Commit Graph

58 Commits

Author SHA1 Message Date
Gregory Soutade
da4a99a6ef Scroll to page bottom when user adds a new password 2017-12-05 08:05:47 +01:00
c511e49725 Server: update random password generation and add a "simple password" button 2017-07-19 19:22:49 +02:00
017bda025e Some comment and copyright updates 2017-07-19 19:22:49 +02:00
09e0d85d97 Merge branch 'master' of soutade.fr:gpass 2017-04-17 20:42:08 +02:00
65ca3a3d3d Change protocol version (3 -> 4) : PKDBF2 is renamed in PBKDF2. This also avoid mismatch with new encryption system 2017-04-17 20:39:53 +02:00
136920404d Add (QUnit) server tests 2017-04-17 20:37:26 +02:00
ef82f2640f Fix a bug : update_masterkey generates a token from only one master key and not for the corresponding masterkey 2017-04-17 20:37:26 +02:00
65f8f0f21e Fix a bug : shadow logins passwords were not deleted 2017-04-17 20:37:26 +02:00
a180cb62d7 Use a variable (server_url) instead of document.documentURI 2017-04-17 20:37:26 +02:00
b4b54ec57c Checks for right shadow login when adding an entry
Use exec() instead of query() when it's necessary for SQL queries
2017-04-17 20:37:26 +02:00
48571b31c1 Set shadow logins ON by default 2017-04-17 20:37:26 +02:00
bc2a510b8d Automatically come back to top when timeout is raised and clear keys are cleaned 2017-04-17 20:37:26 +02:00
82cef032eb Reduce scroll top arrow 2017-04-17 20:37:26 +02:00
d48d1e94a9 Add scrollToTop javascript function 2017-04-17 20:37:26 +02:00
cef1194ad0 Add new encryption scheme in server part. 2017-04-17 20:37:26 +02:00
89465f4c68 Don't use shadow if the flag is not defined 2017-04-17 20:37:26 +02:00
6fa296ebc4 Use native crypto functions from misc.js 2017-04-17 20:37:26 +02:00
241867e93c Database access optimization if there is no shadow logins 2017-04-17 20:37:26 +02:00
6d2e202aff Create a password is now on top of web page. Remove old javascript libraries. 2017-04-17 20:37:26 +02:00
32fd8355e1 New protocol (fix mispelled PKBDF2) 2017-04-17 20:37:26 +02:00
Gregory Soutade
527fc52539 Forgot startClearTimer() when adding a password 2016-09-25 20:35:11 +02:00
29e2c8337c Clear master keys and reset passwords after 15 minutes of inactivity 2016-08-20 13:23:36 +02:00
89ccd0575f Forgot to update reference database 2016-05-21 09:58:30 +02:00
Gregory Soutade
487283626f Remove \ character from password generation to avoid confusions 2015-12-04 17:03:12 +01:00
Gregory Soutade
6604fbb6e1 Add two new protections : REQUESTS_MIN_DELAY and MAX_PASSWORDS_PER_REQUEST (see conf.php) 2015-12-04 17:02:31 +01:00
Gregory Soutade
cc66b612ef New version of database, add last_access_time field 2015-12-04 17:01:41 +01:00
Gregory Soutade
1d22f425e9 Add export function 2015-09-17 20:32:29 +02:00
Gregory Soutade
b255a8cd90 Display an error message when a query failed (previous : silent fail...) 2015-09-05 09:21:45 +02:00
Gregory Soutade
b330af258f Move code to encrypt into PasswordEntry function
Add Update Masterkey feature
2015-04-23 21:36:50 +02:00
root
e16fa0c218 Remove default parameters (Chrome...) 2015-03-27 18:23:26 +01:00
Gregory Soutade
e9c6208b54 Introduce shadow logins 2015-02-09 18:57:49 +01:00
2757b81e64 Rename resSources directories into resources 2015-01-27 21:10:09 +01:00
Gregory Soutade
de0a443ebb Add a favicon 2014-06-10 20:40:53 +02:00
Gregory Soutade
ee75e0ea06 Automatically change user when its selected (server side) 2014-04-02 07:47:54 +02:00
Gregory Soutade
fceab22f48 Server : Disable warning on empty master key (clear passwords from others) 2014-03-07 17:36:12 +01:00
Gregory Soutade
ccaca8c598 Don't warn on user change 2014-02-19 17:37:27 +01:00
Gregory Soutade
ce1d010b85 Warn when no password are unciphered using a masterkey
Clear masterkey after "See" or "Add" action
2014-02-19 17:34:51 +01:00
Gregory Soutade
6f8f952a92 Master key is now in clear text (not password) when you add a new password. This reduce typo errors 2014-02-17 08:00:28 +01:00
Gregory Soutade
83e1291ae7 Add pwdmeter.js from Jeff Todnem (https://www.todnem.com/) to have a feedback on master key strength 2014-02-01 10:50:23 +01:00
Gregory Soutade
61828b741d Remove licence from non PHP code in server 2014-01-23 07:44:07 +01:00
84eaf0c6a1 New protocol v3 : include pkdbf2 level
Remove hashtable from firefox addon
Rework firefox addon
Add pkdbf2_level as a preference (hidden)
2014-01-21 19:00:26 +01:00
Gregory Soutade
71b17a1ff0 index.php now includes ../../_user to simulate a symbolic link (for easier updates)
Fix default parameters in gpass.js (not compatible with chrome and IE)
2014-01-02 09:56:17 +01:00
Gregory Soutade
0a71101798 Modify ref index.php to include code instead of embed it (for simpler future update) 2013-12-07 10:38:45 +01:00
Gregory Soutade
85ec5e33bc Server side modifications
Fix bad implementation of PKDBF2 and HMAC
New protocol version (2)
2013-12-07 10:14:38 +01:00
Gregory Soutade
637d74b8dd Prepend gpass- before protocol to recognize gpass servers 2013-11-17 09:24:04 +01:00
Gregory Soutade
0f76ccb06e Add update + fix a lot of bugs 2013-10-23 19:39:47 +02:00
Gregory Soutade
c44e84124b Add add_entry and delete_entry 2013-10-22 18:33:44 +02:00
Gregory Soutade
f56d067483 Full JS : first pass, all seems to work execpt add/delete/update 2013-10-19 16:34:12 +02:00
Gregory Soutade
875b48899c Display addon address to use (server side) 2013-10-19 08:45:04 +02:00
Gregory Soutade
67d21ff3ef Server side :
* Trim password and login before instertion
	* Can use empty master key to see user passwords
	* Fix a bug : can't decode multiple queries from client

Client side :
	* Don't send empty username
	* Update README
2013-10-17 18:26:54 +02:00