summaryrefslogtreecommitdiffstats
path: root/Bugzilla/Auth.pm
AgeCommit message (Collapse)AuthorFilesLines
2017-07-07Bug 1377933 - Remove trailing whitespace from all perl filesDylan William Hardison1-19/+19
2016-09-13Bug 1283930 - Add Makefile.PL & local/lib/perl5 support to bmo/master + ↵Dylan William Hardison1-21/+8
local symlink to data/ directory
2016-09-12Revert "Bug 1283930 - Add Makefile.PL & local/lib/perl5 support to ↵Dylan William Hardison1-8/+21
bmo/master + local symlink to data/ directory" This reverts commit e6bf4cacb10f86077fe898349485f5c7ab9fb4b6.
2016-09-12Bug 1283930 - Add Makefile.PL & local/lib/perl5 support to bmo/master + ↵Dylan William Hardison1-21/+8
local symlink to data/ directory
2015-10-08Bug 1202281 - BMO login being reset for every browser sessionByron Jones1-2/+2
2015-09-29Bug 1199090 - add printable recovery 2fa codesByron Jones1-2/+2
2015-09-23Bug 1199087 - extend 2fa protection beyond loginByron Jones1-7/+31
2015-09-01Bug 1197073 - add support for 2fa using totp (eg. google authenticator)Byron Jones1-1/+20
2015-08-21Bug 1195645 - don't create a new session for every authenticated REST/BzAPI callByron Jones1-2/+5
2015-08-11Bug 1184332 - Add Restricted API calls for MozReviewDylan William Hardison1-0/+6
2015-07-29Bug 1188747 - account lockout audit entry is less than usefulByron Jones1-1/+4
2015-07-23Bug 1185823 - add additional [audit] syslog entriesByron Jones1-0/+1
2015-01-29Bug 1045145: backport upstream bug 726696 to bmo/4.2 to allow use of api ↵David Lawrence1-1/+1
keys for authentication
2014-11-14Bug 1097813: backport upstream bug 1001462 to bmo/4.2 to fix issue with ↵David Lawrence1-1/+1
using tokens with webservice rest api
2014-11-04Bug 1093622: Backout bug 1090427 for causing: authenticated calls from bzapi ↵Byron Jones1-1/+1
are failing: 'Untrusted Authentication Request'
2014-11-04Bug 1090427: Backport bug 713926 to bmo/4.2 to protect against csrf for ↵David Lawrence1-1/+1
login forms
2013-08-29Bug 909634 - backport upstream bug 893195 to bmo/4.2 for token auth support ↵Dave Lawrence1-0/+17
in webservices
2013-06-12Bug 882059: fix "use of uninitialized value" warnings, and ignore some ↵Byron Jones1-1/+2
errors/warnings
2012-05-08Bug 729001: reverse resolve the ip address in account lockout notificationsByron Jones1-0/+9
2011-12-05Bug 707594: Fix broken account lockout notificationsByron Jones1-1/+2
2011-08-03Fix a warning thrown when running 011pod.tFrédéric Buclin1-1/+1
2011-07-05Bug 658929 - User autocomplete is very slow when there are lots of users in ↵David Lawrence1-1/+1
the profiles table r/a=mkanat
2011-04-28Bug 423612 - Allow editing extern_id for users from the admin interfaceJochen Wiedmann1-0/+10
r=mkanat, a=mkanat
2010-11-15Bug 611891: Don't generate cookies for logins done over GET via the WebServiceMax Kanat-Alexander1-1/+6
r=glob, a=mkanat
2010-10-15Bug 604522: t/012throwables.t doesn't catch new user errors correctlyFrédéric Buclin1-1/+1
r/a=mkanat
2010-10-14Bug 575947: Users with passwords length less than 6 characters can't login ↵Frédéric Buclin1-1/+6
after migration from 3.4.x or older to 3.6 or newer r/a=mkanat
2009-12-13Fix a POD error in Bugzilla/Auth.pm that was causing a tree burn for 5.8.1.mkanat%bugzilla.org1-1/+1
2009-12-13Bug 355283: Lock out a user account on a particular IP for 30 minutes if ↵mkanat%bugzilla.org1-1/+55
they fail to log in 5 times from that IP. Patch by Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=LpSolit
2009-01-20Bug 134022: PERFORMANCE: deleting old login cookies locks login checksmkanat%bugzilla.org1-11/+5
Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=mkanat
2006-07-12Bug 344106: Error upgrading Bugzilla to version 2.23.2+ with perl 5.8.0 - ↵lpsolit%gmail.com1-45/+34
Patch by Frédéric Buclin <LpSolit@gmail.com> r=wicked a=myk
2006-07-04Bug 338375: Use Bugzilla->params everywhere instead of Param().mkanat%bugzilla.org1-1/+0
Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=justdave
2006-07-04Bug 342869: Use Bugzilla->params everywhere except templatesmkanat%bugzilla.org1-2/+2
Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=justdave
2006-06-03Bug 340104: Move Bugzilla::Auth::get_netaddr() in Util.pm - Patch by ↵lpsolit%gmail.com1-38/+0
Frédéric Buclin <LpSolit@gmail.com> r/a=justdave
2006-05-16Trying to fix bustage on Perl5.8.0 (adding a newline between 1; and __END__) ↵lpsolit%gmail.com1-0/+1
r=wicked on IRC
2006-05-16Bug 337681: When trying to impersonate someone, the UI displays the password ↵lpsolit%gmail.com1-1/+4
field when using the ENV method (with user_info_class="Env,CGI") - Patch by Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit a=justdave
2006-05-12Bug 300410: Bugzilla::Auth needs to be restructured to not require a BEGIN blockmkanat%bugzilla.org1-194/+381
Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=myk
2006-02-21Patch for bug 323627: Setting "loginnetmask" to 0 should disable IP ↵jocuri%softhome.net1-1/+4
checking; patch by Jesse Erlbaum <jesse@erlbaum.net>, r=vladd, a=justdave.
2005-07-26Bug 301967: Some .pm files have invalid POD syntax - Patch by Frédéric ↵lpsolit%gmail.com1-10/+2
Buclin <LpSolit@gmail.com> r=wurblzap a=justdave
2005-07-13Bug 300336: Bugzilla::Auth should not contain any exported subroutinesmkanat%kerio.com1-49/+0
Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=justdave
2005-07-08Bug 298659: setting authentication to LDAP,DB failsmkanat%kerio.com1-14/+20
Patch By A. Karl Kornel <karl@kornel.name> r=glob, a=justdave
2005-02-01Fixing tinderbox bustage from previous checkin.justdave%bugzilla.org1-1/+1
a= justdave
2005-02-01Bug 278792 : Move Crypt() to Bugzilla::Authtravis%sedsystems.ca1-0/+49
Patch by Max Kanat-Alexander <mkanat@kerio.com> r=vladd a=justdave
2004-07-21Bug 241900: Allow Bugzilla::Auth to have multiple login and validation stylesbugreport%peshkin.net1-28/+98
patch by erik r=joel, kiko a=myk
2004-07-12Backing out bug 241900bugreport%peshkin.net1-83/+25
2004-07-12Bug 241900: Allow Bugzilla::Auth to have multiple login and validation stylesbugreport%peshkin.net1-25/+83
patch by erik r=joel a=justdave
2004-03-27Fix for bug 226764: Move InvalidateLogins into Bugzilla::Auth::CGI.kiko%async.com.br1-40/+74
Consolidates the logout code into Bugzilla::Auth::CGI, and provides simple front-end wrappers in Bugzilla.pm for use in the CGIs we have. r=bbaetz, joel; a=justdave. Adds a set of constants to the logout() API which allow specifying "how much" we should log out -- all sessions, the current session, or all sessions but the current one. Fixes callsites to use this new API; cleans and documents things a bit while we're at it. Part I in the great COOKIE apocalypse.
2004-03-18Bug 237864: clean up leftovers from the bug 192516 checkin (some occurances ↵justdave%syndicomm.com1-1/+1
of Token got missed) r= gerv, a= justdave
2003-10-19Bug 221977: Insecure dependency in require while running with -T switch at ↵jocuri%softhome.net1-0/+6
Bugzilla/Auth.pm; patch by Dave Miller (justdave@bugzilla.org); r=gerv; a=justdave.
2003-03-22Bug 180642 - Move authentication code into a modulebbaetz%acm.org1-0/+214
r=gerv, justdave a=justdave