Releases: nilsteampassnet/TeamPass
Releases · nilsteampassnet/TeamPass
3.1.3.7
e58cbe8
This commit was signed with the committer’s verified signature.
nilsteampassnet
Nils Laumaillé
What's Changed
- Merge tag '3.1.3.5' into develop by @nilsteampassnet in #4537
- Fix user creation by manager accounts #4540. by @corentin-soriano in #4541
- Fix displayed users and time in users_logged_in datatable. by @corentin-soriano in #4544
Full Changelog: 3.1.3.5...3.1.3.7
Important
- Requires at least
PHP 8.1 - New password library implemented, read about impacts
Languages
Please join Teampass v3 translation project on Poeditor and translate it for your language.
Installation
Follow instructions from Documentation.
Upgrade
Follow instructions from Documentation.
Ideas and comments
Are welcome ... please use Discussions.
Contributors
nilsteampassnet and corentin-soriano
Assets 2
3.1.3.5
What's Changed
- Fix for #4531
Full Changelog: 3.1.3.3...3.1.3.5
Important
- Requires at least
PHP 8.1 - New password library implemented, read about impacts
Languages
Please join Teampass v3 translation project on Poeditor and translate it for your language.
Installation
Follow instructions from Documentation.
Upgrade
Follow instructions from Documentation.
Ideas and comments
Are welcome ... please use Discussions.
3.1.3.3
What's Changed
- Merge tag '3.1.3.2' into develop by @nilsteampassnet in #4536
- Recreated the file with utf-8 encoding by @naranma in #4520
- Fix file overwrite when older file exists with same md5 checksum. by @corentin-soriano in #4527
New Contributors
Full Changelog: 3.1.3.2...3.1.3.3
Important
- Requires at least
PHP 8.1 - New password library implemented, read about impacts
Languages
Please join Teampass v3 translation project on Poeditor and translate it for your language.
Installation
Follow instructions from Documentation.
Upgrade
Follow instructions from Documentation.
Ideas and comments
Are welcome ... please use Discussions.
Contributors
nilsteampassnet, naranma, and corentin-soriano
Assets 2
3.1.3.2
What's Changed
- Merge tag '3.1.3.1' into develop by @nilsteampassnet in #4510
Full Changelog: 3.1.3.1...3.1.3.2
Important
- Requires at least
PHP 8.1 - New password library implemented, read about impacts
Languages
Please join Teampass v3 translation project on Poeditor and translate it for your language.
Installation
Follow instructions from Documentation.
Upgrade
Follow instructions from Documentation.
Ideas and comments
Are welcome ... please use Discussions.
Contributors
nilsteampassnet
Assets 2
3.1.3.1
d259cf4
This commit was signed with the committer’s verified signature.
nilsteampassnet
Nils Laumaillé
What's Changed
- Fix permissions issues on main.queries and users.queries. by @corentin-soriano in #4400
- Fix uninitialized variables. by @corentin-soriano in #4405
- Fix role visibility display issue. by @corentin-soriano in #4406
- Revert excessive filter on get_teampass_settings. by @corentin-soriano in #4411
- Fixing error in SQL syntax on /api/index.php/item/get?id=xxx by @nilsteampassnet in #4408
- Update spanish.php by @Pruebas77 in #4414
- Change password expiration calculation rules by @FengZh61 in #4413
- Update license reference by @emmanuel-ferdman in #4415
- Updating the items file import process by @FengZh61 in #4416
- Fix the problem of abnormal values of item key and created at in item attributes by @FengZh61 in #4421
- fix missing characters when exporting pdf by @FengZh61 in #4429
- fix jsUrl parameter error by @FengZh61 in #4428
- Fix user password expiration days error by @nilsteampassnet in #4432
- Force png image type on avatar upload. by @corentin-soriano in #4433
- Code review fixes by @nilsteampassnet in #4412
- Fix for #4425 by @nilsteampassnet in #4437
- Fix issue #4422: Resolve edit errors on previously CSV-imported items by @rcruz-pntlb in #4435
- Improved robustness for csv import by @nilsteampassnet in #4438
- Improve teampass cron detection. by @corentin-soriano in #4446
- Exclude personal folder from identAdmin function (admins can't have personal folders). by @corentin-soriano in #4447
- Fix undefined variable $results. by @corentin-soriano in #4448
- Improve clickable area on the item list. by @corentin-soriano in #4450
- Improve users_build_cache_tree scheduling. by @corentin-soriano in #4449
- Bug report contains the oauth2 tenant id by @nilsteampassnet in #4452
- Fix for oAuth2 admin page by @nilsteampassnet in #4451
- Libraries update by @nilsteampassnet in #4454
- Fix issue related to user allowed folder by definition by @nilsteampassnet in #4439
- Only update changed rows in $tree->rebuild() to reduce load latency. by @corentin-soriano in #4456
- Filter tags (keywords) values in items. by @corentin-soriano in #4457
- Use random encryption key instead and reset session id on login. by @corentin-soriano in #4460
- Remove login password from sessions. by @corentin-soriano in #4455
- Add strong user password policy. by @corentin-soriano in #4466
- Crypt session by @nilsteampassnet in #4465
- Improve get_complixity_level access control. by @corentin-soriano in #4467
- Update items.queries.php by @jhumphries in #4463
- Updated language files with new strings by @nilsteampassnet in #4468
- Remove unused endpoints in xxx.queries.php. by @corentin-soriano in #4471
- Fix OTC reset on multiple account without refresh page. by @corentin-soriano in #4473
- Clean XSS before html encode on csv and keepass imports. by @corentin-soriano in #4474
- Fix login issue with local accounts. by @corentin-soriano in #4477
- Code review by @nilsteampassnet in #4469
- Improve sql queries (break long lines, use SQL COUNT and more). by @corentin-soriano in #4470
- Anti bruteforce improvement by @corentin-soriano in #4476
- Get user info injection by @corentin-soriano in #4481
- Fix icon vertical alignment in tiems list by @nilsteampassnet in #4487
- Enforce password log on copy or shown action. by @corentin-soriano in #4488
- Fix backup restore process by @nilsteampassnet in #4486
- Verify user password to download user keys. by @corentin-soriano in #4489
- Fixed an issue that moved the item to another folder when editing it. by @corentin-soriano in #4490
- Reset session before redirect to upgrade.php. by @corentin-soriano in #4492
- Allow get_complexity_level in subfolders of user personal folder. by @corentin-soriano in #4493
- Remove list-item-clicktoshow from icon-container. by @corentin-soriano in #4494
- Anti bruteforce improvement by @corentin-soriano in #4496
- Remove remaining account enumeration on login page. by @corentin-soriano in #4480
- Fix items tasks error by @corentin-soriano in #4498
- Prevent inconsistencies on item edition when using multiple tabs or windows. by @corentin-soriano in #4499
- Allow admin to use MFA when MFA user role is defined. by @corentin-soriano in #4501
- Fix install by @nilsteampassnet in #4491
- Install improvements by @corentin-soriano in #4503
- Allow administrators to disable user profile editing features. by @corentin-soriano in #4502
- Improve condition that check if local storage and DOM are out of sync. by @corentin-soriano in #4504
- Updated language files with new strings. by @nilsteampassnet in #4505
- Add setting to disable drag and drop. by @corentin-soriano in #4507
New Contributors
- @Pruebas77 made their first contribution in #4414
- @FengZh61 made their first contribution in #4413
- @emmanuel-ferdman made their first contribution in #4415
- @rcruz-pntlb made their first contribution in #4435
- @jhumphries made their first contribution in #4463
Full Changelog: 3.1.2...3.1.3.1
Important
- Requires at least
PHP 8.1 - New password library implemented, read about impacts
Languages
Please join Teampass v3 translation project on Poeditor and translate it for your language.
Installation
Follow instructions from Documentation.
Upgrade
Follow instructions from Documentation.
Ideas and comments
Are welcome ... please use Discussions.
Contributors
nilsteampassnet, jhumphries, and 5 other contributors
Assets 2
Teampass 3.1.3
718c7fe
This commit was signed with the committer’s verified signature.
nilsteampassnet
Nils Laumaillé
What's Changed
- Fix permissions issues on main.queries and users.queries. by @corentin-soriano in #4400
- Fix uninitialized variables. by @corentin-soriano in #4405
- Fix role visibility display issue. by @corentin-soriano in #4406
- Revert excessive filter on get_teampass_settings. by @corentin-soriano in #4411
- Fixing error in SQL syntax on /api/index.php/item/get?id=xxx by @nilsteampassnet in #4408
- Update spanish.php by @Pruebas77 in #4414
- Change password expiration calculation rules by @FengZh61 in #4413
- Update license reference by @emmanuel-ferdman in #4415
- Updating the items file import process by @FengZh61 in #4416
- Fix the problem of abnormal values of item key and created at in item attributes by @FengZh61 in #4421
- fix missing characters when exporting pdf by @FengZh61 in #4429
- fix jsUrl parameter error by @FengZh61 in #4428
- Fix user password expiration days error by @nilsteampassnet in #4432
- Force png image type on avatar upload. by @corentin-soriano in #4433
- Code review fixes by @nilsteampassnet in #4412
- Fix for #4425 by @nilsteampassnet in #4437
- Fix issue #4422: Resolve edit errors on previously CSV-imported items by @rcruz-pntlb in #4435
- Improved robustness for csv import by @nilsteampassnet in #4438
- Improve teampass cron detection. by @corentin-soriano in #4446
- Exclude personal folder from identAdmin function (admins can't have personal folders). by @corentin-soriano in #4447
- Fix undefined variable $results. by @corentin-soriano in #4448
- Improve clickable area on the item list. by @corentin-soriano in #4450
- Improve users_build_cache_tree scheduling. by @corentin-soriano in #4449
- Bug report contains the oauth2 tenant id by @nilsteampassnet in #4452
- Fix for oAuth2 admin page by @nilsteampassnet in #4451
- Libraries update by @nilsteampassnet in #4454
- Fix issue related to user allowed folder by definition by @nilsteampassnet in #4439
- Only update changed rows in $tree->rebuild() to reduce load latency. by @corentin-soriano in #4456
- Filter tags (keywords) values in items. by @corentin-soriano in #4457
- Use random encryption key instead and reset session id on login. by @corentin-soriano in #4460
- Remove login password from sessions. by @corentin-soriano in #4455
- Add strong user password policy. by @corentin-soriano in #4466
- Crypt session by @nilsteampassnet in #4465
- Improve get_complixity_level access control. by @corentin-soriano in #4467
- Update items.queries.php by @jhumphries in #4463
- Updated language files with new strings by @nilsteampassnet in #4468
- Remove unused endpoints in xxx.queries.php. by @corentin-soriano in #4471
- Fix OTC reset on multiple account without refresh page. by @corentin-soriano in #4473
- Clean XSS before html encode on csv and keepass imports. by @corentin-soriano in #4474
- Fix login issue with local accounts. by @corentin-soriano in #4477
- Code review by @nilsteampassnet in #4469
- Improve sql queries (break long lines, use SQL COUNT and more). by @corentin-soriano in #4470
- Anti bruteforce improvement by @corentin-soriano in #4476
- Get user info injection by @corentin-soriano in #4481
- Fix icon vertical alignment in tiems list by @nilsteampassnet in #4487
- Enforce password log on copy or shown action. by @corentin-soriano in #4488
- Fix backup restore process by @nilsteampassnet in #4486
- Verify user password to download user keys. by @corentin-soriano in #4489
- Fixed an issue that moved the item to another folder when editing it. by @corentin-soriano in #4490
- Reset session before redirect to upgrade.php. by @corentin-soriano in #4492
- Allow get_complexity_level in subfolders of user personal folder. by @corentin-soriano in #4493
- Remove list-item-clicktoshow from icon-container. by @corentin-soriano in #4494
- Anti bruteforce improvement by @corentin-soriano in #4496
- Remove remaining account enumeration on login page. by @corentin-soriano in #4480
- Fix items tasks error by @corentin-soriano in #4498
- Prevent inconsistencies on item edition when using multiple tabs or windows. by @corentin-soriano in #4499
- Allow admin to use MFA when MFA user role is defined. by @corentin-soriano in #4501
- Fix install by @nilsteampassnet in #4491
- Install improvements by @corentin-soriano in #4503
- Allow administrators to disable user profile editing features. by @corentin-soriano in #4502
- Improve condition that check if local storage and DOM are out of sync. by @corentin-soriano in #4504
- Updated language files with new strings. by @nilsteampassnet in #4505
- Add setting to disable drag and drop. by @corentin-soriano in #4507
New Contributors
- @Pruebas77 made their first contribution in #4414
- @FengZh61 made their first contribution in #4413
- @emmanuel-ferdman made their first contribution in #4415
- @rcruz-pntlb made their first contribution in #4435
- @jhumphries made their first contribution in #4463
Full Changelog: 3.1.2...3.1.3
Important
- Requires at least
PHP 8.1 - New password library implemented, read about impacts
Languages
Please join Teampass v3 translation project on Poeditor and translate it for your language.
Installation
Follow instructions from Documentation.
Upgrade
Follow instructions from Documentation.
Ideas and comments
Are welcome ... please use Discussions.
Contributors
nilsteampassnet, jhumphries, and 5 other contributors
Assets 2
3.1.2
What's Changed
- Fix copy password log. by @corentin-soriano in #4293
- Add css/js script version to avoid cache issues on upgrade. by @corentin-soriano in #4286
- Avoid bypass maximum_session_expiration_time parameter. by @corentin-soriano in #4285
- Trim values to avoid break json. by @corentin-soriano in #4282
- BUGFIX - Cast all fields on API createUserJWT function call. by @corentin-soriano in #4280
- Sanitize import priv/pub keys field. by @corentin-soriano in #4268
- BUGFIX - Improve folder permissions. by @corentin-soriano in #4262
- BUGFIX - Fix user personnal folder creation. by @corentin-soriano in #4257
- Fix for broken JSON response when ldap group id is binary by @simonpoess in #4185
- SEC - Remove generateBugReport for non admin users by @corentin-soriano in #4206
- Remove space in .scrutinizer.yml filename by @rokx in #4220
- BUGFIX - Add short timeout to fsocksopen and use host/port of duo API. by @corentin-soriano in #4222
- BUGFIX - Fix blank pages. by @corentin-soriano in #4223
- BUGFIX - Fix multiple issues on login page by @corentin-soriano in #4228
- BUGFIX - Correct issues in delete items in list by @corentin-soriano in #4230
- BUGFIX - Avoid break tp.config.php file with single quote in parameter value. by @corentin-soriano in #4231
- BUGFIX - Redirect on item view after authentication if an unauthenticated user opened direct link. by @corentin-soriano in #4234
- Add username, mail and url next to description in item view. by @corentin-soriano in #4235
- SEC - Correct LFI. by @corentin-soriano in #4236
- SEC - Use session user id instead of user input to download or reset user keys by @corentin-soriano in #4237
- SEC - Correct multiple XSS by @corentin-soriano in #4238
- SEC - Correct bypass upload filters vulnerability. by @corentin-soriano in #4239
- SEC - Correct wrong access control by @corentin-soriano in #4240
- BUGFIX - Don't close item view when using copy item link. by @corentin-soriano in #4254
- BUGFIX - Correct email formatting by @corentin-soriano in #4255
- BUGFIX - Upgrade process improvement and speedup by @corentin-soriano in #4256
- UI - Improve items page UX to see tree/items list and items details simultaneously. by @corentin-soriano in #4273
- BUGFIX - Fixing email content wrongly escaped and broken on mail client by @lucasfoussier in #4304
- BUGFIX - Escaping email inner content only when necessary by @lucasfoussier in #4309
- Sanitize import priv/pub keys field. by @corentin-soriano in #4321
- Delete by id instead of key to gain reliability. by @corentin-soriano in #4322
- Highlight selected/favorites items and reverse default limited-search value by @corentin-soriano in #4325
- Automatically detect ldap password change by @corentin-soriano in #4323
- Update oauth.php by @kcbieng in #4329
- Update AzureAuthController.php and ActiveDirectoryExtra.php by @kcbieng in #4327
- Completes the implementation of the nb_items_by_query parameter. by @corentin-soriano in #4330
- Fix error with wrong variable name on item creation. by @corentin-soriano in #4333
- Fix issues on folders. by @corentin-soriano in #4334
- Add support of generic OAuth2 provider in addition to MS Azure, auto-login and fix security issue. by @corentin-soriano in #4332
- Fix cache error on folder creation. by @corentin-soriano in #4335
- Add strong default password length for generation. by @corentin-soriano in #4336
- Fix favorites remove issue. by @corentin-soriano in #4338
- Auto select jstree folder on path elems click. by @corentin-soriano in #4339
- Fix copy password with html encoding. by @corentin-soriano in #4340
- Revert unresolved merge conflict from c79627e and unused install1 folder by @corentin-soriano in #4347
- Completes the implementation of the encryptClientServer parameter . by @corentin-soriano in #4337
- Speedup keepass import by adding batch processing and sql transactions. by @corentin-soriano in #4342
- Speedup copy/delete folder and copy item actions. by @corentin-soriano in #4343
- Revert from 9a57084 by @corentin-soriano in #4348
- Fix invisible new created folder in personal space and avoid double jstree selection on creation. by @corentin-soriano in #4344
- Add access grant check on backend side. by @corentin-soriano in #4346
- Add support of PWA (full screen app) with Window Controls Overlay. by @corentin-soriano in #4277
- Remove tp config by @nilsteampassnet in #4349
- Speedup populateItemsTable_CreatedAt execution. by @corentin-soriano in #4353
- Fix for local accounts when oauth2 is disabled. by @corentin-soriano in #4354
- Add setting for build_cache_tree task batch. by @corentin-soriano in #4355
- Vulnerability log injection by @nilsteampassnet in #4359
- Fix pwd issues by @corentin-soriano in #4360
- Vulnerability creating admin user with a normal account by @nilsteampassnet in #4363
- Fixing a vulnerability where a standard user could disable any user by @nilsteampassnet in #4367
- Hide duo secret key. by @corentin-soriano in #4369
- Fixing vulnerability with clear password in email log by @nilsteampassnet in #4371
- Replace tp.config.php by ConfigManager and remove obsoletes functions. by @corentin-soriano in #4372
- Vulnerability using API authorization with SQL Injection by @nilsteampassnet in #4373
- Profile fixes by @evertton in #4377
- Fix config issues. by @corentin-soriano in #4385
- Fix search input background color #4374 by @corentin-soriano in #4384
- Fix users encoding #4316 by @corentin-soriano in #4383
- Code review fixes by @nilsteampassnet in #4379
- Fix for encryptClientServer input field by @nilsteampassnet in #4387
- Add minor version on static scripts. by @corentin-soriano in #4389
- Fix issue with PWA on subpaths. by @corentin-soriano in #4390
- Add email field to admin account setup #4382 by @evertton in #4388
- Fix SQL injection on store_user_changes. by @corentin-soriano in #4395
- Fix user confidential infos leak. by @corentin-soriano in #4394
- Fix applicative privilege escalation. by @corentin-soriano in #4397
- Vulnerability during install by @nilsteampassnet in #4392
- Fix settings last modification. by @corentin-soriano in https://github.com/nilsteampassnet/TeamP...
Contributors
nilsteampassnet, evertton, and 5 other contributors
Assets 2
Teampass 3.1.1
What's new
This release embeds next fixes:
- Improved upgrade from V2
- Improved upgrade process
- Improved attachment download
- Optimized background tasks handler
- Fixed and improved deletion utility
- Added minimal edition lock delay for an item
- Fixed issue in deleting folder if user has his cache table not updated
- Fixed issue in search page, clicking on pwd copying icon doesn't work
- Fixed issue in search filter
- Fixed number of users online
- Fixed issue in OTV
- Fixes for #4005, #4006, #4016, #4018, #3968, #4021, #4014, #3986, #4048, #4049, #4056, #4058
- Security: removed all usage of $_GET, $_POST and $_SERVER variables
- Full list of changes: 3.1.0 -> 3.1.1
Important
- Requires at least
PHP 8.1 - New password library implemented, read about impacts
Languages
Please join Teampass v3 translation project on Poeditor and translate it for your language.
Installation
Follow instructions from Documentation.
Upgrade
Follow instructions from Documentation.
Ideas and comments
Are welcome ... please use Discussions.
Teampass 3.1.0
What's new
This release embeds next fixes:
- Requires at least
PHP 8.1 - Full list of changes: 3.0.10 -> 3.1.0
Languages
Please join Teampass v3 translation project on Poeditor and translate it for your language.
Installation
Follow instructions from Documentation.
Upgrade
Follow instructions from Documentation.
Ideas and comments
Are welcome ... please use Discussions.
Teampass 3.0.10
What's new
This release embeds next fixes:
- Full list of changes: 3.0.9 -> 3.0.10
Languages
Please join Teampass v3 translation project on Poeditor and translate it for your language.
Installation
Follow instructions from Documentation.
Upgrade
Follow instructions from Documentation.
Ideas and comments
Are welcome ... please use Discussions.