Permalink
Commits on Mar 15, 2018
  1. Merge pull request #258 from apereo/hash_ticket_for_session_id_with_salt

    adamfranco committed Mar 15, 2018
    Hash ticket for session id with salt. Fix #224, Fix #244, Fix #248.
Commits on Mar 13, 2018
  1. #224: Add configurable session-id salt when hashing the ticket.

    adamfranco committed Mar 13, 2018
    As suggested in #224, a client-configurable salt will allow a hashed
    ticket to have increased unique data, helping to make ensure that the
    session id is hard to guess even if the CAS server uses short tickets.
    
    This includes the contents of PR #257.
  2. #224, #244, #248: Hash ticket strings to generate valid-length sessi…

    adamfranco committed Mar 13, 2018
    …on-ids.
    
    By using a sha256 hash of the ticket, the session-id is guarenteed to be
    64 bytes long no matter how short or long the ticket provided by the CAS
    server is.
    
    This fixes #248, fixes #244, and partially addresses the comments in #224 with the
    exception of an extra salt or random-seed when generating the hash.
Commits on Dec 24, 2017
  1. Fix bad condition (#252)

    Brice Vercoustre authored and jfritschi committed Dec 24, 2017
    Inverting `string OR pdo object` condition should be `!string AND !object`
Commits on Oct 3, 2017
  1. Remove fallback for __autoload (#247)

    marinaglancy authored and jfritschi committed Oct 3, 2017
    spl_autoload_register is present in PHP since 5.1.2
    defining function __autoload causes fatal error in PHP 7.2
Commits on Aug 4, 2017
Commits on Jul 18, 2017
  1. Update README.md

    jfritschi committed Jul 18, 2017
    Change readme to apereo
Commits on Apr 10, 2017
Commits on Apr 8, 2017
  1. Fixed potential auth bypass issue on old/insecure CAS servers (#229)

    gboddin authored and jfritschi committed Apr 8, 2017
    * Fixed potential auth bypass issue on old/insecure CAS servers (apereo/phpCAS#228)
Commits on Apr 2, 2017
Commits on Mar 12, 2017
Commits on Feb 25, 2017
Commits on Jan 6, 2017
  1. Correction of documentation for the URL validations and proxy URL val…

    erozqba authored and jfritschi committed Jan 6, 2017
    …idations. (#216)
    
    Ref: issue #215
Commits on Sep 11, 2016
Commits on Jul 10, 2016
  1. #203 - Fix errors in source/CAS.php when run under phpdbg (#204)

    MasonM authored and jfritschi committed Jul 10, 2016
    This code assumed any SAPI other than "cli" is a web request, which is not the
    case for phpdbg, the debugger that ships with PHP 5.6. Since phpdbg is
    implemented as a SAPI module, the php_sapi_name() function will return "phpdbg".
    If you haven't set up the $_SERVER superglobal beforehand, this code would
    trigger "Undefined index" errors when run under phpdbg.
    
    I opted to fix this by removing the php_sapi_name() check, as it's not
    necessary. Just checking the superglobals with isset() is sufficient.
Commits on Jul 5, 2016
  1. Add a setter for the cas client (#206)

    greg0ire authored and jfritschi committed Jul 5, 2016
    Currently, it is very hard to unit test a class that uses phpCAS with
    the recommended way, because you cannot replace the cas client with a
    mock that would allow to record how it is called.
Commits on Jun 11, 2016
  1. Merge pull request #201 from greg0ire/ignore_composer

    jfritschi committed Jun 11, 2016
    Ignore Composer-related files and directories
Commits on Jun 7, 2016
  1. Ignore Composer-related files and directories

    greg0ire committed Jun 7, 2016
    The vendors directory should never be under version control, and for
    libraries, the lock file should not either.
Commits on Jun 3, 2016
  1. Merge pull request #197 from Baldinof/message_for_authentication_exce…

    jfritschi committed Jun 3, 2016
    …ption
    
    Add a message in CAS_AuthenticationException
Commits on Jun 2, 2016
Commits on May 5, 2016
  1. Merge pull request #192 from ikari7789/fix-translations

    jfritschi committed May 5, 2016
    Fixed translations for Greek and Japanese.
Commits on May 4, 2016
Commits on Jan 9, 2016
Commits on Dec 13, 2015
  1. #172 fix CA file test

    jfritschi committed Dec 13, 2015
  2. Revert "#172 fix test cases"

    jfritschi committed Dec 13, 2015
    This reverts commit f74da64.
  3. #172 fix test cases

    jfritschi committed Dec 13, 2015