Jordi Boggiano
2062070be9
Warn users with secure-http disabled once per hostname they access insecurely to avoid bad URLs going by undetected, fixes #5008
8 years ago
Jordi Boggiano
31dcc0bdea
Merge branch '1.0'
8 years ago
Jordi Boggiano
1bf711fe1f
Guard against mbstring func_overload, fixes #5218
8 years ago
David Zuelke
d716c73333
fail download on content-length mismatch
8 years ago
Niels Keurentjes
4b5375f4c0
Need legacy patch for older hardcoded behaviour in handling HOME/USERPROFILE env variables.
8 years ago
Niels Keurentjes
c9534d48c1
Made env variable parsing in path replacements generic across platforms and replaced old config.php implementation.
8 years ago
Niels Keurentjes
f5422a441d
Fixed Windows path separators and updated docs.
8 years ago
Niels Keurentjes
7e71b2bfbc
Added support for expanding environment variables in paths, and tilde expansion on Windows.
8 years ago
Niels Keurentjes
23ad67b3be
Implement support for tilde expansion, mainly for path repositories
8 years ago
Jordi Boggiano
d20d856aa8
Merge remote-tracking branch 'nicolas-grekas/php7-static'
8 years ago
Nicolas Grekas
fd2f51cea8
Speedup autoloading on PHP 5.6 & 7.0+ using static arrays
8 years ago
Jordi Boggiano
6a287b9240
Merge branch '1.0'
8 years ago
Jordi Boggiano
765a958c42
Merge pull request #5137 from dzuelke/rfs_conlen
...
Fail download on content-length mismatch
8 years ago
Jordi Boggiano
b1723644e0
Use extracted ca-bundle package
8 years ago
Jordi Boggiano
d8840df4ac
Minor tweak
8 years ago
Jordi Boggiano
1f0b01e70d
Merge remote-tracking branch 'watermanio/strict-types' into 1.0
8 years ago
Jordi Boggiano
3b0a1c6f70
Run cs fixer and update config to latest master
8 years ago
Jordi Boggiano
da9b43dcc8
Merge remote-tracking branch 'curry684/code-quality' into 1.0
8 years ago
Jordi Boggiano
e2056499cb
Avoid open_basedir warnings on is_dir() calls when probing for CABundle
8 years ago
Niels Keurentjes
eb77c0b7f5
phpDoc cleanup, removed unused imports, variables and parameters.
8 years ago
Niels Keurentjes
e6f21137ad
Undefined or default return points fixed.
8 years ago
Andy Waterman
d4207ff49f
Strict type checks of null and bool
8 years ago
Jordi Boggiano
fc57cc8d7e
Remove changes in StreamContextFactory, refs #5055
8 years ago
Jordi Boggiano
2c9326bacb
Merge remote-tracking branch 'wenkepaul/master'
8 years ago
David Zuelke
5dd4d69a6d
fail download on content-length mismatch
8 years ago
Niels Keurentjes
49524bc4ba
Centralize secure-http checking
8 years ago
Jordi Boggiano
37a1e12672
Mark failed downloads as failed instead of 100% complete, fixes #5111
8 years ago
Paul Wenke
9059d70ba0
Corrected username / access token parameters for $this->io->setAuthentication when read from git config. Grant type is now only set when requesting an access token. Removed bitbucket-domains and bitbucket-protocols from config. Fixed bitbucket typo in JsonConfigSource. Removed unecessary comments. Changed visibility of Composer/Util/Bitbucket properties to private. Added https to bitbucket url. Removed unused $note variable.
8 years ago
Jordi Boggiano
0db8bbfda3
Add update channels support to self-update and diagnose, fixes #4960
8 years ago
Niels Keurentjes
fafac386b7
Ensure stat cache is cleared for junctions when using outside modifications.
8 years ago
Paul.Wenke
b4d9d0fd0d
Added BitbucketTest class. Added is_array and is_object check to http content before calling http_build_query.
8 years ago
Paul.Wenke
9ddf8c4d55
Fixed OAuth credentials issue for subsequent clone requests.
8 years ago
Jordi Boggiano
4cc719cab3
Add support for SSL_CERT_DIR and openssl.capath, fixes #5017
8 years ago
Paul Wenke
d2c5479b2d
Updated documentation and fixed formatting in Bitbucket Util.
8 years ago
Paul Wenke
d5332a1b5c
Developed bitbucket-oauth functionality.
8 years ago
Jordi Boggiano
e94066967c
Add debugging info about proxy usage, refs #4332
8 years ago
Jordi Boggiano
7e1a23eef7
Add missing use statements
8 years ago
Jordi Boggiano
6f42b9c865
Disable git, svn, http protocols for VCS downloaders, fixes #4968
8 years ago
Jordi Boggiano
0ed5b541a9
Fix CS
8 years ago
Jordi Boggiano
f2e2dd8f86
Merge pull request #4972 from curry684/code-quality
...
Code quality
8 years ago
Jordi Boggiano
070ee50693
Actually check for the dir existence before retrying, refs #4009
8 years ago
Jordi Boggiano
c502601c4b
Retry on RecursiveDirectoryIterator failure to open dir, refs #4009
8 years ago
Niels Keurentjes
f794ee7870
Fixes for implicit variable declarations, return type mismatches and invalid method declarations.
8 years ago
Niels Keurentjes
478f923ec2
Improved junction detection on Windows NTFS, fixes #4955
8 years ago
Jordi Boggiano
cb59cf0c85
Allow exception to secure-http for packagist provider files and add docs, refs #4907
8 years ago
Jordi Boggiano
79b7f5f77a
Merge remote-tracking branch 'cinamo/issue-4777'
8 years ago
Rob Bast
a245c4618b
php-cs-fixer
8 years ago
Rob Bast
dc2f201152
add trailing / and updated diagnose command
8 years ago
Rob Bast
9e8aafa3b8
use base api endpoint to verify token is valid
8 years ago
Jordi Boggiano
d6d0435c54
Merge pull request #4845 from curry684/pull-4690
...
Implement junctioning on Windows for path repositories
8 years ago
cinamo
b6b416111e
Fixed http check
9 years ago
cinamo
4f5b4aff9c
Undid CS changes
9 years ago
cinamo
da44f46b9c
Code style fixes
9 years ago
cinamo
ef60478926
Added secure-http flag, defaults to true
9 years ago
Jordi Boggiano
09a6a19257
Avoid decoding gzip responses after a redirect, fixes #4897
9 years ago
Niels Keurentjes
54c079b559
Fixed Windows detection based on #4873 and suppressed some console output in removeJunction.
9 years ago
Niels Keurentjes
582e4796a3
Merge branch 'master' of https://github.com/composer/composer into pull-4690
9 years ago
Niels Keurentjes
0dab63e050
Unified all Windows tests throughout the code.
9 years ago
Niels Keurentjes
f2a2b18367
Added Platform utility and unit test for it.
9 years ago
Niels Keurentjes
b71c67239d
Made NTFS junction detection more reliable and added unit tests for the junction functions.
9 years ago
Niels Keurentjes
1b1462317c
Merge branch 'master' of https://github.com/composer/composer into pull-4690
9 years ago
Jordi Boggiano
49d7d65933
Add verbosity input support to IOInterface
9 years ago
Niels Keurentjes
358cb3f4fc
Fixed exception text and some warnings.
9 years ago
Niels Keurentjes
5489586436
Fully implemented junctioning on Windows for path repositories.
9 years ago
Niels Keurentjes
e515eb84e9
Add NTFS junction support to Util\Filesystem.
9 years ago
Jordi Boggiano
ae14e0f086
Add ssh2 protocol default ports, fixes #4835
9 years ago
Jordi Boggiano
618e7f98b2
Force base error reporting level to include everything
9 years ago
Jordi Boggiano
4e00635298
Fix error handling support, fixes #4833
9 years ago
Jordi Boggiano
1818b95149
CS fixes
9 years ago
Jordi Boggiano
5c944d45ac
Merge pull request #4827 from curry684/issue-4203
...
Added more graceful warning suppression utility
9 years ago
Jordi Boggiano
fff5074bbf
Fix additionalOptions getting dropped when SAN and redirect handling are combined, refs #4782
9 years ago
Niels Keurentjes
76c1645a0e
Merge remote-tracking branch 'upstream/master' into issue-4203
9 years ago
Niels Keurentjes
18cd4f966b
Added silencer utility to more gracefully handle error suppression without hiding errors or worse. Fixes #4203 , #4683
9 years ago
Jordi Boggiano
59975e3aaa
Add missing keys class
9 years ago
Jordi Boggiano
bdb97e7527
Reuse new TlsHelper for CA validation, refs #4798
9 years ago
Jordi Boggiano
1ea810d40b
Merge remote-tracking branch 'cs278/san-support'
9 years ago
Jordi Boggiano
78ffe0fd08
Avoid checking CA files several times
9 years ago
Jordi Boggiano
901e6f1d0e
Fix output and handling of RFS::copy() and extract redirect code into its own method, refs #4783
9 years ago
Jordi Boggiano
a574d5ef76
Merge remote-tracking branch 'cs278/follow-redirects'
9 years ago
Chris Smith
e2e07a32c3
Fixes to vuln detection
9 years ago
Chris Smith
bc8b7b0f78
Remove left behind debug code
9 years ago
Chris Smith
b32aad8439
Do not set TLS options on local URLs
9 years ago
Chris Smith
74aa73e841
The origin may not be the remote host
9 years ago
Chris Smith
304c268c3b
Tidy up and general improvement of sAN handling code
...
* Move OpenSSL functions into a new TlsHelper class
* Add error when sAN certificate cannot be verified due to
CVE-2013-6420
* Throw exception if PHP >= 5.6 manages to use fallback code
* Add support for wildcards in CN/sAN
* Add tests for cert name validation
* Check for backported security fix for CVE-2013-6420 using
testcase from PHP tests.
* Whitelist some disto PHP versions that have the CVE-2013-6420
fix backported.
9 years ago
Chris Smith
7e2a015e9b
Provide support for subjectAltName on PHP < 5.6
9 years ago
Rob Bast
d6be2a693b
switch to array-replace-recursive
9 years ago
Rob Bast
2393222826
more appropriate name
9 years ago
Rob Bast
474541e9aa
apply comments
...
- add capath to json schema
- simplify factory
- hash_file and sha256 for CA checking
- remove exception as scenario should not occur
- remove executable bit from CA file
- make CA file also group/world writable (we overwrite invalid content anyway)
to avoid permission errors as much as possible
9 years ago
Chris Smith
33f823146b
Account for ports in URL
9 years ago
Chris Smith
34f1fcbdcb
Drop downgrade warning
9 years ago
Rob Bast
c232566e52
add a hash to make sure CA file gets recreated if the content changes
9 years ago
Rob Bast
cef97904d0
dont rewrite temp CA file if it already exists
...
and make it readable by everyone the first time we create it
9 years ago
Rob Bast
4482a1dca0
also wrong array
9 years ago
Rob Bast
f79255df29
make sure passed options are merged into defaults before checking
9 years ago
Rob Bast
94947ee772
merge isset() calls
9 years ago
Rob Bast
b95b0c2ab6
wrong array
9 years ago
Rob Bast
008cce8d85
add back sanity checks
9 years ago
Rob Bast
c1488f65bf
a quick stab at adding capath
9 years ago
Chris Smith
dd3216e93d
Refactor to use new helper methods for headers
9 years ago
Chris Smith
8a8ec6fccc
Too many redirects is not an error in PHP, return the latest response
9 years ago
Chris Smith
33471e389f
Pass redirect count using options
...
Removing the risk it might be preserved between requests.
9 years ago
Chris Smith
e830a611ec
Handle other path redirects
9 years ago
Chris Smith
ffab235edd
Remove code preventing protocol downgrades
9 years ago
Chris Smith
ce1eda25f3
Follow redirects inside RFS only when required by PHP version
9 years ago
Chris Smith
73662c725a
Don't let PHP follow redirects it doesn't validate certificates
9 years ago
Jordi Boggiano
546730dcf3
Show CA files being used in debug mode, refs #4792
9 years ago
Jordi Boggiano
f9fadb187e
Fix undefined var $auth issue
9 years ago
Jordi Boggiano
a13b06725e
Add support for if-modified-since on lazy repos and turning packagist into a lazy provider repo
9 years ago
Jordi Boggiano
33c123e8c2
Fix passing of options to remotefilesystem in composer repo
9 years ago
Rob Bast
22d8b5dff4
fix possible caBundle error
9 years ago
Jordi Boggiano
8375af268c
Use fixed CN_match for github hosts, fixes #4782
9 years ago
Rob Bast
42f49b3b97
fix missing import
9 years ago
Jordi Boggiano
d7c61c50ad
Merge branch 'tls-config'
9 years ago
Jordi Boggiano
fb848d2e07
Code cleanups
9 years ago
Jordi Boggiano
72fae0bf70
Declare CN_match/SNI_server_name only for php <5.6
9 years ago
Jordi Boggiano
449f68deae
Remove dangerous CN_match fallback
9 years ago
Jordi Boggiano
03299ff075
Suggest https in docs where it makes sense, closes #4056
9 years ago
Jordi Boggiano
fc4d94f160
Code clarity and updates from the getcomposer.org installer
9 years ago
Jordi Boggiano
cb53bd04cb
Remove a few instances of RemoteFilesystem that were not needed
9 years ago
Jordi Boggiano
f8dff0867c
Remove --disable-tls/--cafile flags and rely solely on config options plus some wording clarifications
9 years ago
Jordi Boggiano
5d015defb8
Merge remote-tracking branch 'origin/master' into tls-config
9 years ago
Jordi Boggiano
29312be4df
Strict typing fixes
9 years ago
Jordi Boggiano
fbab2bfa17
Move user agent definition to StreamContextFactory so it is available in all contexts
9 years ago
Jordi Boggiano
f084b1e053
Remove duplicate handling of retry-auth-failure option, refs #3765
9 years ago
Jordi Boggiano
020c126c27
Fix CS
9 years ago
Jordi Boggiano
a10bffec0e
Merge remote-tracking branch 'GromNaN/gitlab'
9 years ago
Jordi Boggiano
966a982738
CS fixes
9 years ago
Jérôme Tamarelle
4255db9e31
Allows SSH urls for gitlab and detect the scheme
...
SSH urls uses HTTPS to request the API
9 years ago
Jérôme Tamarelle
ac68a721f4
Merge remote-tracking branch 'composer/master' into gitlab
...
Conflicts:
doc/04-schema.md
src/Composer/Util/RemoteFilesystem.php
9 years ago
Jerome TAMARELLE
6ccc562c0f
Add tests on GitLab class (copied from GitHubTest)
9 years ago
Jerome TAMARELLE
db056b8383
Fix retry authentification on gitlab oauth
9 years ago
Jerome TAMARELLE
211d4632bb
Fix compatibility with PHP 5.3
9 years ago
Jordi Boggiano
58a6d4b7d3
Add comment
9 years ago
David Fuhr
064e1a6d6d
Fix handling of http 400 errors
...
Before 400 errors were silently dropped. This caused composer to store
the returned body (usually some html) in cache. This resulted in later
errors when composer tried to extract this error response as zip.
With this exceptions thrown it handles the error gracefully and falls
back to the next URL provided by the package configuration.
9 years ago
Shawn Tunney
54584e6b0f
Have xcopy overwrite existing files
9 years ago
Rob
c7ed232ef4
Merge pull request #4529 from jeroenseegers/warn-on-commit-reference
...
Generate a warning when a commit reference is used
9 years ago
Jordi Boggiano
8e99cec3e7
Fix ref to findShortestPath
9 years ago
Jordi Boggiano
125dc62fab
Make trigger error visible
9 years ago
Jordi Boggiano
615638c7c3
Simplify bin-compat by removing the nosymlink option, refs #3704
9 years ago
Jordi Boggiano
c9b51a5751
Merge remote-tracking branch 'kocsismate/feature-bin-compat'
9 years ago
Jeroen Seegers
279b5f0156
Drop irrelevant properties from composer_commit-ref.json
9 years ago
Jeroen Seegers
f3dc31839f
Refactor commit-ref validation
...
The require and require-dev arrays have been merged into one and no
longer user private methods/properties to collect warnings.
9 years ago
Jeroen Seegers
73e73c90fb
Generate a warning when a commit reference is used
...
Closes #4485
9 years ago
Rob Bast
b523fc0b7b
ran fixers
9 years ago
Jordi Boggiano
ce08582671
Fix CS
9 years ago
Jordi Boggiano
ae23979dfa
Add validation warning for prs-0/4 definitions without namespace prefix, refs #3202
9 years ago
Samuel ROZE
ead68d3d49
Create the path repository and downloader
9 years ago
Jordi Boggiano
9859859f10
Add comment, fixes #4145
9 years ago
Kocsis Máté
87c16073ec
Merge branch 'master' of https://github.com/composer/composer into feature-bin-compat
9 years ago
Jordi Boggiano
00c26791fa
Merge pull request #4264 from alcohol/use-composer-spdx
...
remove spdx files, introduce external library
9 years ago
Jordi Boggiano
bbf959ac34
Do not retry failures once degraded mode is already enabled
9 years ago
Jordi Boggiano
ff84b32097
Add degraded mode to try and bypass ipv6/gzip issues, refs #4142 , refs #4121
9 years ago
Rob Bast
2553f5f7d4
throw error when file is loaded
9 years ago
Rob Bast
616585e0cc
spdxlicense extends spdxlicenses, add depr error
9 years ago
Rob Bast
5ae9e7fe22
remove spdx files, introduce external library
9 years ago
Jordi Boggiano
e2b2f450dc
Merge pull request #4144 from staabm/patch-2
...
Dropped unnecessary break statements
9 years ago
Jordi Boggiano
9b3e8b963e
Merge pull request #4143 from staabm/patch-1
...
Dropped obsolete condition
9 years ago
Rob Bast
4019f7bb44
Revert "apply a regex solution instead of tokenizer"
...
This reverts commit 33a7305e22c8d4e2ce38586855fd3d4b7b2af3dd.
9 years ago
Rob Bast
b5d286e27b
apply a regex solution instead of tokenizer
9 years ago
Rob Bast
e4118385a0
updated spdx related files
9 years ago
Jordi Boggiano
6a64041055
CS fixes
9 years ago
Andreas Möller
eac5fbdee4
Fix: Remove unused imports
9 years ago
Markus Staab
94a924b702
Dropped unnecessary break statements
...
Next line breaks nevertheless
9 years ago
Markus Staab
a4ad3c2146
Dropped obsolete condition
...
The conditional a few lines above already checks for `bytesMax > 0`
9 years ago
Kunal Mehta
49bd1d773b
Make an invalid package name a publish error, not warning
...
Since invalid names will prevent publishing to packagist, they should
be considered publish errors. If people do not plan on submitting their
package to packagist, they can use the --no-check-publish flag to turn
it into a normal warning again.
9 years ago
gmsantosxl
a060c536bb
Remove extra '/' when findShortestPath $from ends with '/'
9 years ago
gmsantosxl
84c9c30b63
Remove extra '/' when findShortestPath $from is a directory
9 years ago
Jordi Boggiano
1753c275ff
Handle deprecation notices softer
9 years ago
Jordi Boggiano
4d5d524704
Clear stat cache after a git failure as it might have modified the filesystem
9 years ago
Jordi Boggiano
52d290f5f2
trim token just in case and update tests
9 years ago
Jordi Boggiano
41f4451c20
take care of retry-auth-failure:false in case of 403 as well
9 years ago
Jordi Boggiano
e16d53893e
Remove password prompt for github tokens and require the user creates a token themselves
9 years ago
Possum
29ca21f30e
PHP version checks tweaking
9 years ago
Jordi Boggiano
13a3349603
Merge pull request #3967 from xi-ao/master
...
Fixed svn update command
9 years ago
Daum
aa4afbf49f
Updated AuthHelper to pass a null for maximum attempts to the IOInterface instead of false so an exception is not thrown by Symfony Question class.
9 years ago
Anael Ollier
27074083cc
Replaced join() by implode()
9 years ago
Anael Ollier
2f82ed7035
Fixed the fix :)
9 years ago
Anael Ollier
b2efb95f33
Fixed svn update command (fails before attempting to use authentication provided in auth.json)
9 years ago
Jordi Boggiano
1cb427ff5c
Force http1.1 protocol
9 years ago
Jordi Boggiano
a32c919145
Return null instead of false
9 years ago
Jordi Boggiano
921b3a0eba
Fix regression with non-SPDX licenses in show command, refs #3885
9 years ago
Jordi Boggiano
dbfd47eeca
CS fixes
9 years ago
Jordi Boggiano
3a06e6f036
Merge pull request #3885 from jakoch/patch-spdx
...
updated spdx-license handling to include metadata
9 years ago
Roshan Gautam
7bf886b3ba
Remove two factor authentication
9 years ago
Roshan Gautam
f870396568
Add oauth2 support for gitlab
9 years ago
Frederik Bosch
951b07eabc
Fix #3903
9 years ago
Kocsis Máté
258408524f
Converted Symlink utility to UTF-8
9 years ago
Kocsis Máté
38c26ae26b
Added Symlink utility class
9 years ago
jakoch
74a077dd3d
updated spdx-license handling to include metadata
...
issue https://github.com/composer/composer/issues/3744
summary of changes
- replaced bin script "fetch-spdx-identifiers" by "update-spdx-licenses"
- "update-spdx-licenses" uses "Composer/Util/SpdxLicensesUpdater" to update "spdx-licenses.json" file with license identifier, fullname and osi-approved-status
- dropped "spdx-identifiers.json" (identifiers only)
- dropped "SpdxLicenseIdentifier", it's just "SpdxLicense" now
- modified "ShowCommand" to output the license with metadata and removed some unused method arguments (cleanup)
9 years ago
Frederik Bosch
79490f662e
Revert #3813 , implement differently
...
Fix #3830
9 years ago
Jordi Boggiano
c5cd184767
Revert 331425bcb3
as well, fixes #3612
9 years ago
Stanislav Khromov
6c35dd6b2d
Improved wording
...
All other verbs use are in the form of "doing something", ie Installing, Downloading. "connection" is the odd one out.
9 years ago
Jordi Boggiano
b80038804f
Fix env override regression, fixes #3820
9 years ago
Jordi Boggiano
3470cef1f1
Merge pull request #3818 from Hellov/master
...
Duplicate download progress
9 years ago
Jordi Boggiano
331425bcb3
Fix output of first line of progress when output is not decorated, refs #3818
9 years ago
Hello
ef0191ee6a
Duplicate download progress
9 years ago
Jérôme Tamarelle
c1edfbb65c
Add tests on GitLabDriver
...
Add an interactive prompt for gitlab token
Update doc for gitlab-domains
Add tests on GitLabDriver::supports
Update doc + CS
Optimize branch detection + fix typos
Fix test on GitLab support as it depends on SSL
Remove useless method + fix repository URL containing .git
9 years ago
Jérôme Tamarelle
802b57417a
Pass GitLab credential by HTTP header instead of query string to improve security
9 years ago
Henrik Bjørnskov
782c6303bc
Initial GitLab Driver
...
This is a proof of concept, and mostly done to gather feedback on the
structure of the driver and to see if this is something that Composer
should include in core.
Various review changes based on Stof comments.
* Remove cleanup() as it is implemented by the abstract class.
* Remove wrong comment in getReferences
* Implement getSource (as GitHubDriver does)
* Finish phpDocs for methods.
9 years ago
Nicolas Grekas
be22a87d9c
Run processes with predictable LANGUAGE=C
9 years ago