Package: fusiondirectory Version: 1.0.8.2-3 Severity: normal Tags: patch when the debug log is activate logging doesnt work anymore, the screen get filled with debug info. This has been corrected in 1.0.83 upstream.
i'am one of the upstream and i joint 2 patches for correcting this issue Cheers -- System Information: Debian Release: 7.8 APT prefers stable APT policy: (500, 'stable') Architecture: i386 (i686) Kernel: Linux 3.2.0-4-686-pae (SMP w/4 CPU cores) Locale: LANG=fr_BE.UTF-8, LC_CTYPE=fr_BE.UTF-8 (charmap=UTF-8) Shell: /bin/sh linked to /bin/dash -- Benoit Mortier CEO OpenSides "logiciels libres pour entreprises" : http://www.opensides.eu/ Promouvoir et défendre le Logiciel Libre http://www.april.org/ Main developper in FusionDirectory : http://www.fusiondirectory.org/ Official French representative for OPSI : http://opsi.org/
From e205afaad3b16dbb015ab72fbbc328ca45b99b83 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?C=C3=B4me=20Bernigaud?= <come.bernig...@opensides.be> Date: Tue, 4 Nov 2014 11:19:13 +0100 Subject: [PATCH 01/36] Fixes #3447 Setting debug level to 0 during login --- html/index.php | 9 +++++++-- plugins/personal/password/class_password.inc | 2 -- 2 files changed, 7 insertions(+), 4 deletions(-) diff --git a/html/index.php b/html/index.php index 33bfef6..ce56f39 100644 --- a/html/index.php +++ b/html/index.php @@ -141,8 +141,10 @@ if (!is_readable(CONFIG_DIR."/".CONFIG_FILE)) { /* Parse configuration file */ $config = new config(CONFIG_DIR."/".CONFIG_FILE, $BASE_DIR); -session::global_set('DEBUGLEVEL', $config->get_cfg_value('DEBUGLEVEL')); -if ($_SERVER["REQUEST_METHOD"] != "POST") { +if ($_SERVER["REQUEST_METHOD"] == "POST") { + session::global_set('DEBUGLEVEL', 0); +} else { + session::global_set('DEBUGLEVEL', $config->get_cfg_value('DEBUGLEVEL')); @DEBUG (DEBUG_CONFIG, __LINE__, __FUNCTION__, __FILE__, $config->data, "config"); } @@ -207,6 +209,9 @@ if (!$htaccess_authenticated) { } } $config->set_current($server); +if ($_SERVER["REQUEST_METHOD"] == "POST") { + session::global_set('DEBUGLEVEL', 0); +} /* If SSL is forced, just forward to the SSL enabled site */ if (($config->get_cfg_value("forcessl") == "TRUE") && ($ssl != '')) { diff --git a/plugins/personal/password/class_password.inc b/plugins/personal/password/class_password.inc index bbddbee..5c0ca41 100644 --- a/plugins/personal/password/class_password.inc +++ b/plugins/personal/password/class_password.inc @@ -122,7 +122,6 @@ class password extends plugin if (count($message)) { msg_dialog::displayChecks($message); } else { - /* Try to connect via current password */ $tldap = new LDAP( $ui->dn, @@ -137,7 +136,6 @@ class password extends plugin msg_dialog::display(_("Password change"), _("The password you've entered as your current password doesn't match the real one."), WARNING_DIALOG); } else { - /* Check FusionDirectory permissions */ if (!preg_match("/w/i", $password_ACLS)) { msg_dialog::display(_("Password change"), -- 1.9.1
From c36659626882ac00c14ab6e4b0652ed60983ebac Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?C=C3=B4me=20Bernigaud?= <come.bernig...@opensides.be> Date: Mon, 17 Nov 2014 15:28:55 +0100 Subject: [PATCH 07/35] Fixes #3447 Debug is back --- html/index.php | 1 + 1 file changed, 1 insertion(+) diff --git a/html/index.php b/html/index.php index ce56f39..e2f6335 100644 --- a/html/index.php +++ b/html/index.php @@ -344,6 +344,7 @@ if (($_SERVER["REQUEST_METHOD"] == "POST" && isset($_POST['login'])) || $htacces /* Not account expired or password forced change go to main page */ new log("security", "login", "", array(), "User \"$username\" logged in successfully"); session::global_set('connected', 1); + session::global_set('DEBUGLEVEL', $config->get_cfg_value('DEBUGLEVEL')); $config->checkLdapConfig(); // check that newly installed plugins have their configuration in the LDAP header ("Location: main.php?global_check=1"); exit; -- 1.9.1
signature.asc
Description: This is a digitally signed message part.