Project

General

Profile

Actions

Task #32864

closed

Add note on modified authentication services to NEWS.txt

Added by Helmut Hummel almost 13 years ago. Updated about 6 years ago.

Status:
Closed
Priority:
Should have
Assignee:
Category:
-
Target version:
-
Start date:
2011-12-29
Due date:
% Done:

100%

Estimated time:
TYPO3 Version:
PHP Version:
Tags:
Complexity:
Sprint Focus:

Description

Here is my suggestion for NEWS.txt:

  • Authentication Services

With this version the authentication chain has been cleaned up so that third party authentication services can benefit from rsa encrypted login without the need of decrypting the submitted password in their own code. The extension rsaauth will now decrypt the password and provide the decrypted version for other services. So external authentication services can access the clear text password always through $this->loginData['uident_text'] no matter if the password has been transmitted a clear text during the login or rsaauth has decrypted it.

Due to major changes in the login service of rsaath all extensions which use XCLASS to extend this class most likely will fail, whereas other extension which make proper use of the public API of the rsaauth extensions will continue working without a problem. In any case it is recommended to adjust external authentication services to benefit from the changes.

Everything will be covered in greater detail in the new chapter about authentication services (#31413)


Related issues 1 (0 open1 closed)

Related to TYPO3 Core - Feature #30271: Refactor login services to separate password transmission and password compareClosedHelmut Hummel2011-09-25

Actions
Actions

Also available in: Atom PDF