0f455be01c
Add CI flag in UA header
8 years ago
183398fe5e
Merge pull request #5717 from berlinger-rarents/fix/5584_anon_redirect_bitbucket
...
prevent (prompt for) bitbucket auth when it redirected
8 years ago
c0e28a9043
Remove static/public method
8 years ago
489a8f3d5a
revert to simply making an exception (no acces_token) for bitbucket/user/repo/downloads URLs
...
[#5584 ]
8 years ago
5123c5cf76
remove redundant truth check
8 years ago
8845ea467a
try bitbucket downloads first time without auth
...
also add tests for #5584
8 years ago
e60eff5f2e
apply patch
8 years ago
64fc8ffe3d
prevent (prompt for) auth for bitbucket public downloads
...
#5584
8 years ago
a4e3e1b584
prevent (prompt for) bitbucket auth when it redirected
...
#5584
8 years ago
285c4a1ac6
Merge branch '1.2'
8 years ago
ff7daf0bd4
Fix handling of paths on windows when cwd is root of drive, fixes #5554
8 years ago
cada55dde6
Merge pull request #5491 from moolex/support_gitlab_private_token
...
Support gitlab private-token for easier access via Gitlab API
8 years ago
02455712cf
check for additional possible output strings, fixes #5543
8 years ago
3455380413
Patch Httpoxy vulnerability
8 years ago
997a062ebd
Support gitlab private-token (or personal-access-token) for easier access via gitlab API
...
Config example:
$HOME/.composer/auth.json
{
"gitlab-token": {
"gitlab.com": "YOUR-TOKEN-HERE"
}
}
Gitlab API authentication doc: http://doc.gitlab.com/ce/api/README.html
8 years ago
87fbf4a6cd
Clean ups, refs #5485
8 years ago
8ffe224c0d
Merge remote-tracking branch 'stefangr/fix_minor_bitbucket_oauth_issues'
8 years ago
4998ee27b3
Re-use mirror code from the git driver, refs #5384
8 years ago
55e90093a4
Merge remote-tracking branch 'marvil07/faster-git-clones-using-cache'
8 years ago
5a31c75289
Fix some of the remaining OAuth issues.
...
- Bitbucket will silently redirect to a login page when downloading a zip.
Added a check to see if the content-type is not text/html
- Make the path from Basic Authentication to OAuth as smooth as possible.
8 years ago
efb24846cb
Merge branch '1.1'
8 years ago
f94d06ff0a
Fix escaping
8 years ago
39c2c8c30a
Add test for password escaping
8 years ago
75b88a13fe
Use regex to capture git version.
8 years ago
1241e3e83c
Simplify the if statement.
8 years ago
42f4d344a4
Fix the replacement of the credentials.
...
://username:password@domain
was replaced by ://://:***@domain
instead of ://username:***@domain or ://***:***@domain
8 years ago
ea11a95359
Provide fallback when using basic authentication.
...
When composer is configured to use bitbucket basic authentication (a bitbucket username and password), you get an error
when trying to install dependencies.
This commit prevent the install process to be aborted due to uncaught exceptions.
8 years ago
7716ef059b
Add the access token as query string parameter.
8 years ago
6c8b0cc2c1
Change authentication for bitbucket to oauth.
8 years ago
0e500d4c91
Make API URL available for external use.
8 years ago
a8edaad381
Merge pull request #5335 from carlcraig/1.1
...
Update bitbucket oauth instructions
8 years ago
73d9a4717d
Update list of ciphers /cc @cs278
8 years ago
5bb0433a51
Provide a way to retirve git version from the related util class.
8 years ago
e2c3bc5e89
Merge branch '1.1'
8 years ago
3ac822d5e2
Fix access_token param being incorrectly added on github requests after a redirection, fixes #5099
8 years ago
32a8a60695
Merge branch '1.1'
8 years ago
143db7a9f5
Fix degraded mode usage on packagist, fixes #5350
8 years ago
53fc30fe56
clear code
8 years ago
e43912735b
Update bitbucket oauth instructions
8 years ago
046c2d64a5
Fix ProcessExecutor url escaping
8 years ago
9cb6c2322a
Fix more git URL escaping
8 years ago
e3ae45fa12
Replace username as well if it looks like a github oauth token
8 years ago
9b654048ed
Fix regex for bitbucket https URLs.
...
If the bitbucket URL has the .git extension, the compiling of the authUrl and sshUrl result in invalid URLs.
8 years ago
591f68288b
Provide a fallback to ssh for https bitbucket URLs.
...
When running in non-interactive mode, there is no way to ask for credentials.
If there are no credentials available, no attempt is made to execute the command.
This commit provides a fallback to SSH for non authenticated, non-interactive install/updates of bitbucket https URLs.
8 years ago
36665d791d
Merge branch '1.0'
8 years ago
c66639fe03
Fix content-length check to look at the last header received, fixes #5268
8 years ago
38c49b32cb
Less regex escaping and removed $..$ match, refs #5184
8 years ago
d8c94c2640
Merge remote-tracking branch 'curry684/home-expansion'
8 years ago
95e0347917
Merge branch '1.0'
8 years ago
ff46816e79
Add support for file:///c:/-style paths, refs #3338
8 years ago
2062070be9
Warn users with secure-http disabled once per hostname they access insecurely to avoid bad URLs going by undetected, fixes #5008
8 years ago
31dcc0bdea
Merge branch '1.0'
8 years ago
1bf711fe1f
Guard against mbstring func_overload, fixes #5218
8 years ago
d716c73333
fail download on content-length mismatch
8 years ago
4b5375f4c0
Need legacy patch for older hardcoded behaviour in handling HOME/USERPROFILE env variables.
8 years ago
c9534d48c1
Made env variable parsing in path replacements generic across platforms and replaced old config.php implementation.
8 years ago
f5422a441d
Fixed Windows path separators and updated docs.
8 years ago
7e71b2bfbc
Added support for expanding environment variables in paths, and tilde expansion on Windows.
8 years ago
23ad67b3be
Implement support for tilde expansion, mainly for path repositories
8 years ago
d20d856aa8
Merge remote-tracking branch 'nicolas-grekas/php7-static'
8 years ago
fd2f51cea8
Speedup autoloading on PHP 5.6 & 7.0+ using static arrays
8 years ago
6a287b9240
Merge branch '1.0'
8 years ago
765a958c42
Merge pull request #5137 from dzuelke/rfs_conlen
...
Fail download on content-length mismatch
8 years ago
b1723644e0
Use extracted ca-bundle package
8 years ago
d8840df4ac
Minor tweak
8 years ago
1f0b01e70d
Merge remote-tracking branch 'watermanio/strict-types' into 1.0
8 years ago
3b0a1c6f70
Run cs fixer and update config to latest master
8 years ago
da9b43dcc8
Merge remote-tracking branch 'curry684/code-quality' into 1.0
8 years ago
e2056499cb
Avoid open_basedir warnings on is_dir() calls when probing for CABundle
8 years ago
eb77c0b7f5
phpDoc cleanup, removed unused imports, variables and parameters.
8 years ago
e6f21137ad
Undefined or default return points fixed.
8 years ago
d4207ff49f
Strict type checks of null and bool
8 years ago
fc57cc8d7e
Remove changes in StreamContextFactory, refs #5055
8 years ago
2c9326bacb
Merge remote-tracking branch 'wenkepaul/master'
8 years ago
5dd4d69a6d
fail download on content-length mismatch
8 years ago
49524bc4ba
Centralize secure-http checking
8 years ago
37a1e12672
Mark failed downloads as failed instead of 100% complete, fixes #5111
8 years ago
9059d70ba0
Corrected username / access token parameters for $this->io->setAuthentication when read from git config. Grant type is now only set when requesting an access token. Removed bitbucket-domains and bitbucket-protocols from config. Fixed bitbucket typo in JsonConfigSource. Removed unecessary comments. Changed visibility of Composer/Util/Bitbucket properties to private. Added https to bitbucket url. Removed unused $note variable.
8 years ago
0db8bbfda3
Add update channels support to self-update and diagnose, fixes #4960
8 years ago
fafac386b7
Ensure stat cache is cleared for junctions when using outside modifications.
8 years ago
b4d9d0fd0d
Added BitbucketTest class. Added is_array and is_object check to http content before calling http_build_query.
8 years ago
9ddf8c4d55
Fixed OAuth credentials issue for subsequent clone requests.
8 years ago
4cc719cab3
Add support for SSL_CERT_DIR and openssl.capath, fixes #5017
8 years ago
d2c5479b2d
Updated documentation and fixed formatting in Bitbucket Util.
8 years ago
d5332a1b5c
Developed bitbucket-oauth functionality.
8 years ago
e94066967c
Add debugging info about proxy usage, refs #4332
8 years ago
7e1a23eef7
Add missing use statements
8 years ago
6f42b9c865
Disable git, svn, http protocols for VCS downloaders, fixes #4968
8 years ago
0ed5b541a9
Fix CS
8 years ago
f2e2dd8f86
Merge pull request #4972 from curry684/code-quality
...
Code quality
8 years ago
070ee50693
Actually check for the dir existence before retrying, refs #4009
8 years ago
c502601c4b
Retry on RecursiveDirectoryIterator failure to open dir, refs #4009
8 years ago
f794ee7870
Fixes for implicit variable declarations, return type mismatches and invalid method declarations.
8 years ago
478f923ec2
Improved junction detection on Windows NTFS, fixes #4955
8 years ago
cb59cf0c85
Allow exception to secure-http for packagist provider files and add docs, refs #4907
8 years ago
79b7f5f77a
Merge remote-tracking branch 'cinamo/issue-4777'
8 years ago
a245c4618b
php-cs-fixer
8 years ago
dc2f201152
add trailing / and updated diagnose command
8 years ago
9e8aafa3b8
use base api endpoint to verify token is valid
8 years ago
d6d0435c54
Merge pull request #4845 from curry684/pull-4690
...
Implement junctioning on Windows for path repositories
8 years ago
b6b416111e
Fixed http check
9 years ago
4f5b4aff9c
Undid CS changes
9 years ago
da44f46b9c
Code style fixes
9 years ago
ef60478926
Added secure-http flag, defaults to true
9 years ago
09a6a19257
Avoid decoding gzip responses after a redirect, fixes #4897
9 years ago
54c079b559
Fixed Windows detection based on #4873 and suppressed some console output in removeJunction.
9 years ago
582e4796a3
Merge branch 'master' of https://github.com/composer/composer into pull-4690
9 years ago
0dab63e050
Unified all Windows tests throughout the code.
9 years ago
f2a2b18367
Added Platform utility and unit test for it.
9 years ago
b71c67239d
Made NTFS junction detection more reliable and added unit tests for the junction functions.
9 years ago
1b1462317c
Merge branch 'master' of https://github.com/composer/composer into pull-4690
9 years ago
49d7d65933
Add verbosity input support to IOInterface
9 years ago
358cb3f4fc
Fixed exception text and some warnings.
9 years ago
5489586436
Fully implemented junctioning on Windows for path repositories.
9 years ago
e515eb84e9
Add NTFS junction support to Util\Filesystem.
9 years ago
ae14e0f086
Add ssh2 protocol default ports, fixes #4835
9 years ago
618e7f98b2
Force base error reporting level to include everything
9 years ago
4e00635298
Fix error handling support, fixes #4833
9 years ago
1818b95149
CS fixes
9 years ago
5c944d45ac
Merge pull request #4827 from curry684/issue-4203
...
Added more graceful warning suppression utility
9 years ago
fff5074bbf
Fix additionalOptions getting dropped when SAN and redirect handling are combined, refs #4782
9 years ago
76c1645a0e
Merge remote-tracking branch 'upstream/master' into issue-4203
9 years ago
18cd4f966b
Added silencer utility to more gracefully handle error suppression without hiding errors or worse. Fixes #4203 , #4683
9 years ago
59975e3aaa
Add missing keys class
9 years ago
bdb97e7527
Reuse new TlsHelper for CA validation, refs #4798
9 years ago
1ea810d40b
Merge remote-tracking branch 'cs278/san-support'
9 years ago
78ffe0fd08
Avoid checking CA files several times
9 years ago
901e6f1d0e
Fix output and handling of RFS::copy() and extract redirect code into its own method, refs #4783
9 years ago
a574d5ef76
Merge remote-tracking branch 'cs278/follow-redirects'
9 years ago
e2e07a32c3
Fixes to vuln detection
9 years ago
bc8b7b0f78
Remove left behind debug code
9 years ago
b32aad8439
Do not set TLS options on local URLs
9 years ago
74aa73e841
The origin may not be the remote host
9 years ago
304c268c3b
Tidy up and general improvement of sAN handling code
...
* Move OpenSSL functions into a new TlsHelper class
* Add error when sAN certificate cannot be verified due to
CVE-2013-6420
* Throw exception if PHP >= 5.6 manages to use fallback code
* Add support for wildcards in CN/sAN
* Add tests for cert name validation
* Check for backported security fix for CVE-2013-6420 using
testcase from PHP tests.
* Whitelist some disto PHP versions that have the CVE-2013-6420
fix backported.
9 years ago
7e2a015e9b
Provide support for subjectAltName on PHP < 5.6
9 years ago
d6be2a693b
switch to array-replace-recursive
9 years ago
2393222826
more appropriate name
9 years ago
474541e9aa
apply comments
...
- add capath to json schema
- simplify factory
- hash_file and sha256 for CA checking
- remove exception as scenario should not occur
- remove executable bit from CA file
- make CA file also group/world writable (we overwrite invalid content anyway)
to avoid permission errors as much as possible
9 years ago
33f823146b
Account for ports in URL
9 years ago
34f1fcbdcb
Drop downgrade warning
9 years ago
c232566e52
add a hash to make sure CA file gets recreated if the content changes
9 years ago
cef97904d0
dont rewrite temp CA file if it already exists
...
and make it readable by everyone the first time we create it
9 years ago
4482a1dca0
also wrong array
9 years ago
f79255df29
make sure passed options are merged into defaults before checking
9 years ago
94947ee772
merge isset() calls
9 years ago
b95b0c2ab6
wrong array
9 years ago
008cce8d85
add back sanity checks
9 years ago
c1488f65bf
a quick stab at adding capath
9 years ago
dd3216e93d
Refactor to use new helper methods for headers
9 years ago
8a8ec6fccc
Too many redirects is not an error in PHP, return the latest response
9 years ago
Jordi Boggiano
Roel Arents
Rob Bast
moyo
Stefan Grootscholten
Marco Villegas
ReenExe
Carl Craig
David Zuelke
Niels Keurentjes
Nicolas Grekas
Andy Waterman
Paul Wenke
Paul.Wenke
cinamo
Chris Smith