Alexander Makarov
d7be512fa0
Fixes #10186 : Use native `hash_equals` in `yii\base\Security::compareString()` if available, throw exception if non-strings are compared
7 years ago
SilverFire - Dmitry Naumenko
dbe7f7cac0
Disabled slow test on Travis
7 years ago
Robert Korulczyk
5a8c3d537b
Enable `phpdoc_summary` rule in php-cs-fixer config ( #14675 )
...
* Enable `phpdoc_summary` rule in php-cs-fixer config.
* Fix case in "PHPDoc".
7 years ago
Robert Korulczyk
1501c659ac
Add empty lines before return statements. ( #14682 ) [skip ci]
7 years ago
Robert Korulczyk
0c0942d6e2
Enable `phpdoc_add_missing_param_annotation` rule in php-cs-fixer config. ( #14681 ) [skip ci]
7 years ago
Robert Korulczyk
ba0ab403b5
Added php-cs-fixer coding standards validation to Travis CI ( #14100 )
...
* php-cs-fixer: PSR2 rule.
* php-cs-fixer: PSR2 rule - fix views.
* Travis setup refactoring.
* Add php-cs-fixer to travis cs tests.
* Fix tests on hhvm-3.12
* improve travis config
* composer update
* revert composer update
* improve travis config
* Fix CS.
* Extract config to separate classes.
* Extract config to separate classes.
* Add file header.
* Force short array syntax.
* binary_operator_spaces fixer
* Fix broken tests
* cast_spaces fixer
* concat_space fixer
* dir_constant fixer
* ereg_to_preg fixer
* function_typehint_space fixer
* hash_to_slash_comment fixer
* is_null fixer
* linebreak_after_opening_tag fixer
* lowercase_cast fixer
* magic_constant_casing fixer
* modernize_types_casting fixer
* native_function_casing fixer
* new_with_braces fixer
* no_alias_functions fixer
* no_blank_lines_after_class_opening fixer
* no_blank_lines_after_phpdoc fixer
* no_empty_comment fixer
* no_empty_phpdoc fixer
* no_empty_statement fixer
* no_extra_consecutive_blank_lines fixer
* no_leading_import_slash fixer
* no_leading_namespace_whitespace fixer
* no_mixed_echo_print fixer
* no_multiline_whitespace_around_double_arrow fixer
* no_multiline_whitespace_before_semicolons fixer
* no_php4_constructor fixer
* no_short_bool_cast fixer
* no_singleline_whitespace_before_semicolons fixer
* no_spaces_around_offset fixer
* no_trailing_comma_in_list_call fixer
* no_trailing_comma_in_singleline_array fixer
* no_unneeded_control_parentheses fixer
* no_unused_imports fixer
* no_useless_return fixer
* no_whitespace_before_comma_in_array fixer
* no_whitespace_in_blank_line fixer
* not_operator_with_successor_space fixer
* object_operator_without_whitespace fixer
* ordered_imports fixer
* php_unit_construct fixer
* php_unit_dedicate_assert fixer
* php_unit_fqcn_annotation fixer
* phpdoc_indent fixer
* phpdoc_no_access fixer
* phpdoc_no_empty_return fixer
* phpdoc_no_package fixer
* phpdoc_no_useless_inheritdoc fixer
* Fix broken tests
* phpdoc_return_self_reference fixer
* phpdoc_single_line_var_spacing fixer
* phpdoc_single_line_var_spacing fixer
* phpdoc_to_comment fixer
* phpdoc_trim fixer
* phpdoc_var_without_name fixer
* psr4 fixer
* self_accessor fixer
* short_scalar_cast fixer
* single_blank_line_before_namespace fixer
* single_quote fixer
* standardize_not_equals fixer
* ternary_operator_spaces fixer
* trailing_comma_in_multiline_array fixer
* trim_array_spaces fixer
* protected_to_private fixer
* unary_operator_spaces fixer
* whitespace_after_comma_in_array fixer
* `parent::setRules()` -> `$this->setRules()`
* blank_line_after_opening_tag fixer
* Update finder config.
* Revert changes for YiiRequirementChecker.
* Fix array formatting.
* Add missing import.
* Fix CS for new code merged from master.
* Fix some indentation issues.
7 years ago
Klimov Paul
dee88787fc
compatibility with PHPUnit 6.x added
8 years ago
Carsten Brandt
5faa0032cb
added more assertations for security masking tests
8 years ago
Sam Mousa
8ae207c3a1
Fixes #13837 : Refactored masking of CSRF tokens
8 years ago
Alexander Makarov
3f8e8a89eb
Used more specific unit test assertions in framework tests
8 years ago
Klimov Paul
194577c55e
Code style fix
8 years ago
Robert Korulczyk
4aa935e69e
Fixes #12055 : Changed `boolean` to `bool` and `integer` to `int` in phpdoc
8 years ago
Carsten Brandt
b13d6fb13a
make version_compare() match everything starting from alpha
...
to include PHP 7.1-rc1
8 years ago
Carsten Brandt
9524672cd1
skip memcache extension on PHP 7 but keep memcacheD
8 years ago
Carsten Brandt
2bd301d1fe
fix test for PHP 7.1, expect deprecation message for mcrypt_create_iv()
8 years ago
Carsten Brandt
5bc2f3a851
avoid random test failure
9 years ago
Alexander Makarov
e00c9d904e
Fixed tests to run properly on Windows
9 years ago
Carsten Brandt
e94b68436d
complete test coverage for reading /dev/urandom
...
fixes an issue with buffered reading
9 years ago
Carsten Brandt
49028af437
skip testing /dev/urandom on windows
...
also removed redundant test
9 years ago
Carsten Brandt
2aeb479341
better unit test for generateRandomBytes()
9 years ago
Alexander Makarov
5f7cd1cbc4
Skipped RNG performance tests
9 years ago
Tom Worster
c455a3c54b
Security component enhancements
...
- Added tests for random key generation speed.
- Better generateRandomKey() performance for small reads because of using fopen + buffered read and local caching of source detection.
- Use /dev/random on FreeBSD.
9 years ago
Tom Worster
e7a888ad11
use file_get_contents and not magic numbers
9 years ago
Tom Worster
1f41a2c9af
Fixes #9878,9879,9880: Make `\base\Security` use `random_bytes()`, LibreSSL, mcrypt, limit OpenSSL to Windows, and to prefer `password_hash()` over `crypt()`
9 years ago
╃巡洋艦㊣
586684b050
2.0.5 bf7edc5
9 years ago
freezy
6a4436f95b
[ Fixes #9177 ] Password Hash Cost setting for Security component
9 years ago
Alexander Makarov
6949992246
Simplified tests directory structure a bit
10 years ago
tom--
4512833fac
Fixes #7215 : Uses OpenSSL crypto lib instead of Mcrypt. Added testing of encrypted data compatibility, both backward and forward
10 years ago
tom--
cf42333ffb
control of backwards/forwards compat regression test
...
(cherry picked from commit 10be911)
10 years ago
╃巡洋艦㊣
1468bd4d3d
version 2.0.1 84b42ab
10 years ago
Alexander Mohorev
899b778994
Correct type declarations
10 years ago
RichWeber
92cd13a913
pull origin
10 years ago
tom--
c6a8b418ef
compareString(): timing depends only on length of `$actual` input, unit test
10 years ago
Alexander Makarov
c5a3cd511e
Security component adjustments: fixed comment style, hkdf() and pbkdf2() are now protected, compareString() is now public
10 years ago
tom--
2c5c2c101b
Fixes #4131 : Security adjustments
10 years ago
Alexander Makarov
481db35512
Fixes #4114 : Added Security::generateRandomHexKey(), used it for various tokens and default key generation
10 years ago
Paul Klimov
90a625013c
Result check at `Security::generateRandomKey()` added
10 years ago
Qiang Xue
399b6b18e3
Fixes #4103
10 years ago
Paul Klimov
052ae83340
Option `Security::autoGenerateSecretKey` added
10 years ago
Paul Klimov
5a42985750
Option `Security::useDeriveKeyUniqueSalt` added
10 years ago
Paul Klimov
4ce4707a3a
Option `Security::passwordHashStrategy` added
10 years ago
Paul Klimov
4063502439
Option `Security::deriveKeyStrategy` added
10 years ago
Paul Klimov
4768dcdbc2
Method `Security::compareString()` extracted
10 years ago
Klimov Paul
db0beb6b6b
'yii\base\Security' component created.
10 years ago