[catagits/Catalyst-Authentication-Store-LDAP.git] / Changes

1.017
  - Minor POD spelling, formatting and link fixes

1.016 11 Februrary 2016
  - Document how to limit the attributes returned from the LDAP search
  - Add persist_in_session config option to allow storing of user and its
    roles in the session without hitting the LDAP store on each request
  - fix use_roles enabled if explicitly disabled

1.015 20 February 2015
  - Escape special characters in user/role names
  - Use the stored user credentials to look up roles
  - Split credential checking into a separate method from generic binding

1.014 26 April 2013
  - Don't fall back to unauthenticated bind when authenticating

1.013  9 January 2013
  - fix for https://rt.cpan.org/Ticket/Display.html?id=81908 security hole.

1.012  5 October 2010
  - add methods conforming to the Catalyst::Authentication::User API
    as required here:
    http://search.cpan.org/dist/Catalyst-Plugin-Authentication/lib/Catalyst/Plugin/Authentication/Internals.pod#USER_METHODS
    Nudging provided via RT https://rt.cpan.org/Ticket/Display.html?id=60793
  - add documentation for Active Directory at suggestion of Adam Wohld
  - Make ->can work for AUTOLOADED $user methods

1.011  7 July 2010
  - fix t/05-user_attributes.t to skip correct number of tests if
    Catalyst::Model::LDAP is not installed.

1.010  6 July 2010
  - Make AUTOLOAD method work for ->dn by generically calling has_attribute
    which has a special case for it.
  - Unify the handling of the ->username method between AUTOLOAD and
    has_attribute by special casing it more generically in has_attribute.
    Both RT#57610, patch and tests by Jason Fried

1.009  15 May 2010
   - Fix pod for get_user() and from_session() in Backend.pm, adding
     the missing $c param. Pass $c in from_session() through to get_user().
     Reported in https://rt.cpan.org/Ticket/Display.html?id=56983 with
     patch from Bjørn-Olav Strand.

1.008  02 April 2010
   - Allow for multiple uid values on a User object. See RT
     https://rt.cpan.org/Ticket/Display.html?id=51505
     and patch from Andrew Kirkpatrick.

1.007  19 Mar 2010
   - Store the user password for the ldap_connection method in an inside
     out hash rather than a closure so that the user object can be serialized
     with Storable as people are putting them in the session (RT#53279)

1.006  11 Dec 2009
   - Pass $c along to find_user method so overridden user_class users can
     get at models (or whatever crazy things they might do) (gphat)
   - Add an ldap_connection method to the user class, which will return
     an LDAP connection bound as the user who authenticated.
   - Trim trailing whitespace from submitted usernames otherwise we generate
     bad LDAP queries.

0.1005  30 April 2009
   - Stop throwing an exception when the lookup_user method fails
      to find a user and instead return undef. (t0m)
   - Add tests for above (t0m)
   - Change documentation which still refers to the old ::Plugin:: style
     auth system to use ->authenticate instead of ->login, and not say that
     you need to do things manually to have multiple stores. (t0m)

0.1004  21 Oct 2008
   - Add the ability to have the user inflated into a custom
     user class with the user_class option (t0m)
   - Add the ability for role lookup to be performed within
     the same (user) bind context that the user's password is
     checked in (t0m)

0.1003  10 Sept 2008
    - get entries in array context rather than scalar context, 
      allowing for multiple values. patch by scpham.
    - lc() to compare Net::LDAP results with supplied $id
      bug reported via RT #39113


0.1002  9 July 2008
    - tests updated to use Net::LDAP::Server::Test 0.03


0.1001  9 April 2008
    - matthewr pointed out that the SYNOPSIS 'use Catalyst' line is wrong.
    - imacat reported that t/03-entry was failing when Catalyst::Model::LDAP was
      not installed. Fixed RT# 34777.


0.1000  4 Feb 2008
    - forked from Catalyst::Plugin::Authentication::Store::LDAP and name changed 
      to Catalyst::Authentication::Store::LDAP
    - tests now use Net::LDAP::Server::Test instead of relying on openldap.org
    - changed release date for 0.0600
    - added AD config suggestions from matija@serverflow.com
    - bumped req base Auth package to 0.10003
    - lookup_user() now throws an exception if there is more than one entry returned
      from a LDAP search
    - added new user_search_filter config option to filter out multiple entries on
      Perl side


0.0600  karman 18 Oct 2007 [was: omega Thu Aug 09 09:22:00 CET 2007]
    - Someone had put some 0.052 version out, need to bump past that
    - Add realms API support to match newest C::P::Authentication API. (karman)
    - Add POD tests. (karman)
    
0.06 omega Thu Aug 09 09:00:00 CET 2007
    - Added support for entry_class in the same way that Catalyst::Model::LDAP
      supports it, allowing one to override what class is returned from
      $c->user->ldap_entry, and thus allowing one to add methods to the user
      object
      
0.05
    - Added support for multiple identifiers.

0.04 adam Tue Mar 21 15:31:57 PST 2006
    - Fixed rt.cpan.org #18250, sample YAML config incorrectly using arrays
    - Added some error checking around whether or not we have been properly
      configured.

0.03 adam Fri Feb 17 09:51:36 PST 2006
    - Gavin Henry's documentation patch for YAML configuration

0.02 adam Fri Feb 10 14:10:23 PST 2006
    - Now throws an exception if the initial bind fails
    - Changed the default role_filter from (member=%s) to (memberUid=%s)
    - Fixed bug in Backend->lookup_user that was not properly handling
      when a user was not found in the backing store at all.

0.01 adam Thu Feb  8 14:28:18 2006  
    - initial revision
    - supports authentication
    - supports roles
Commit	Line	Data
27b6d822	1	1.017
	2	- Minor POD spelling, formatting and link fixes
	3
0d3c4264	4	1.016 11 Februrary 2016
a03db022	5	- Document how to limit the attributes returned from the LDAP search
439924cb	6	- Add persist_in_session config option to allow storing of user and its
439924cb	7	roles in the session without hitting the LDAP store on each request
06d130c2	8	- fix use_roles enabled if explicitly disabled
a03db022	9
dfead577	10	1.015 20 February 2015
18d41a8f	11	- Escape special characters in user/role names
5a9aba6e	12	- Use the stored user credentials to look up roles
238a096f	13	- Split credential checking into a separate method from generic binding
18d41a8f	14
62534b1b	15	1.014 26 April 2013
bd1b2aad	16	- Don't fall back to unauthenticated bind when authenticating
bd1b2aad	17
4d784742	18	1.013 9 January 2013
	19	- fix for https://rt.cpan.org/Ticket/Display.html?id=81908 security hole.
	20
934094a2	21	1.012 5 October 2010
57d476f1	22	- add methods conforming to the Catalyst::Authentication::User API
934094a2	23	as required here:
57d476f1	24	http://search.cpan.org/dist/Catalyst-Plugin-Authentication/lib/Catalyst/Plugin/Authentication/Internals.pod#USER_METHODS
	25	Nudging provided via RT https://rt.cpan.org/Ticket/Display.html?id=60793
	26	- add documentation for Active Directory at suggestion of Adam Wohld
a63fe143	27	- Make ->can work for AUTOLOADED $user methods
57d476f1	28
4ec0d979	29	1.011 7 July 2010
4ec0d979	30	- fix t/05-user_attributes.t to skip correct number of tests if
2d7fcdde	31	Catalyst::Model::LDAP is not installed.
a4427384	32
4ec0d979	33	1.010 6 July 2010
a4427384	34	- Make AUTOLOAD method work for ->dn by generically calling has_attribute
	35	which has a special case for it.
	36	- Unify the handling of the ->username method between AUTOLOAD and
	37	has_attribute by special casing it more generically in has_attribute.
	38	Both RT#57610, patch and tests by Jason Fried
	39
ff35d7cb	40	1.009 15 May 2010
5faab354	41	- Fix pod for get_user() and from_session() in Backend.pm, adding
	42	the missing $c param. Pass $c in from_session() through to get_user().
	43	Reported in https://rt.cpan.org/Ticket/Display.html?id=56983 with
	44	patch from Bjørn-Olav Strand.
	45
7a8c9fb0	46	1.008 02 April 2010
394e2cec	47	- Allow for multiple uid values on a User object. See RT
	48	https://rt.cpan.org/Ticket/Display.html?id=51505
	49	and patch from Andrew Kirkpatrick.
	50
	51	1.007 19 Mar 2010
8fe890e6	52	- Store the user password for the ldap_connection method in an inside
	53	out hash rather than a closure so that the user object can be serialized
	54	with Storable as people are putting them in the session (RT#53279)
	55
394e2cec	56	1.006 11 Dec 2009
52a972a4	57	- Pass $c along to find_user method so overridden user_class users can
52a972a4	58	get at models (or whatever crazy things they might do) (gphat)
81cc465e	59	- Add an ldap_connection method to the user class, which will return
	60	an LDAP connection bound as the user who authenticated.
	61	- Trim trailing whitespace from submitted usernames otherwise we generate
	62	bad LDAP queries.
52a972a4	63
d94851da	64	0.1005 30 April 2009
	65	- Stop throwing an exception when the lookup_user method fails
	66	to find a user and instead return undef. (t0m)
	67	- Add tests for above (t0m)
afb8e81c	68	- Change documentation which still refers to the old ::Plugin:: style
	69	auth system to use ->authenticate instead of ->login, and not say that
	70	you need to do things manually to have multiple stores. (t0m)
	71
405489b5	72	0.1004 21 Oct 2008
	73	- Add the ability to have the user inflated into a custom
	74	user class with the user_class option (t0m)
	75	- Add the ability for role lookup to be performed within
	76	the same (user) bind context that the user's password is
	77	checked in (t0m)
	78
	79	0.1003 10 Sept 2008
ab62b426	80	- get entries in array context rather than scalar context,
ab62b426	81	allowing for multiple values. patch by scpham.
5772b468	82	- lc() to compare Net::LDAP results with supplied $id
5772b468	83	bug reported via RT #39113
ab62b426	84
ab62b426	85
1404e859	86	0.1002 9 July 2008
	87	- tests updated to use Net::LDAP::Server::Test 0.03
	88
	89
be60b1e0	90	0.1001 9 April 2008
24ff036b	91	- matthewr pointed out that the SYNOPSIS 'use Catalyst' line is wrong.
be60b1e0	92	- imacat reported that t/03-entry was failing when Catalyst::Model::LDAP was
be60b1e0	93	not installed. Fixed RT# 34777.
24ff036b	94
24ff036b	95
f66d606b	96	0.1000 4 Feb 2008
	97	- forked from Catalyst::Plugin::Authentication::Store::LDAP and name changed
	98	to Catalyst::Authentication::Store::LDAP
	99	- tests now use Net::LDAP::Server::Test instead of relying on openldap.org
	100	- changed release date for 0.0600
	101	- added AD config suggestions from matija@serverflow.com
	102	- bumped req base Auth package to 0.10003
1647b33a	103	- lookup_user() now throws an exception if there is more than one entry returned
	104	from a LDAP search
	105	- added new user_search_filter config option to filter out multiple entries on
	106	Perl side
f66d606b	107
	108
	109	0.0600 karman 18 Oct 2007 [was: omega Thu Aug 09 09:22:00 CET 2007]
	110	- Someone had put some 0.052 version out, need to bump past that
	111	- Add realms API support to match newest C::P::Authentication API. (karman)
	112	- Add POD tests. (karman)
	113
	114	0.06 omega Thu Aug 09 09:00:00 CET 2007
	115	- Added support for entry_class in the same way that Catalyst::Model::LDAP
	116	supports it, allowing one to override what class is returned from
	117	$c->user->ldap_entry, and thus allowing one to add methods to the user
	118	object
	119
	120	0.05
	121	- Added support for multiple identifiers.
	122
	123	0.04 adam Tue Mar 21 15:31:57 PST 2006
	124	- Fixed rt.cpan.org #18250, sample YAML config incorrectly using arrays
	125	- Added some error checking around whether or not we have been properly
	126	configured.
	127
	128	0.03 adam Fri Feb 17 09:51:36 PST 2006
	129	- Gavin Henry's documentation patch for YAML configuration
	130
	131	0.02 adam Fri Feb 10 14:10:23 PST 2006
	132	- Now throws an exception if the initial bind fails
	133	- Changed the default role_filter from (member=%s) to (memberUid=%s)
	134	- Fixed bug in Backend->lookup_user that was not properly handling
	135	when a user was not found in the backing store at all.
	136
	137	0.01 adam Thu Feb 8 14:28:18 2006
	138	- initial revision
	139	- supports authentication
	140	- supports roles
	141