1. 25 Nov, 2015 1 commit
    • Guus der Kinderen's avatar
      OF-946: Centralize connection configuration. · e58d590b
      Guus der Kinderen authored
      This commit (which is compilable, but breaks some important
      functionality - work in progess) aims to centralize the configuration
      for connections. "Connections" are used in a broad sense here, and
      includes socket-based (TLS and legacy-mode SSL) client connections,
      BOSH-based client connections, component connections, connectionmanager
      (multiplexer) connections, but also connections to the admin panel.
      e58d590b
  2. 19 Nov, 2015 1 commit
    • Guus der Kinderen's avatar
      OF-953: Old JSP libraries should be upgraded. · 67baf287
      Guus der Kinderen authored
      By replacing Jetty 6.x era libraries with 9.x-based variants, JSP support
      will be brought back up-to-date. Additionally, Openfire will no longer
      have a mix of dependencies from various versions of Jetty. This commit
      contains a number of changes that go hand-in-hand:
      - Replaces JAR files
      - Applies uniformity to the buildscript where JSPC is executed
      - Replaces JSTL 1.0 taglibs with later versions
      - Adds a simple logger to the build process (to stop it from complaining)
      67baf287
  3. 24 Jul, 2015 1 commit
    • Richard Midwinter's avatar
      OF-631: Implement SCRAM support · 44826566
      Richard Midwinter authored
      This implements the SCRAM-SHA1 mechanism, and includes extending the existing
      DefaultAuthProvider to store the Scram hashes for faster authentication.
      
      If user.scramHashedOnly is set to true, then only these non-reversable hashes
      are stored (and thus security is increased in exchanged for removing support
      for DIGEST-MD5 et al).
      44826566
  4. 10 Aug, 2014 1 commit
    • Shawn Debnath's avatar
      In setup, some of the host settings are loaded from XML properties specified... · 8b2743f6
      Shawn Debnath authored
      In setup, some of the host settings are loaded from XML properties specified in openfire.xml, while others are incorrectly loaded from whats currently in JiveGlobals. Since we are in setup mode, JiveGlobals.getProperty returns null thereby ignoring any property overrides in openfire.xml specified by the user.
      
      Changelog: 
      1. Instead of just blindly setting anonymous auth to true, check if user has an override property in XML configuration, if not, default to true.
      2. Call getXMLProperty to load user configuration override values and not what is currently in JiveGlobals. During setup mode, this is always null.
      3. Instead of setting default values for auth, user, group, card, lockout, securityAudit and admin class names, check if the user has provided overrides for those properties, and if so, use those, otherwise use defaults.
      4. Expose a method to retrieve XML property names, and then in finishSetup, go through the rest of the XML properties overridden by user that were not touched by setup and individually set those. This is particularly useful when users have to specify primary and secondary * hybrid providers.
      8b2743f6
  5. 07 May, 2014 1 commit
  6. 02 May, 2014 1 commit
  7. 03 Apr, 2014 1 commit
  8. 27 Feb, 2012 2 commits
  9. 27 Jul, 2010 1 commit
  10. 02 Jan, 2010 1 commit
  11. 25 Aug, 2008 1 commit
  12. 21 Jul, 2008 1 commit
  13. 14 Jul, 2008 1 commit
  14. 13 Jun, 2008 1 commit
  15. 06 Jun, 2008 3 commits
  16. 23 May, 2008 2 commits
  17. 19 May, 2008 1 commit
  18. 05 May, 2008 1 commit
  19. 25 Apr, 2008 1 commit
  20. 08 Apr, 2008 1 commit
  21. 04 Apr, 2008 1 commit
  22. 01 Apr, 2008 2 commits
  23. 20 Mar, 2008 1 commit
  24. 29 Feb, 2008 1 commit
  25. 27 Feb, 2008 1 commit
  26. 20 Feb, 2008 1 commit
  27. 19 Feb, 2008 1 commit
  28. 14 Feb, 2008 2 commits
  29. 12 Feb, 2008 1 commit
  30. 03 Jan, 2008 1 commit
  31. 24 Dec, 2007 2 commits
  32. 19 Oct, 2007 1 commit
  33. 15 Aug, 2007 1 commit