summaryrefslogtreecommitdiffstats
path: root/Bugzilla/Auth/Login/CGI.pm
AgeCommit message (Collapse)AuthorFilesLines
2014-08-13Bug 996893: Perl 5.18 and newer throw tons of warnings about deprecated modulesFrédéric Buclin1-0/+1
r=dkl a=sgreen
2014-04-25Bug 1001497: User.login incorrectly returns id = 0 when the login or ↵Frédéric Buclin1-1/+1
password is missing r=dkl a=justdave
2014-04-17Bug 713926: (CVE-2014-1517) [SECURITY] Login form lacks CSRF protectionFrédéric Buclin1-4/+37
r=dkl a=justdave
2012-12-01Bug 787668: Use |use parent| instead of |use base|Matt Selsky1-1/+1
r/a=LpSolit
2012-09-01Bug 787529: Use |use 5.10.1| everywhereFrédéric Buclin1-0/+3
r=wicked a=LpSolit
2012-01-11Bug 680131: Replace the MPL 1.1 license by the MPL 2.0 one in all files, and ↵Frédéric Buclin1-28/+5
add it to files which miss one r=kiko r=mkanat r=mrbball a=LpSolit
2010-03-24Bug 553770: Make the JSON-RPC WebService throw a proper error when you don'tMax Kanat-Alexander1-4/+2
provide login credentials on a LOGIN_REQUIRED page. (Before this, it was attempting to display the HTML login page to JSON-RPC clients.) r=dkl, a=mkanat
2009-11-09Bug 525734: Allow WebService clients to authenticate using Bugzilla_login ↵mkanat%bugzilla.org1-5/+3
and Bugzilla_password Patch by Max Kanat-Alexander <mkanat@bugzilla.org> r=dkl, a=mkanat
2009-10-09Bug 514913: Eliminate ssl="authenticated sessions"mkanat%bugzilla.org1-11/+0
Patch by Max Kanat-Alexander <mkanat@bugzilla.org> r=dkl, a=mkanat
2008-10-05Partial backout of bug 183665. It's responsible for bug 457719lpsolit%gmail.com1-1/+1
2008-08-18Bug 428659 – Setting SSL param to 'authenticated sessions' only ↵dkl%redhat.com1-3/+8
protects logins and param doesn't protect WebService calls at all Patch by David Lawrence <dkl@redhat.com> - r/a=LpSolit/mkanat
2008-07-29Backing out these patches as they cause a regression. More informationdkl%redhat.com1-3/+5
in the respective bug reports. Bug 428659 – Setting SSL param to 'authenticated sessions' only protects logins and param doesn't protect WebService calls at all Patch by Dave Lawrence <dkl@redhat.com> - r/a=mkanat Bug 445104: ssl redirects come with a 200 OK HTTP code on mod_perl Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=dkl, a=mkanat
2008-07-10Bug 428659 – Setting SSL param to 'authenticated sessions' only ↵dkl%redhat.com1-5/+3
protects logins and param doesn't protect WebService calls at all Patch by Dave Lawrence <dkl@redhat.com> - r/a=mkanat
2007-11-15Bug 183665: Accessing post_bug.cgi directly gives a weird error message and ↵lpsolit%gmail.com1-1/+1
should redirect to enter_bug.cgi instead - Patch by Matt Tasker <mtasker@gmail.com> (based on the original patch from victory <spam@bmo2007.rsz.jp>) r/a=LpSolit
2006-08-20Bug 224577: Bugzilla could use a web services interface.wurblzap%gmail.com1-0/+7
Patch by Marc Schumann <wurblzap@gmail.com>; r=mkanat; a=myk
2006-07-04Bug 338375: Use Bugzilla->params everywhere instead of Param().mkanat%bugzilla.org1-1/+0
Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=justdave
2006-07-04Bug 342869: Use Bugzilla->params everywhere except templatesmkanat%bugzilla.org1-2/+4
Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=justdave
2006-06-01Bug 339858: Remove useless module dependencies in Bugzilla::Auth::* - Patch ↵lpsolit%gmail.com1-1/+1
by Frédéric Buclin <LpSolit@gmail.com> r=mkanat a=justdave
2006-05-12Bug 300410: Bugzilla::Auth needs to be restructured to not require a BEGIN blockmkanat%bugzilla.org1-0/+73
Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=myk
2004-07-12Backing out bug 241900bugreport%peshkin.net1-254/+0
2004-07-12Bug 241900: Allow Bugzilla::Auth to have multiple login and validation stylesbugreport%peshkin.net1-0/+254
patch by erik r=joel a=justdave