+2007-02-05 Wolfgang Sourdeau <wsourdeau@inverse.ca>
+
+ * SoObjects/SOGo/SOGoAuthenticator.m ([SOGoAuthenticator
+ -checkLogin:_loginpassword:_pwd]): fixed a bug where a wrong
+ password would be accepted anyway as long as its length was > 0.
+ This can be the case ONLY when LDAP is disabled otherwise we have
+ a serious security issue...
+
+ * SoObjects/Appointments/SOGoAppointmentObject.m
+ ([SOGoAppointmentObject -roleOfUser:logininContext:context]): if a
+ user is not an organizer nor a participant, he is declared as
+ "Owner" if he owns the calendar the entry where the entry is
+ contained. Other cases should not be possible.
+
2007-02-02 Wolfgang Sourdeau <wsourdeau@inverse.ca>
* UI/Contacts/UIxContactEditor.m: display and handle the new
role = @"Organizer";
else if ([event isParticipant: email])
role = @"Participant";
+ else if ([[[self container] ownerInContext: nil] isEqualToString: login])
+ role = @"SoRole_Owner";
else
role = nil;
- (BOOL) checkLogin: (NSString *) _login
password: (NSString *) _pwd
{
+ BOOL accept;
+
+ if ([authMethod isEqualToString: @"LDAP"])
+ accept = [self LDAPCheckLogin: _login password: _pwd];
+ else
+ accept = ([_login length] > 0);
+
return (([_login isEqualToString: @"freebusy"]
&& [_pwd isEqualToString: @"freebusy"])
- || ([authMethod isEqualToString: @"LDAP"]
- && [self LDAPCheckLogin: _login password: _pwd])
- || [_login length] > 0);
+ || accept);
}
- (BOOL) LDAPCheckLogin: (NSString *) _login
"invalidemailwarn" = "invalidemailwarn";
"new" = "new";
-"Name or Address" = "Name or Address";
+"Name or Email" = "Name or Email";
"Personal Addressbook" = "Personal Addressbook";
"Search in Addressbook" = "Search in Addressbook";
"invalidemailwarn" = "Champ de l'email invalide, continuer quand même ?";
"new" = "Nouveau";
-"Name or Address" = "Le nom ou l'adresse";
+"Name or Email" = "Le nom ou l'adresse";
"Personal Addressbook" = "Adresses personnelles";
"Search in Addressbook" = "Carnet d'adresses...";
<ul id="searchOptions">
<li id="name_or_address"
onmousedown="return false;"
- onmouseup="setSearchCriteria(event);"><var:string label:value="Name or Address"/></li>
+ onmouseup="setSearchCriteria(event);"><var:string label:value="Name or Email"/></li>
</ul>
</div>