1. 16 Mar, 2021 2 commits
    • David Mudrák's avatar
      MDL-67748 admin: Improve get_missing_capabilities_by_users() · c07f15d7
      David Mudrák authored
      The previous implementation falsely reported all implicit capabilities
      inherited from the authenticated user archetype. That caused a lot of
      capabilities reported as missing, even if they were correctly granted.
      
      This new implementation uses a different logic. Instead of seeking for
      explicitly assigned capabilities, it searches for capabilities that are
      not assigned to any of the user's role across the system.
      
      Please refer to the inline documentation. This should be still used for
      informative reports only, not for actual permissions evaluation. The
      context has been ignored here, as well as all the overrides etc. This
      patch just makes it a lesser evil.
      c07f15d7
    • David Mudrák's avatar
      MDL-67748 admin: Move the web services under the server administration · 2bf6db2d
      David Mudrák authored
      I suppose the original reasoning was that the web services protocols are
      pluggable and that plugins can provide external function. But those are
      not good reasons to put the whole Web services section under plugins.
      Web services are not a plugin type and they always felt very
      counter-intuitive there.
      
      From the server administrtaion perspective, web services are similar to
      scheduled tasks and therefore, they should live in the same section.
      2bf6db2d
  2. 26 Sep, 2020 1 commit
  3. 19 Feb, 2020 1 commit
  4. 29 Nov, 2019 1 commit
  5. 29 Mar, 2019 1 commit
  6. 20 Aug, 2018 1 commit
  7. 22 Mar, 2018 1 commit
  8. 31 Aug, 2017 1 commit
  9. 31 Jul, 2017 2 commits
  10. 05 Nov, 2016 1 commit
  11. 14 Oct, 2016 1 commit
  12. 06 Oct, 2016 1 commit
  13. 12 Sep, 2016 1 commit
  14. 07 Sep, 2016 1 commit
  15. 15 Jun, 2016 1 commit
  16. 27 Apr, 2016 1 commit
  17. 14 Apr, 2016 1 commit
  18. 21 Mar, 2016 1 commit
  19. 16 Feb, 2016 1 commit
  20. 05 Jan, 2016 1 commit
  21. 29 Sep, 2014 1 commit
  22. 02 Oct, 2013 1 commit
  23. 24 Sep, 2013 1 commit
  24. 21 Sep, 2013 1 commit
    • Petr Škoda's avatar
      MDL-31501 rework user session architecture · d79d5ac2
      Petr Škoda authored
      List of changes:
       * New OOP API using PHP namespace \core\session\.
       * All handlers now update the sessions table consistently.
       * Experimental DB session support in Oracle.
       * Full support for session file handler (filesystem locking required).
       * New option for alternative session directory.
       * Official memcached session handler support.
       * Workaround for memcached version with non-functional gc.
       * Improved security - forced session id regeneration.
       * Improved compatibility with recent PHP releases.
       * Fixed borked CSS during install in debug mode.
       * Switched to file based sessions in new installs.
       * DB session setting disappears if DB does not support sessions.
       * DB session setting disappears if session handler specified in config.php.
       * Fast purging of sessions used in request only.
       * No legacy distinction -  file, database and memcached support the same functionality.
       * Session handler name included in performance info.
       * Fixed user_loggedin and user_loggedout event triggering.
       * Other minor bugfixing and improvements.
       * Fixed database session segfault if MUC disposed before $DB.
      
      Limitations:
       * Session access time is now updated right after session start.
       * Support for $CFG->sessionlockloggedinonly was removed.
       * First request does not update userid in sessions table.
       * The timeouts may break badly if server hosting forces PHP.ini session settings.
       * The session GC is a lot slower, we do not rely on external session timeouts.
       * There cannot be any hooks triggered at the session write time.
       * File and memcached handlers do not support session lock acquire timeouts.
       * Some low level PHP session functions can not be used directly in Moodle code.
      d79d5ac2
  25. 14 May, 2013 1 commit
  26. 11 Feb, 2013 1 commit
  27. 26 Sep, 2012 1 commit
  28. 24 Aug, 2012 1 commit
  29. 01 Aug, 2012 1 commit
  30. 30 Jul, 2012 1 commit
  31. 26 Jul, 2012 1 commit
  32. 31 May, 2012 1 commit
  33. 18 May, 2012 1 commit
  34. 18 Apr, 2012 1 commit
  35. 17 Apr, 2012 1 commit
  36. 29 Mar, 2012 1 commit
  37. 02 Mar, 2012 1 commit
  38. 15 Feb, 2012 1 commit