What's Changed
- Fix: restore API connected users visibility in Utilities Database by @guerricv in #5048
- Removed deleted users from admin page statistics
- Ensured that new user has correct phpseclib version
- Fix #5046:
- Fixed user key encryption using SHA-256 to match declared encryption_version 3
- Fixed aesDecrypt() returning false instead of throwing exception, preventing SHA-256/SHA-1 fallback
- Fixed attemptTransparentRecovery() not returning private_key_clear on success
- Fixed AD users first login: private key is now re-encrypted with AD password via transparent recovery
- Fixed null private key passed to decryptUserObjectKey() during login
- Fix #5046 - Ensured the encryption settings were correctly set
Full Changelog: 3.1.6.0...3.1.6.1
Last important topics
- 3.1.6.0 - Migration is forced when user is login. If you want to migrate progressively, set
FORCE_PHPSECLIBV3_MIGRATIONtoFALSE(in file./includes/config/include.php). - 3.1.5.10 - Refactor: Remove user password sanitization (see documentation)
- 3.1.5.2 - New: Personal items migration phase implemented with improved management (see documentation)
- 3.1.5.0 - New: transparent user password recovery in case of password change in external AD (please read documentation)
Important
- Requires at least
PHP 8.1 - New password library implemented, read about impacts
Languages
Please join Teampass v3 translation project on Poeditor and translate it for your language.
Installation
Follow instructions from Documentation.
Upgrade
Follow instructions from Documentation.
Ideas and comments
Are welcome ... please use Discussions.