summaryrefslogtreecommitdiffstats
path: root/Bugzilla/Auth.pm
AgeCommit message (Collapse)AuthorFilesLines
2016-04-27Bug 218917 - Allow the login name to be different from the email addressFrédéric Buclin1-0/+12
Original patch by Gervase Markham r=gerv a=dkl
2016-02-29Bug 1136137: Require Perl 5.14Frédéric Buclin1-1/+1
r=dkl
2014-09-29Bug 1071317: Remove unused variablesFrédéric Buclin1-1/+0
r=gerv a=sgreen
2014-08-13Bug 996893: Perl 5.18 and newer throw tons of warnings about deprecated modulesFrédéric Buclin1-0/+2
r=dkl a=sgreen
2014-07-27Bug 726696 - All authenticated WebServices methods should require ↵Simon Green1-1/+1
username/pass, token or a valid API key for authentication r=dkl, a=sgreen
2014-04-17Bug 713926: (CVE-2014-1517) [SECURITY] Login form lacks CSRF protectionFrédéric Buclin1-1/+1
r=dkl a=justdave
2014-02-27Bug 947823: Replace gender-specific pronouns with gender-neutral pronounsCharlie Somerville1-2/+2
r=gerv a=justdave
2013-11-06Bug 931765 - When you enter your login or password wrong, the error message ↵tinajohnson.1234@gmail.com1-1/+1
shown "The username or password you entered is not valid" should be edited to "The login or password you entered is not valid" r=dkl,a=sgreen
2013-08-27Bug 893195 - Allow token based authentication for webservicesDave Lawrence1-0/+17
r=glob,a=sgreen
2012-09-01Bug 787529: Use |use 5.10.1| everywhereFrédéric Buclin1-0/+1
r=wicked a=LpSolit
2012-05-08Bug 729001: Reverse resolves the IP address in account lockout notificationsByron Jones1-0/+9
r=LpSolit, a=LpSolit
2012-01-11Bug 680131: Replace the MPL 1.1 license by the MPL 2.0 one in all files, and ↵Frédéric Buclin1-23/+5
add it to files which miss one r=kiko r=mkanat r=mrbball a=LpSolit
2011-12-05Bug 707594: Fix broken account lockout notificationsByron Jones1-1/+2
r=LpSolit, a=LpSolit
2011-08-03Fix a warning thrown when running 011pod.tFrédéric Buclin1-1/+1
2011-07-05Bug 658929 - User autocomplete is very slow when there are lots of users in ↵David Lawrence1-1/+1
the profiles table r/a=mkanat
2011-04-28Bug 423612 - Allow editing extern_id for users from the admin interfaceJochen Wiedmann1-0/+10
r=mkanat, a=mkanat
2010-11-15Bug 611891: Don't generate cookies for logins done over GET via the WebServiceMax Kanat-Alexander1-1/+6
r=glob, a=mkanat
2010-10-15Bug 604522: t/012throwables.t doesn't catch new user errors correctlyFrédéric Buclin1-1/+1
r/a=mkanat
2010-10-14Bug 575947: Users with passwords length less than 6 characters can't login ↵Frédéric Buclin1-1/+6
after migration from 3.4.x or older to 3.6 or newer r/a=mkanat
2009-12-13Fix a POD error in Bugzilla/Auth.pm that was causing a tree burn for 5.8.1.mkanat%bugzilla.org1-1/+1
2009-12-13Bug 355283: Lock out a user account on a particular IP for 30 minutes if ↵mkanat%bugzilla.org1-1/+55
they fail to log in 5 times from that IP. Patch by Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=LpSolit
2009-01-20Bug 134022: PERFORMANCE: deleting old login cookies locks login checksmkanat%bugzilla.org1-11/+5
Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=mkanat
2006-07-12Bug 344106: Error upgrading Bugzilla to version 2.23.2+ with perl 5.8.0 - ↵lpsolit%gmail.com1-45/+34
Patch by Frédéric Buclin <LpSolit@gmail.com> r=wicked a=myk
2006-07-04Bug 338375: Use Bugzilla->params everywhere instead of Param().mkanat%bugzilla.org1-1/+0
Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=justdave
2006-07-04Bug 342869: Use Bugzilla->params everywhere except templatesmkanat%bugzilla.org1-2/+2
Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=justdave
2006-06-03Bug 340104: Move Bugzilla::Auth::get_netaddr() in Util.pm - Patch by ↵lpsolit%gmail.com1-38/+0
Frédéric Buclin <LpSolit@gmail.com> r/a=justdave
2006-05-16Trying to fix bustage on Perl5.8.0 (adding a newline between 1; and __END__) ↵lpsolit%gmail.com1-0/+1
r=wicked on IRC
2006-05-16Bug 337681: When trying to impersonate someone, the UI displays the password ↵lpsolit%gmail.com1-1/+4
field when using the ENV method (with user_info_class="Env,CGI") - Patch by Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit a=justdave
2006-05-12Bug 300410: Bugzilla::Auth needs to be restructured to not require a BEGIN blockmkanat%bugzilla.org1-194/+381
Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=myk
2006-02-21Patch for bug 323627: Setting "loginnetmask" to 0 should disable IP ↵jocuri%softhome.net1-1/+4
checking; patch by Jesse Erlbaum <jesse@erlbaum.net>, r=vladd, a=justdave.
2005-07-26Bug 301967: Some .pm files have invalid POD syntax - Patch by Frédéric ↵lpsolit%gmail.com1-10/+2
Buclin <LpSolit@gmail.com> r=wurblzap a=justdave
2005-07-13Bug 300336: Bugzilla::Auth should not contain any exported subroutinesmkanat%kerio.com1-49/+0
Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=justdave
2005-07-08Bug 298659: setting authentication to LDAP,DB failsmkanat%kerio.com1-14/+20
Patch By A. Karl Kornel <karl@kornel.name> r=glob, a=justdave
2005-02-01Fixing tinderbox bustage from previous checkin.justdave%bugzilla.org1-1/+1
a= justdave
2005-02-01Bug 278792 : Move Crypt() to Bugzilla::Authtravis%sedsystems.ca1-0/+49
Patch by Max Kanat-Alexander <mkanat@kerio.com> r=vladd a=justdave
2004-07-21Bug 241900: Allow Bugzilla::Auth to have multiple login and validation stylesbugreport%peshkin.net1-28/+98
patch by erik r=joel, kiko a=myk
2004-07-12Backing out bug 241900bugreport%peshkin.net1-83/+25
2004-07-12Bug 241900: Allow Bugzilla::Auth to have multiple login and validation stylesbugreport%peshkin.net1-25/+83
patch by erik r=joel a=justdave
2004-03-27Fix for bug 226764: Move InvalidateLogins into Bugzilla::Auth::CGI.kiko%async.com.br1-40/+74
Consolidates the logout code into Bugzilla::Auth::CGI, and provides simple front-end wrappers in Bugzilla.pm for use in the CGIs we have. r=bbaetz, joel; a=justdave. Adds a set of constants to the logout() API which allow specifying "how much" we should log out -- all sessions, the current session, or all sessions but the current one. Fixes callsites to use this new API; cleans and documents things a bit while we're at it. Part I in the great COOKIE apocalypse.
2004-03-18Bug 237864: clean up leftovers from the bug 192516 checkin (some occurances ↵justdave%syndicomm.com1-1/+1
of Token got missed) r= gerv, a= justdave
2003-10-19Bug 221977: Insecure dependency in require while running with -T switch at ↵jocuri%softhome.net1-0/+6
Bugzilla/Auth.pm; patch by Dave Miller (justdave@bugzilla.org); r=gerv; a=justdave.
2003-03-22Bug 180642 - Move authentication code into a modulebbaetz%acm.org1-0/+214
r=gerv, justdave a=justdave