e71f50f664
Move TrustProxies to highest priority - fixes maintenance mode ip whitelist if behind proxy e.g. Cloudflare ( #5055 )
2019-07-10 09:11:28 -06:00
f8e455e358
Fix type hint for case of trusting all proxies (string) ( #5025 )
2019-05-14 07:28:37 -06:00
44d274174f
Revert "[5.8] Modify RedirectIfAuthenticated middleware to accept multiple guards"
2019-02-24 18:51:07 -06:00
247f7f9619
Update RedirectIfAuthenticated.php
2019-01-16 09:05:51 -06:00
bb79dda1ff
Modify RedirectIfAuthenticated middleware to accept multiple guards
2019-01-14 17:47:22 +02:00
4070dc98d4
fix conflicts
2018-12-18 09:06:40 -06:00
6d75f17af5
Update Kernel.php
2018-11-20 11:19:31 -05:00
3671ad399d
changed syntax for validation
...
Changed the syntax for the validation to be more aligned to the proposed way of implementing custom validations in the docs: https://laravel.com/docs/5.7/validation#custom-validation-rules
2018-10-16 22:36:12 +02:00
6f3aa7a4c5
Don't redirect for api calls
...
When calling api routes the Authenticate middleware attempts to redirect you to the login page. If you expect JSON back or don't have auth routes then you don't want this to happen. By re-using the logic from Laravel's exception handler on which format to output we can also determine wether to redirect the user to the login page or give them a JSON error response.
2018-10-12 15:40:15 +02:00
1cb18d11ac
Merge pull request #4794 from jakebathman/change-password-min-length-to-8
...
[5.8] Change password min length to 8
2018-10-05 14:23:33 -05:00
325ae7ac69
Update `RegisterController` password validation rule and associated lang file
2018-10-05 13:54:15 -05:00
52fe45dd7b
Fix 'resent' ambiguity
2018-09-16 17:32:31 +02:00
9838f79d2c
wip
2018-09-08 11:06:07 -05:00
04960ed8be
Update Kernel.php
2018-09-07 16:24:35 -05:00
7f6ec77e69
Update Kernel.php
...
StyleCI fixes
2018-09-07 16:22:40 -05:00
0eb1a8f3bc
Update Kernel.php
2018-09-07 16:20:54 -05:00
b354a35272
Update HttpKernel to use Authenticate middleware under App namespace
...
The `Authenticate` middleware is intended to be called in a specific order before applying developer-listed middleware. In 5.7, it was changed to `App\Http\Middleware\Authenticate` but the priority still lists it as living under `Illuminate\Auth\Middleware\Authenticate`.
This proposed fix moves that priority array to `App\Http\Kernel` and changes the reference to the userland class.
2018-09-07 15:58:40 -05:00
8c3e7603eb
Update VerificationController.php
2018-09-07 19:44:33 +10:00
2c5633d334
Remove unnecessary use on verification controller
2018-09-05 00:24:52 -04:00
bf9836a785
Merge branch 'master' into develop
2018-07-19 07:48:44 -05:00
6bd50e79a9
Adding boilerplate maintenance middleware with excepted URIs array
2018-07-12 01:13:44 +02:00
b65c8245f7
formatting
2018-07-03 09:39:43 -05:00
76af90b50c
Add addHttpCookie to VerifyCsrfToken
2018-07-03 16:37:01 +02:00
cd594395d9
add signed
2018-06-21 11:13:00 -05:00
69e92d6454
initial pass
2018-06-21 11:08:49 -05:00
2683de7082
Request::HEADER_X_FORWARDED_ALL is an int
...
=30
2018-04-06 20:15:18 +02:00
20b9daa8f3
Request::HEADER_X_FORWARDED_ALL is an integer
...
it is int(30)
2018-04-06 20:13:20 +02:00
4369e9144c
add middleware
2018-03-14 12:40:35 -05:00
a14e62325c
customizable redirect on auth failure
2018-03-13 16:09:47 -05:00
3332ff4cb2
add argon support to create method in RegisterController
2018-02-10 22:03:08 +01:00
260a8ab2d0
wording
2017-12-19 08:21:38 -06:00
0512abee6b
Merge pull request #4515 from dunglas/add-set-cache-headers-middleware
...
[5.6] Add the SetCacheHeaders middleware
2017-12-19 08:11:53 -06:00
e823795325
using correct header to use "ALL" x-forwarded-* headers
2017-12-19 06:52:00 -06:00
6779a2759e
Trusted proxy to version 4.0 for laravel 5.6
2017-12-19 06:48:46 -06:00
dabd0686be
Update Kernel.php
2017-12-18 19:30:09 -06:00
bcaeb32430
Update Kernel.php
2017-12-18 19:29:49 -06:00
6e9c0c8852
Add the SetCacheHeaders middleware
2017-12-18 16:31:33 +01:00
d0ce75926f
Merge branch 'master' into develop
2017-07-11 13:26:38 -05:00
8ceb2fddb7
Fix docblock.
2017-07-03 11:17:19 +02:00
c9e47da895
Changes header keys for TrustProxies to non deprecated version
2017-06-28 17:52:56 -04:00
11dfcf6d1a
fix conflicts
2017-05-07 09:56:20 -05:00
9aeef9812a
More clear way to assign middleware in controller
...
Assign guest middleware to LoginController using documented way https://laravel.com/docs/5.4/controllers#controller-middleware
to avoid confusing with $options array values meaning.
2017-04-18 19:13:35 +07:00
2f111d54ba
Merge branch 'master' into develop
2017-04-17 15:30:50 -05:00
99fca4daef
Update RegisterController.php
2017-04-07 21:11:39 +01:00
33c4cab6b7
adjust wording
2017-03-29 10:06:39 -05:00
e23a1d284f
add trust proxy middleware
2017-03-29 10:05:16 -05:00
54c5e1585a
Trim and convert strings to nulls.
2017-01-17 15:35:36 -06:00
590257fbf6
Comment out by default.
2017-01-16 11:08:54 -06:00
01ad31584b
add auth session middleware to web group
2017-01-16 11:08:54 -06:00
36875bb98e
Merge branch 'master' into develop
2016-12-29 13:03:32 +00:00
077d404c5f
list post check middleware
2016-12-19 12:36:33 -06:00
fff42ec631
Redirect for registration only
2016-11-17 09:25:40 +00:00
fdef1b6fbe
Merge pull request #4007 from vinkla/patch-1
...
Use fullpath for validator facade
2016-10-17 09:00:25 -05:00
6325610070
Use fullpath for validator facade
...
Added fullpath import for the validator facade.
2016-10-17 15:55:26 +02:00
6b73fae8d7
Add redirectTo attribute to the reset password controller
2016-10-16 03:44:24 +03:00
31fce5c503
change wording
2016-09-06 20:49:16 -05:00
30d0e2dcca
fix comments
2016-09-06 17:39:17 -05:00
7b1ab65623
Delete app/Http/Requests directory
2016-08-10 12:30:17 -04:00
ca7c973280
fix length
2016-08-01 08:51:52 -05:00
813c9411b6
fix wrong spelling
...
applications
2016-07-30 14:30:05 +08:00
24766d479d
redirect to home if authed
2016-07-23 15:39:33 -05:00
7ec26ce916
Tweak location of routes files.
2016-07-14 09:36:17 -05:00
b5a8c27991
add files
2016-07-10 15:31:28 -05:00
9c817e7aef
use new auth features
2016-07-10 15:31:23 -05:00
4a44a0d3d5
no longer need this trait out of the box
2016-07-10 09:39:37 -05:00
9ecfa9cf8e
specify middleware directly
2016-07-10 08:48:46 -05:00
e5dfb05247
message updates
2016-06-06 21:43:34 -05:00
b6bd185048
Merge branch 'master' into develop
2016-05-30 12:03:49 +01:00
4f018159b8
Update can middleware to new namespace
2016-05-29 22:27:14 -04:00
19f8537829
fix namespace
2016-05-26 13:53:39 -05:00
945052508f
Use the Authenticate middleware from core
2016-05-26 13:07:11 -04:00
3ddaf3f901
Merge pull request #3783 from JosephSilber/authenticate
...
[5.3] Make the Authenticate middleware throw an AuthenticationException
2016-05-26 08:16:54 -05:00
c332ad9582
fix typo
2016-05-25 09:24:11 -05:00
6dfc0229b2
Make the Authenticate middleware throw an AuthenticationException
2016-05-22 14:50:39 -04:00
728151f5de
Applied fixes from StyleCI
2016-05-13 14:19:42 -04:00
332731f88b
Added the new bindings middleware
2016-05-13 19:19:27 +01:00
336d80c1f1
Get guest middleware using guestMiddleware() method
...
guestMiddleware() defined on ResetsPasswords trait
This change is required to fix issue #13383
Depends on pull request laravel/framework#13384
2016-04-30 12:39:22 +05:30
749528db0c
remove unneeded trait
2016-04-28 10:28:26 -05:00
020bf231ba
Merge branch 'master' into develop
2016-04-27 14:00:46 +01:00
0d8e71cd92
Update Kernel.php
2016-04-01 16:00:36 -05:00
541e66789b
Fixed typo
2016-04-01 20:27:17 +01:00
39ba051a78
Add support for the authorize middleware and AuthorizesRequests trait
2016-03-30 11:58:14 -04:00
0909dc2572
Merge branch 'master' into develop
2016-03-30 13:11:35 +01:00
f7d05cbbaa
Set the default driver from the Authenticate middleware
2016-03-28 09:48:35 -04:00
5c30c98db9
just use web group by default
2016-03-23 17:04:42 -05:00
1d5e88d0fb
update default routes file
2016-03-22 13:49:35 -05:00
703197e27a
Allow passing multiple gaurds to the auth middleware
2016-03-17 10:22:19 -07:00
590593e0af
Fixed order of password validation in registration
2016-03-02 20:48:02 +01:00
62d62a0524
update method call
2016-02-22 22:19:31 -06:00
5b3c5f3f4e
Don't return a login page to a JSON request
...
Currently, any unauthorized API requests that pass through the `auth` middleware get a redirect to the login page. Adding the `wantsJson` flag to the conditional corrects this behavior.
2016-01-22 10:01:39 -06:00
99b97ca7ca
Change redirecTo in AuthController
2015-12-25 15:41:28 +08:00
3eb8613ff8
Comment fix.
2015-12-14 09:44:17 -06:00
171de278d7
Note of explanation.
2015-12-13 14:31:22 -06:00
a98759b264
Applied fixes from StyleCI
2015-12-11 17:50:16 -05:00
b70dbaf7a1
define an api group as an example
2015-12-11 16:49:20 -06:00
fa3495a28d
comment changes
2015-12-11 16:31:19 -06:00
527306a14c
Remove terminology for "web routes".
2015-12-09 13:36:47 -06:00
587e514719
Middleware groups, define web group, configure routes file.
2015-12-09 11:12:27 -06:00
1d0853b638
Add throttle middleware.
2015-12-07 21:27:16 -06:00
2ea2ae0f3f
allow guard to be specified on middleaware
2015-12-05 21:56:17 -06:00
Gary Green
Matt Hanley
Taylor Otwell
Te7a-Houdini
Carl Olsen
brainmaniac
Dries Vints
jakebathman
Oliver Payne
Matt Hollis
Laurence Ioannou
Eliurkis Diaz
Tobias
Barry vd. Heuvel
Viktor Szépe
Ricard
Chris Fidao
Kévin Dunglas
Lucas Michot
Brian Retterer
Ilya Kudin
Graham Campbell
Matt McDonald
Vincent Klaiber
Ron Melkhior
Taylor Otwell
Francisco Daniel
Joseph Silber
Alex
Sadika Sumanapala
Juan Martinez
Jad Joubran
Jacob Bennett
phecho