security subpackage from the AOP blacklist, to be able to store roles in the content repository.
[~BUGFIX] FLOW3 (Core): Changed the initialization order to initialize the persistence framework early engough for the new session scope.
[~BUGFIX] Testing: Changed the framewor initialization order to initialize the persistence framework early engough for the new session scope.
[+FEATURE] Party: Added a basic account model.
[+FEATURE] FLOW3 (Security): Added a new authentication provider and token that uses account objects for authentication.
[-FEATURE] FLOW3 (Security): Removed the RSA authentication mechanism for now.
[~CONFIGURATION] FLOW3: Changed the policy configuration according to the new syntax.
50 lines of code changed in 1 file:
* [~TASK] FLOW3 (Security): The security framework now uses the new session scope for its session data.
* [~TASK] FLOW3 (Security): Fixed some doc comments.
20 lines of code changed in 2 files:
[+TASK] FLOW3: Removed file level docblocks and @package/@subpackage annotations.
[+TASK] Fluid: Removed file level docblocks and @package/@subpackage annotations.
[+TASK] Kickstart: Removed file level docblocks and @package/@subpackage annotations.
[+TASK] PHP6: Removed file level docblocks and @package/@subpackage annotations.
[+TASK] PHPUnit: Removed file level docblocks and @package/@subpackage annotations.
[+TASK] Testing: Removed file level docblocks and @package/@subpackage annotations.
[+TASK] Welcome: Removed file level docblocks and @package/@subpackage annotations.
[+TASK] YAML: Removed file level docblocks and @package/@subpackage annotations.
0 lines of code changed in 2 files:
[TASK] FLOW3: moved from @internal to @api, resolves #3883
0 lines of code changed in 2 files:
Added svn:keywords where missing...
2 lines of code changed in 1 file:
* FLOW3: Marked all methods as @internal except those which are considered part of the official API. Resolves #1280
* TYPO3CR: Fixed two tests of the Storage\PDO\Search testcase.
36 lines of code changed in 2 files:
FLOW3(Security):
* Refactored almost all unit tests. Now the TestPackage is not needed anymore for the security tests.
* Cleaned up the interfaces, as some method aren't needed anymore with the new tests.
Testing:
* fixed a bug in the BaseTestcase, that sometimes crashed class loading.
4 lines of code changed in 2 files:
FLOW3 (Security):
* made parallel authentication mechanisms possible. Now you can login to typo3 with a different mechanism than to flow3
* credentials are no longer stored in the session.
* the RSA keys are now stored in a cache with a TTL of 30.
* reinjectDependencies is now used when authentication tokens are retrieved from the session.
* Exception/Handler is not needed.
* the authentication tokens hold an authentication status now. Look at the TokenInterface for possible values.
* added a getTokensOfType() method to the security context.
* authentication entry points work now.
* Adjusted the security configuration in FLOW3.yaml (you have to enable security to test the new features)
* Access is now denied if no policy entry is found.
TYPO3 (Backend):
* renamed the property $viewObjectName to $defaultViewObjectName, according to latest changes.
132 lines of code changed in 2 files:
FLOW3 (Security): Implemented the RSA based Login-Controller. You can call it under: http://yourhost/flow3/login
303 lines of code changed in 1 file:
!!! Globally renamed all class files to the new shorter version. Resolves #2524
FLOW3: (Resource) Adapted the class loader and other related parts of FLOW3 to the new class filename convention
FLOW3: Moved the FLOW3 bootstrap into the F3\FLOW3 namepace
25 lines of code changed in 1 file:
* FLOW3: (MVC) Renamed the setSettings() method of the AbstractController to injectSettings() in order to use the new settings injection feature
* FLOW3: (MVC) Moved the Controller Interface to the Controller namespace. Addresses #2515
* FLOW3: (Utility) Removed the REQUEST_METHOD_* constants in the Environment class
* FLOW3: (Utility) Renamed the getPOSTArguments and getGETArguments methods to getRawPOSTArguments and getRawGETArguments respectively
* FLOW3: (Utility) Introduced a new method getRawServerEnvironment to the Environment API
1 lines of code changed in 1 file:
FLOW3:
* fixed license name in @license annotation, fixes #2454
1 lines of code changed in 1 file:
FLOW3:
* changed license to LGPL v3 or later
14 lines of code changed in 1 file:
!!! 5.3.0alpha3 namespaces refactoring:
* changed namespace delimiter from :: to \
* all class references in namespaced code prepended by \
PHPUnit:
* adapted mock object handling to the new namespaces syntax
FLOW3:
* PropertyReflection now uses setAccessible() instead of array cast to access protected properties
PHPCR:
* added a missing interface already used for type hints
26 lines of code changed in 1 file:
* FLOW3: (Component) Renamed "component" to "object" - everywhere. That means we now have an Object Manager instead of a Component Manager, an Object Factory etc. Resolves #2119
Globally adjusted all code for the above change.
7 lines of code changed in 1 file:
FLOW3 (Security): Fixed a DocComment.
1 lines of code changed in 1 file:
This temporary fixes #1948 until we have a proper session scope. For now it only fixes the problem for UsernamePassword tokens (as this is the only token type we have at the moment)
1 lines of code changed in 1 file:
* FLOW3: (Component) Renamed the method Component::Factory->getComponent() to Component::Factory->create(). Resolves #1846
* FLOW3: (Component) Component::Factory->create() will now throw an exception on trying to create a component of scope != prototype
* FLOW3: (Component) The Component::Manager->getComponent() method can still be used as a last resort to retrieve components of any scope. However dependency injection for singletons and the component factory for prototype should always be the first choice!
Refactored all packages of the TYPO3 distribution to match the above changes.
Note: The test "F3::TYPO3CR::NodeTest::setPropertySetsValue" currently fails on my machine with the following message:
Error in setPropertySetsValue with data set #34 Detail
TYPO3CR/Classes/F3_TYPO3CR_Node.php:577
Unable to convert value of type string to Name: Namespace prefix is invalid
25 lines of code changed in 1 file:
FLOW3 (Validation): Fixed the integer validator. Now it handles strings correctly
FLOW3 (Security): Implemented the missing decision and ACL classes. No we can authenticate a user and authorize methods over AOP!
31 lines of code changed in 1 file:
The biggest part of the security framework ist finished now:
FLOW3 (Security):
* Implemented the central security aspect
* Refactored the authentication manager
* Implemented the policy enforcement interceptor
* Implemented the access decision voter manager
11 lines of code changed in 1 file:
Set svn:keywords property to Id on all PHP files.
0 lines of code changed in 1 file:
!!! Major change, will break existing code.
Part 3 - Packages
FLOW3, most other packages:
* added namespaces to the code of FLOW3 and all packages in the current TYPO3v5 distribution.
PHPUnit:
* some changes to make PHPUnit (more) namespace-compatible.
Some notes:
* Documentation updates will follow
* you might need to change your class names when adapting namespaces to avoid using "Class", "Empty", "Default", ...
* expect FLOW3CGL and/or PHPCodeSniffer to be broken (I'll have a look)
* some parts might still be broken, especially in edge-cases where the global namespace needs to explicitly used
20 lines of code changed in 1 file:
FLOW3:
* fixed a bunch of CGL violations
* some TODO comments converted into @todo annotations
4 lines of code changed in 1 file:
Implemented the first part of the security framework.
* FLOW3 (Security): Implemented the session security context holder
* FLOW3 (Security): Implemented the security context that provides the current context based on request patterns and the configured authentication strategy
* FLOW3 (Security): Implemented a basic filter firewall that can be configured in the FLOW3 configuration file
* FLOW3 (Security): Implemented a basic security interceptor, that triggers the authentication process and can be placed in the firewall
* FLOW3 (Security): Implemented the authentication (provider) manager and a very basic username/password provider with its token
* FLOW3 (MVC): Changed some tests to use mock objects (firewall and security context holder)
* FLOW3 (Validation): Fixed a bug in the alphanumeric validator
170 lines of code changed in 1 file: