PHPCredLocker is a secure web-based repository for credentials. Intended for teams who need to share credentials, the system aims to store all content securely
Development and issues were previously tracked on
GitHub
Issues can be raised by emailing
phpcredlocker AT bentasker.co.uk. To comment on an existing issue, include it's issue key in the subject line.
Early development of PHPCredlocker was tracked in
BUGGER Project 43
| Key | Type | Pty | Summary | Status | Resolution | Created | Assigned To |
| PHPCRED-1 |
Bug |
Major |
Customer deletion logging currently pointless |
Closed |
Won't Fix |
2013-12-07 00:02:19 |
|
| PHPCRED-2 |
Task |
Major |
Identify Possible Security Enhancements |
Closed |
Won't Fix |
2013-12-07 00:03:06 |
|
| PHPCRED-3 |
Task |
Major |
Build Help System |
Closed |
Won't Fix |
2013-12-07 00:03:44 |
|
| PHPCRED-4 |
New Feature |
Major |
Plugin Installer |
Closed |
Won't Fix |
2013-12-07 00:04:16 |
|
| PHPCRED-5 |
New Feature |
Major |
Group Specific Encryption |
Closed |
Won't Fix |
2013-12-07 00:05:23 |
|
| PHPCRED-6 |
Bug |
Critical |
Installer always reports failure to obfuscate plugin path |
Closed |
Cannot Reproduce |
2013-12-07 00:06:26 |
|
| PHPCRED-7 |
Bug |
Major |
Views not using Language Strings |
Closed |
Won't Fix |
2013-12-07 00:06:58 |
|
| PHPCRED-8 |
Bug |
Major |
Unable to delete more than one user without refreshing |
Closed |
Cannot Reproduce |
2013-12-07 00:07:40 |
|
| PHPCRED-9 |
New Feature |
Major |
Two Factor Authentication |
Closed |
Won't Fix |
2013-12-07 00:10:41 |
|
| PHPCRED-10 |
Task |
Major |
Re-License Project to A-GPL |
Closed |
Fixed |
2013-12-07 00:13:30 |
|
| PHPCRED-11 |
New Feature |
Major |
Double Blind Encryption |
Closed |
Won't Fix |
2013-12-07 00:34:18 |
|
| PHPCRED-12 |
Task |
Blocker |
Test and Release |
Closed |
Done |
2013-12-07 00:35:24 |
|
| PHPCRED-13 |
New Feature |
Major |
Password Usage Search |
Closed |
Won't Fix |
2013-12-07 00:52:43 |
|
| PHPCRED-14 |
Bug |
Major |
|
Closed |
Fixed |
2013-12-07 13:37:01 |
|
| PHPCRED-15 |
Sub-task |
Major |
Minify Javascript |
Closed |
Done |
2013-12-07 13:47:56 |
|
| PHPCRED-16 |
Sub-task |
Major |
Update Version Number |
Closed |
Won't Fix |
2013-12-07 13:48:54 |
Unassigned |
| PHPCRED-17 |
Task |
Major |
Update JS License headers |
Closed |
Done |
2013-12-07 13:56:22 |
|
| PHPCRED-18 |
Bug |
Major |
Partially incorrect blind password doesn't raise an error |
Resolved |
Fixed |
2013-12-08 15:55:02 |
|
| PHPCRED-19 |
Bug |
Major |
When decryption fails, the cred sits at 'Retrieving' |
Resolved |
Done |
2013-12-08 16:13:04 |
|
| PHPCRED-20 |
Sub-task |
Major |
Consider improvements to Double-Blind encryption |
Closed |
Won't Fix |
2013-12-08 16:27:16 |
|
| PHPCRED-21 |
Sub-task |
Major |
Disable Plugins when Password is double-blind |
Closed |
Won't Fix |
2013-12-08 16:39:45 |
|
| PHPCRED-23 |
New Feature |
Major |
Add comment tool tips to 'View by type' |
Closed |
Won't Fix |
2014-01-12 17:17:51 |
Unassigned |
| PHPCRED-24 |
Task |
Major |
Document current TLS implementation |
Closed |
Won't Fix |
2014-07-24 21:35:20 |
|
| PHPCRED-25 |
Task |
Major |
Keylength calculation incorrect |
Resolved |
Done |
2014-07-25 01:20:45 |
|
| PHPCRED-26 |
Task |
Major |
Check PHPCredLocker on a Raspberry Pi |
Closed |
Done |
2014-07-25 02:21:51 |
|
| PHPCRED-27 |
Bug |
Major |
An Injected Session will still be accepted if the Sessionkey is blank |
Closed |
Fixed |
2014-07-28 16:02:56 |
|
| PHPCRED-28 |
Bug |
Major |
Users won't be able to log-in if they access through a reverse proxy using a different hostname |
Closed |
Done |
2014-08-05 11:18:09 |
|
| PHPCRED-29 |
New Feature |
Major |
Audit log by email plugin |
Closed |
Done |
2014-08-06 00:08:08 |
|
| PHPCRED-31 |
Bug |
Major |
Generate Password link broken on User creation page |
Closed |
Fixed |
2014-08-07 00:01:06 |
|
| PHPCRED-32 |
Bug |
Major |
User Deletion isn't currently logged |
Closed |
Fixed |
2014-08-07 00:24:18 |
|
| PHPCRED-33 |
New Feature |
Major |
Call Log plugins when an IP is banned |
Closed |
Done |
2014-08-07 00:25:19 |
|
| PHPCRED-34 |
Bug |
Major |
Editing a Credential type isn't currently logged |
Closed |
Fixed |
2014-08-07 00:26:12 |
|
| PHPCRED-35 |
Bug |
Major |
IDV: User's IP is only banned when using valid usernames |
Closed |
Fixed |
2014-08-07 00:52:50 |
|
| PHPCRED-36 |
New Feature |
Major |
Automatically Check if Updated Version is available |
Closed |
Won't Fix |
2014-08-07 01:52:36 |
|
| PHPCRED-37 |
New Feature |
Major |
Replace mt_rand() usage with something more secure |
Closed |
Done |
2014-08-07 21:52:56 |
|
| PHPCRED-38 |
New Feature |
Major |
Re-Key script |
Closed |
Done |
2014-08-07 22:35:42 |
|
| PHPCRED-39 |
New Feature |
Major |
Utility script for viewing audit logs |
Closed |
Won't Fix |
2014-09-09 07:48:33 |
|
| PHPCRED-40 |
New Feature |
Major |
Allow new keys to be seeded with a Yubikey press |
Closed |
Won't Fix |
2014-10-25 16:30:23 |
|
| PHPCRED-43 |
New Feature |
Major |
Password Sharing Plugin |
Closed |
Won't Fix |
2015-08-27 00:53:09 |
|