zoneminder/scripts
Pliable Pixels fc27393a96 Replace MySQL Password() with bcrypt, allow for alternate JWT tokens (#2598)
* added sha1 and bcrypt submodules

* added bcrypt and sha to src build process

* added test sha1 and bcrypt code to validate working

* bcrypt auth migration in PHP land

* added include path

* add sha source

* added bcrypt to others

* put link_dir ahead of add_executable

* fixed typo

* try add_library instead

* absolute path

* absolute path

* build bcrypt as static

* move to wrapper

* move to fork

* logs tweak

* added lib-ssl/dev for JWT signing

* Moved to openSSL SHA1, initial JWT plugin

* removed vog

* fixed SHA1 algo

* typo

* use php-jwt, use proper way to add PHP modules, via composer

* fixed module path

* first attempt to fix cast error

* own fork

* own fork

* add composer vendor directory

* go back to jwt-cpp as PR merged

* moved to jwt-cpp after PR merge

* New token= query for JWT

* Add JWT token creation, move old code to a different function for future deprecation, simplified code for ZM_XX parameter reading

* JWT integration, validate JWT token via validateToken

* added token validation to zms/zmu/zmuser

* add token to command line for zmu

* move decode inside try/catch

* exception handling for try/catch

* fix db read, forgot to exec query

* remove allowing auth_hash_ip for token

* support refresh tokens as well for increased security

* remove auth_hash_ip

* Error out if used did not create an AUTH_HASH_SECRET

* fixed type conversion

* make sure refresh token login doesn't generate another refresh token

* fix absolute path

* move JWT/Bcrypt inside zm_crypt

* move sha headers out

* move out sha header

* handle case when supplied password is hashed, fix wrong params in AppController

* initial baby step for api tab

* initial plumbing to introduce token expiry and API bans per user

* remove M typo

* display user table in api

* added revoke all tokens code, removed test code

* use strtoul for conversion

* use strtoul for conversion

* use strtoul for conversion

* more fixes

* more fixes

* add mintokenexpiry to DB seek

* typo

* add ability to revoke tokens and enable/disable APIs per user

* moved API enable back to system

* comma

* enable API options only if API enabled

* move user creation to bcrypt

* added password_compat for PHP >=5.3 <5.5

* add Password back so User object indexes don't change

* move token index after adding password

* demote logs

* make old API auth optional, on by default

* make old API auth mechanism optional

* removed stale code

* forgot to checkin update file

* bulk overlay hash mysql encoded passwords

* add back ssl_dev, got deleted

* fix update script

* added token support to index.php

* reworked API document for new changes in 2.0

* Migrate from libdigest to crypt-eks-blowfish due to notice

* merge typo

* css classess for text that disappear

* fixed html typo

* added deps to ubuntu control files

* spaces

* removed extra line

* when regenerating using refresh tokens, username needs to be derived from the refresh token, as no session would exist

* add libssl1.0.0 for ubuntu 16/12

* small API fixes

* clean up of API, remove redundant sections

* moved to ZM fork for bcrypt

* whitespace and google code style

* regenerate auth hash if doing password migration

* dont need AUTH HASH LOGIN to be on

* Add auth hash verification to the user logged in already case

* fix missing ]

* reject requests if per user API disabled
2019-05-24 13:48:40 -04:00
..
ZoneMinder Replace MySQL Password() with bcrypt, allow for alternate JWT tokens (#2598) 2019-05-24 13:48:40 -04:00
CMakeLists.txt Merge branch 'master' into storageareas 2018-12-14 10:16:08 -05:00
zm.in fix sftp xfers in zmfilter (#1677) 2016-11-07 16:08:43 -05:00
zmaudit.pl.in to single quotes, include monitor Id when logging the closing of an event 2019-03-28 09:43:17 -04:00
zmcamtool.pl.in fix spacing, braces, quotes 2017-06-07 15:28:31 -04:00
zmcontrol.pl.in rework zmcontrol.pl. If command is given and server is not up, use zmdc.pl to start it. Give up after 10 seconds. 2019-04-05 15:18:03 -04:00
zmdbbackup.in remake this branch off master instead of off mysql2PDO. 2013-11-01 09:47:28 -04:00
zmdbrestore.in Migrate svn to git 2013-03-17 00:45:21 +01:00
zmdc.pl.in daemonize zmcontrol (#2563) 2019-04-01 17:26:24 -04:00
zmeventdump.in remake this branch off master instead of off mysql2PDO. 2013-11-01 09:47:28 -04:00
zmfilter.pl.in Add a missing comma 2018-10-25 11:24:23 -04:00
zmlogrotate.conf.in Migrate svn to git 2013-03-17 00:45:21 +01:00
zmonvif-probe.pl.in move zmonvif-probe.pl from the onvif library code and update it to use ZoneMinder::ONVIF 2018-01-31 16:57:17 -05:00
zmpkg.pl.in daemonize zmcontrol (#2563) 2019-04-01 17:26:24 -04:00
zmrecover.pl.in Fix log message to say recovering instead of auditing 2018-11-13 16:36:39 -05:00
zmstats.pl.in small cleanup of zmstats 2019-03-01 10:26:55 -05:00
zmsystemctl.pl.in Merge branch 'master' into storageareas 2017-01-02 09:39:10 -05:00
zmtelemetry.pl.in retrieve greip data rather than the ip (#2173) 2018-07-31 14:01:01 -04:00
zmtrack.pl.in update gpl 2 mailing address in source files 2016-12-26 09:23:16 -06:00
zmtrigger.pl.in Logging and whitespace 2018-12-20 13:56:57 -05:00
zmupdate.pl.in Replace MySQL Password() with bcrypt, allow for alternate JWT tokens (#2598) 2019-05-24 13:48:40 -04:00
zmvideo.pl.in fail if zm_path_ffmpeg not set 2018-07-17 06:57:38 -05:00
zmwatch.pl.in add db reconnects to zmwatch. 2018-09-07 16:29:23 -04:00
zmx10.pl.in switch quotes 2017-01-12 12:54:46 -05:00