Klimov Paul
dee88787fc
compatibility with PHPUnit 6.x added
8 years ago
Carsten Brandt
5faa0032cb
added more assertations for security masking tests
8 years ago
Sam Mousa
8ae207c3a1
Fixes #13837 : Refactored masking of CSRF tokens
8 years ago
Alexander Makarov
3f8e8a89eb
Used more specific unit test assertions in framework tests
8 years ago
Klimov Paul
194577c55e
Code style fix
8 years ago
Robert Korulczyk
4aa935e69e
Fixes #12055 : Changed `boolean` to `bool` and `integer` to `int` in phpdoc
8 years ago
Carsten Brandt
b13d6fb13a
make version_compare() match everything starting from alpha
...
to include PHP 7.1-rc1
8 years ago
Carsten Brandt
9524672cd1
skip memcache extension on PHP 7 but keep memcacheD
8 years ago
Carsten Brandt
2bd301d1fe
fix test for PHP 7.1, expect deprecation message for mcrypt_create_iv()
8 years ago
Carsten Brandt
5bc2f3a851
avoid random test failure
9 years ago
Alexander Makarov
e00c9d904e
Fixed tests to run properly on Windows
9 years ago
Carsten Brandt
e94b68436d
complete test coverage for reading /dev/urandom
...
fixes an issue with buffered reading
9 years ago
Carsten Brandt
49028af437
skip testing /dev/urandom on windows
...
also removed redundant test
9 years ago
Carsten Brandt
2aeb479341
better unit test for generateRandomBytes()
9 years ago
Alexander Makarov
5f7cd1cbc4
Skipped RNG performance tests
9 years ago
Tom Worster
c455a3c54b
Security component enhancements
...
- Added tests for random key generation speed.
- Better generateRandomKey() performance for small reads because of using fopen + buffered read and local caching of source detection.
- Use /dev/random on FreeBSD.
9 years ago
Tom Worster
e7a888ad11
use file_get_contents and not magic numbers
9 years ago
Tom Worster
1f41a2c9af
Fixes #9878,9879,9880: Make `\base\Security` use `random_bytes()`, LibreSSL, mcrypt, limit OpenSSL to Windows, and to prefer `password_hash()` over `crypt()`
9 years ago
freezy
6a4436f95b
[ Fixes #9177 ] Password Hash Cost setting for Security component
9 years ago
Alexander Makarov
6949992246
Simplified tests directory structure a bit
10 years ago
tom--
4512833fac
Fixes #7215 : Uses OpenSSL crypto lib instead of Mcrypt. Added testing of encrypted data compatibility, both backward and forward
10 years ago
tom--
cf42333ffb
control of backwards/forwards compat regression test
...
(cherry picked from commit 10be911)
10 years ago
Alexander Mohorev
899b778994
Correct type declarations
10 years ago
RichWeber
92cd13a913
pull origin
10 years ago
tom--
c6a8b418ef
compareString(): timing depends only on length of `$actual` input, unit test
10 years ago
Alexander Makarov
c5a3cd511e
Security component adjustments: fixed comment style, hkdf() and pbkdf2() are now protected, compareString() is now public
10 years ago
tom--
2c5c2c101b
Fixes #4131 : Security adjustments
10 years ago
Alexander Makarov
481db35512
Fixes #4114 : Added Security::generateRandomHexKey(), used it for various tokens and default key generation
10 years ago
Paul Klimov
90a625013c
Result check at `Security::generateRandomKey()` added
10 years ago
Qiang Xue
399b6b18e3
Fixes #4103
10 years ago
Paul Klimov
052ae83340
Option `Security::autoGenerateSecretKey` added
10 years ago
Paul Klimov
5a42985750
Option `Security::useDeriveKeyUniqueSalt` added
10 years ago
Paul Klimov
4ce4707a3a
Option `Security::passwordHashStrategy` added
10 years ago
Paul Klimov
4063502439
Option `Security::deriveKeyStrategy` added
10 years ago
Paul Klimov
4768dcdbc2
Method `Security::compareString()` extracted
10 years ago
Klimov Paul
db0beb6b6b
'yii\base\Security' component created.
10 years ago