ntopng

vrr/ntopng

mirror of https://github.com/ntop/ntopng.git synced 2026-04-29 07:29:32 +00:00

Author	SHA1	Message	Date
Luca Deri	66f720787a	Delete user sessions after password change	2023-08-25 12:39:45 +02:00
Simone Mainardi	38925bac6c	Fixes percent sign in password leading to lock-out Fixes #4031	2020-06-12 12:27:35 +02:00
emanuele-f	f65c618b3f	Move user group information into the session This fixes issues and inconsistencies when the same user logins from different authenticators at the same time Fixes #2212	2018-12-11 18:44:34 +01:00
emanuele-f	8a7ead5924	Harden HTTP session checks and remove user cookie	2018-08-21 18:16:54 +02:00
Simone Mainardi	3eeb37c3f0	Fixes invalid login page encoding	2018-07-25 18:15:04 +02:00
emanuele-f	ac07c48b7c	Force username login always being lowercase	2017-05-29 11:39:19 +02:00
emanuele-f	1c38df48c9	Unify character encoding header code	2017-05-04 17:12:06 +02:00
emanuele-f	a10d6c4f7d	Fix login issue with special characters. The special characters were URL encoded during HTTP request and saved in URL encoded form. The login used the unencoded password instead, and this resulted in a password hash mismatch which prevented user login. Now the password hash is calculated on the unencoded password.	2017-04-14 18:20:36 +02:00
Emanuele Faranda	afdfac1c9c	Lua scripts parameters validation (#970 ) * partial work * Migrate 'mode' parameters * Migrate alerts types * Fix some interface ids * Partial work * Partial work * End of work for _GET parameters * Work in progress * Add support for special parameters * Preferences validation * Fixes and improvements * Enforce interger validation	2017-02-08 12:25:35 +01:00
emanuele-f	397d525d85	Use POST requests when required	2017-01-14 20:31:01 +01:00
Luca	1b2ceac8f5	Added fixes to avoid users to be manipulated with invalid CSRF token	2017-01-12 10:10:20 -08:00
Luca	730d76b9f5	Initial import from SVN	2015-04-30 12:22:35 +02:00

12 commits