Mirrors/roundcubemail
2
0
Fork 0
mirror of https://github.com/roundcube/roundcubemail.git synced 2026-03-06 08:14:08 +01:00
Code Issues Packages Projects Releases Wiki Activity
12,876 Commits 72 Branches 205 Tags
b86fd45abbc85ba4eb28acf110bb1cc249f33f2f
Commit Graph

29 Commits

Author SHA1 Message Date
Aleksander Machniak
b86fd45abb OAuth: Fix/improve token refresh 2025-03-18 13:57:22 +01:00
Aleksander Machniak
8ec39907b5 Add rcmail_oauth::is_token_valid() method 2025-03-14 11:52:37 +01:00
Aleksander Machniak
df02322d6a Fix Oauth issues with use_secure_urls=true (#9722) 2024-12-03 12:36:18 +01:00
Aleksander Machniak
83f56f1758 OAuth: Support standard authentication with short-living password received with OIDC token (#9530) 2024-09-02 13:42:53 +02:00
Michael Voříšek
793664f568 Fix invalid phpdocs (#9252) 
* fix missing return type in phpdoc
* fix "phpdoc_scalar"
* Fix phpdoc variable names typos
* fix wrong phpdoc tags
 2023-12-13 19:55:05 +01:00
Aleksander Machniak
ca1b23ea9d More fixes regarding rcmail::url() (#9052) 2023-07-10 18:28:48 +02:00
Aleksander Machniak
f7635575f6 Fix regression that broke use_secure_urls feature (#9052) 2023-07-09 14:49:30 +02:00
Thomas Bruederli
7207e053bc Fix JWT decoding with url safe base64 schema (#8890) 2023-01-28 22:10:08 +01:00
Thomas Bruederli
d39235e5d9 Remove debug code again 2022-10-29 22:29:07 +02:00
Thomas Bruederli
afa509bc97 Kill session if refreshing oauth token fails (#8734) 2022-10-29 22:26:20 +02:00
Thomas Bruederli
6c0adda831 Update password option after refreshing oauth access token (#8436) 2022-06-26 23:05:25 +02:00
Thomas Bruederli
841bead50a Refresh oauth access token in 'refresh' plugin hook (#8224) 2021-12-28 17:22:19 +01:00
Thomas Bruederli
6564b7b32c No oauth auto-redirect on imap login failures (#8370) 2021-12-28 17:22:12 +01:00
Thomas Bruederli
e94177dd63 Pass 'id_token' to 'oauth_login' plugin hook (#8214) 
... and unset it afterwards
 2021-12-02 22:36:28 +01:00
Thomas Bruederli
3ba68eef08 Fix expiration of short-lived oauth tokens (#8147) 
Just add a small margin of 10s to consider the transfer
and processing time between oauth server and roundcube.
 2021-12-02 21:25:20 +01:00
Sebastian Brückner
1d2ad936a7 Fix parsing aud jwt claim (#8096) 2021-06-11 09:58:06 +02:00
Thomas Bruederli
9d94acb60e Add plugin hooks for oauth events (#8028, #8040) 
`oauth_login`: triggered after successful authentication via OAuth, providing token and identity information

`oauth_refresh_token`: triggered after the OAuth access token was refreshed
 2021-05-04 21:31:01 +02:00
Thomas Bruederli
93cda187ed Catch oauth state check exception (#7998) 2021-04-26 21:40:29 +02:00
Tobias Florek
67aa13fe4e Implement XOAUTH2 for managesieve (#8026) 
fixes #7925
 2021-04-25 09:19:41 +02:00
Josh Soref
203f456620 Spelling (#8001) 2021-04-18 08:43:18 +02:00
Thomas Bruederli
1d8fc71cad Do not auto-redirect on oauth login failures (#7812) 2021-01-12 22:14:54 +01:00
Aleksander Machniak
0cbe4a4acc PHP8 fixes, CS fixes, short array syntax, added more tests 2020-11-22 12:03:02 +01:00
Felix Gohla
cbf05211ab Expand fixes in compatibility to GuzzleHttp 6.5.x (#7634) (#7638) 2020-10-01 07:55:44 +02:00
Thomas Bruederli
3907fc1615 Fix compatibility to GuzzleHttp 6.5.x (#7634) 2020-09-28 14:32:43 +02:00
Thomas Bruederli
609e41a05f Finalize oauth integration: 
- remove debug logs
- add button icons for oauth login with Google and Microsoft
 2020-06-16 08:17:52 +02:00
Thomas Bruederli
dd9b5c0ee6 Fix redirects 2020-06-16 08:17:52 +02:00
Thomas Bruederli
06af3b5ef5 Add example configs for Gmail and Outlook 
+ Added option `oauth_login_redirect`
+ Custom styles for Google login button
 2020-06-16 08:17:52 +02:00
Thomas Bruederli
5da7708f34 Improve OAuth2 login procedure 
... as suggested in issue #6933

* add config option `oauth_verify_peer`
* add config option `oauth_identity_fields`
* do not mask access token in session data
* fix refresh token handling
* use a redirect URL without query parameters
 2020-06-16 08:17:52 +02:00
Thomas Bruederli
1e6a2f4f49 Basic support for OAuth2 user login and IMAP/SMTP authentication 
- Add "Login with XXX" button to login screen if oauth is configured
- Perform OAuth login procedure and get an access token
- Implement XOAUTH2 authentication type for IAMP and SMTP

Requires a patched and not yet released version of Net_SMTP.
 2020-06-16 08:17:52 +02:00