diff options
author | Dylan William Hardison <dylan@hardison.net> | 2015-08-24 20:04:19 +0200 |
---|---|---|
committer | Dylan William Hardison <dylan@hardison.net> | 2015-08-24 20:04:48 +0200 |
commit | d03b432557e0422d5b0dbd32e82d36d3f9a5b68a (patch) | |
tree | 062a315373e97c80804ffcdfde989612a50003fe /Bugzilla/Auth/Login | |
parent | 59f96419500ae8c1b87b06abb0a5cca9f165b030 (diff) | |
download | bugzilla-d03b432557e0422d5b0dbd32e82d36d3f9a5b68a.tar.gz bugzilla-d03b432557e0422d5b0dbd32e82d36d3f9a5b68a.tar.xz |
Bug 1192687 - add the ability for users to view and revoke existing sessions
Diffstat (limited to 'Bugzilla/Auth/Login')
-rw-r--r-- | Bugzilla/Auth/Login/Cookie.pm | 11 |
1 files changed, 10 insertions, 1 deletions
diff --git a/Bugzilla/Auth/Login/Cookie.pm b/Bugzilla/Auth/Login/Cookie.pm index e1faa52d0..46024bca4 100644 --- a/Bugzilla/Auth/Login/Cookie.pm +++ b/Bugzilla/Auth/Login/Cookie.pm @@ -19,7 +19,7 @@ package Bugzilla::Auth::Login::Cookie; use strict; use base qw(Bugzilla::Auth::Login); -use fields qw(_login_token); +use fields qw(_login_token _cookie); use Bugzilla::Constants; use Bugzilla::Error; @@ -58,6 +58,8 @@ sub get_login_info { @{$cgi->{'Bugzilla_cookie_list'}}; $user_id = $cookie->value if $cookie; } + trick_taint($login_cookie) if $login_cookie; + $self->cookie($login_cookie); # If the call is for a web service, and an api token is provided, check # it is valid. @@ -155,4 +157,11 @@ sub login_token { }; } +sub cookie { + my ($self, $val) = @_; + $self->{_cookie} = $val if @_ > 1; + + return $self->{_cookie}; +} + 1; |