Changes 1.2.x

History of released versions

1.3| 1.2| 1.1| 1.0| 0.16.x| 0.15.x| 0.14.x| 0.13.x| 0.12.x| 0.11.x| 0.10.x| 0.9.x| 0.8.x| 0.7.x| Ancient| Overview

1.2.101

Release Date: 2018-02-09

1.2.100

Release Date: 2017-12-29

1.2.99

Release Date: 2017-12-17

1.2.98

Release Date: 2017-11-20

1.2.97

Release Date: 2017-11-12

1.2.96

Release Date: 2017-11-11

1.2.95

Release Date: 2017-09-21

1.2.94

Release Date: 2017-09-10

1.2.93

Release Date: 2017-08-08

1.2.92

Release Date: 2017-07-20

1.2.91

Release Date: 2017-07-13

1.2.90

Release Date: 2017-07-11

1.2.89

Release Date: 2017-06-28

1.2.88

Release Date: 2017-05-15

1.2.87

Release Date: 2017-05-04

1.2.86

Release Date: 2017-04-22

1.2.85

Release Date: 2017-04-17

1.2.84

Release Date: 2017-04-11

1.2.83

Release Date: 2017-03-18

1.2.82

Release Date: 2017-03-01

1.2.81

Release Date: 2017-02-23

1.2.80

Release Date: 2017-02-12

1.2.79

Release Date: 2016-12-08

1.2.78

Release Date: 2016-12-02

1.2.77

Release Date: 2016-11-29

1.2.76

Release Date: 2016-11-18

1.2.75

Release Date: 2016-11-02

1.2.74

Release Date: 2016-10-13

1.2.73

Release Date: 2016-09-26

1.2.72

Release Date: 2016-09-22

1.2.71

Release Date: 2016-09-16

1.2.70

Release Date: 2016-08-13

1.2.69

Release Date: 2016-08-08

1.2.68

Release Date: 2016-08-05

1.2.67

Release Date: 2016-07-29

1.2.66

Release Date: 2016-07-16

1.2.65

Release Date: 2016-07-08

1.2.64

Release Date: 2016-07-03

1.2.63

Release Date: 2016-06-27

1.2.62

Release Date: 2016-06-23

1.2.61

Release Date: 2016-06-21

1.2.60

Release Date: 2016-06-17

1.2.59

Release Date: 2016-06-13

1.2.58

Release Date: 2016-06-08

1.2.57

Release Date: 2016-06-07

1.2.56

Release Date: 2016-05-09

1.2.55

Release Date: 2016-05-02

1.2.54

Release Date: 2016-04-28

1.2.53

Release Date: 2016-04-27

1.2.52

Release Date: 2016-04-15

1.2.51

Release Date: 2016-04-13

1.2.50

Release Date: 2016-04-07

1.2.49

Release Date: 2016-04-06

1.2.48

Release Date: 2016-03-30

1.2.47

Release Date: 2016-02-02

1.2.46

Release Date: 2016-01-15

1.2.45

Release Date: 2015-12-28

1.2.44

Release Date: 2015-12-16

1.2.43

Release Date: 2015-12-08

1.2.42

Release Date: 2015-11-28

1.2.41

Release Date: 2015-11-09

1.2.40

Release Date: 2015-11-02

1.2.39

Release Date: 2015-10-22

1.2.38

Release Date: 2015-08-15

1.2.37

Release Date: 2015-08-01

1.2.36

Release Date: 2015-07-24

1.2.35

Release Date: 2015-07-19

1.2.34

Release Date: 2015-07-13

1.2.33

Release Date: 2015-07-07

1.2.32

Release Date: 2015-06-18

1.2.31

Release Date: 2015-06-09

1.2.30

Release Date: 2015-06-07

1.2.29

Release Date: 2015-06-06

1.2.28

Release Date: 2015-06-05

1.2.27

Release Date: 2015-05-15

1.2.26

Release Date: 2015-04-30

1.2.25

Release Date: 2015-04-19

1.2.24

Release Date: 2015-03-19

1.2.23

Release Date: 2015-03-13

1.2.22

Release Date: 2015-03-01

1.2.21

Release Date: 2015-02-10

1.2.20

Release Date: 2015-02-06

1.2.19

Release Date: 2015-01-30

1.2.18

Release Date: 2015-01-27

1.2.17

Release Date: 2015-01-25

1.2.16

Release Date: 2015-01-22

1.2.15

Release Date: 2015-01-21

1.2.14

Release Date: 2015-01-20

1.2.13

Release Date: 2015-01-19

1.2.12

Release Date: 2015-01-18

1.2.11

Release Date: 2015-01-15

1.2.10

Release Date: 2014-12-19

1.2.9

Release Date: 2014-12-12

1.2.8

Release Date: 2014-12-01

1.2.7

Release Date: 2014-11-28

1.2.6

Release Date: 2014-11-13

1.2.5

Release Date: 2014-11-03

1.2.4

Release Date: 2014-10-31

1.2.3

Release Date: 2014-10-21

1.2.2

Release Date: 2014-10-21

1.2.1

Release Date: 2014-10-09

1.2.0

Release Date: 2014-10-03

Installation and configuration changes
The following changes to local system installation/configuration are required:
New features/enhancements
  • Implemented multi-session cookie handling with cross-checking against web2ldap's session ID to prevent attacks in case web server's access logs is not kept confidential. Cookie usage is enabled by setting cookie_length to a non-zero cookie value length.
  • Now more TLS options can be set by using the more flexible host-/backend-specific parameter tls_options.
  • Input form entry data now processed in different steps to give plugin classes access to more attributes in the different stages. Especially there's a new method LDAPSyntax.transmute() which has guaranteed access to the whole entry and will be called several times if needed to make composing attributes values possible.
  • The sequence of keys used to determine HTML templates from input_template and read_template is now first the single STRUCTURAL object class followed by all non-STRUCTURAL object classes.
  • New context menu item [Clone] when displaying a single entry leads to add form being displayed with the old entry used as template.
  • HTTP headers pre-configured with http_headers are now consequently used for every HTTP response generated.
  • Bulk modification/moving of entries derived from search results. New context menu item [Bulk modify] is shown when displaying search results.
  • Bulk deleting of entries derived from search results. New context menu item [Delete] is shown when displaying search results.
  • New host-/backend-specific configuration parameter schema_supplement allows to extend the subschema with the content of a locally installed LDIF file.
  • New host-/backend-specific configuration parameter schema_strictcheck to deal with buggy subschema in some LDAP servers (e.g. issue #47811 in 389-DS).
  • Monitor page now shows maximum of concurrent sessions and how many sessions were removed after timeout in the session counter table.
  • New host-/backend-specific configuration parameter naming_contexts allows to set list of fake namingContexts values.
  • When starting in stand-alone mode the hostname in command-line option -l is now fully honored to determine SERVER_NAME and thus the cookie domain.
    This works around a cookie issue with Google Chrome etc. when listening just on 127.0.0.1. You can now add e.g. localhost.localdomain to your /etc/hosts and set the hostname with -l.
  • Plugin classes SelectList and friends now support additional option title. In particular DynamicValueSelectList looks for attributes description or info to determine the option title.
  • Former configuration template files/snippets defined with status_template, html_begin_template and link_css are now all consolidated in one HTML template top_template.
  • The redirect page can also be defined with a HTML template file referenced by redirect_template.
  • Added OpenSearch example file.
  • "Don't Use Copy" control is used if readable in rootDSE attribute supportedControl when reading an entry before presenting modification input form. OIDs from RFC 6171 and OpenLDAP experimental are supported.
Dropped features
  • Support for normally unused parameter web2ldapcnf.sec_expire was removed also due to security issues with setting it to non-zero value.
  • Host-/backend-specific parameter now login_default_mech obsolete. You can specify a default login mechanism in the HTML template referenced by login_template.
Changes in the UI
  • Full bookmark links are now generated and added as link to <head> section and in the displayed status area.
  • When choosing [Modify] from the context menu the entry input form is shown directly.
  • The entry input form now provides [+] and [-] buttons for easier input handling of multi-valued attributes.
  • The entry input form now provides a button [Classes] for changing the set of chosen object classes.
  • New plugin class AuthzDN additionally displays a description of the referenced entry. Registered for the following attribute types:
    • creatorsName
    • modifiersName
    • reqAuthzID
    • monitorConnectionAuthzDN
  • If the user submitted a search form without assertion values the same search form is re-displayed now.
  • When displaying search results the context menu now has a new menu item [Modify Search] which allows to edit the search input in an advanced search form if base or advanced search form was used before.
  • No context menu anymore displayed along with input form for new entry.
  • When adding a new entry two different forms are available for choosing the object classes:
    • Templates:
      Displays a radio button list to choose from pre-configured LDIF templates
    • Expert:
      Displays multi-select lists for choosing the object classes manually.
  • mailto: links only displayed along with search results if not only partial results were retrieved. Adding a mail address more than once is avoided.
Bugs fixed
  • Better error handling when exporting data to e.g. avoid HTML error messages appearing in LDIF export.
  • More graceful handling of errors when accessing a LDAP server with very paranoid security settings (no anon bind, explicit bind required, etc.).
Security