summaryrefslogtreecommitdiffstats
path: root/Bugzilla/Auth/Login/Cookie.pm
AgeCommit message (Collapse)AuthorFilesLines
2017-07-07Bug 1377933 - Remove trailing whitespace from all perl filesDylan William Hardison1-2/+2
2016-09-13Bug 1283930 - Add Makefile.PL & local/lib/perl5 support to bmo/master + ↵Dylan William Hardison1-15/+8
local symlink to data/ directory
2016-09-12Revert "Bug 1283930 - Add Makefile.PL & local/lib/perl5 support to ↵Dylan William Hardison1-8/+15
bmo/master + local symlink to data/ directory" This reverts commit e6bf4cacb10f86077fe898349485f5c7ab9fb4b6.
2016-09-12Bug 1283930 - Add Makefile.PL & local/lib/perl5 support to bmo/master + ↵Dylan William Hardison1-15/+8
local symlink to data/ directory
2016-05-03Bug 1269236 - Incorrect checking of API tokens possibly leads to CSRF and ↵Dylan Hardison1-9/+6
data disclosure vulnerability for insecure accounts
2015-09-01Bug 1197073 - add support for 2fa using totp (eg. google authenticator)Byron Jones1-1/+11
2015-08-25Bug 1197699 - always store the ip address in the logincookies tableByron Jones1-1/+1
2015-08-24Bug 1192687 - add the ability for users to view and revoke existing sessionsDylan William Hardison1-1/+10
2015-03-09Bug 1140966: backport bug 1139257 to bmo (allow cookie+api-token GET REST ↵Byron Jones1-8/+18
requests)
2015-01-29Bug 1045145: backport upstream bug 726696 to bmo/4.2 to allow use of api ↵David Lawrence1-1/+16
keys for authentication
2014-11-14Bug 1097813: backport upstream bug 1001462 to bmo/4.2 to fix issue with ↵David Lawrence1-0/+2
using tokens with webservice rest api
2013-10-25Bug 921523 - backport upstream bug 917669 to bmo/4.2 to throw error when ↵Dave Lawrence1-7/+10
invalid cookies/tokens are used with webservices
2013-10-17merged with bugzilla/4.2Dave Lawrence1-3/+3
2013-10-16Bug 907438 - In MySQL, login cookie checking is not case-sensitive, reducing ↵Dave Lawrence1-3/+3
total entropy and allowing easier brute force r=LpSolit,a=sgreen
2013-09-27Revert Bug 917669 - invalid or expired authentication tokens and cookies ↵Dave Lawrence1-13/+8
should throw errors, not be silently ignored
2013-09-26Bug 917669 - invalid or expired authentication tokens and cookies should ↵Dave Lawrence1-8/+13
throw errors, not be silently ignored
2013-08-29Bug 909634 - backport upstream bug 893195 to bmo/4.2 for token auth support ↵Dave Lawrence1-14/+54
in webservices
2010-04-22Bug 550732: Allow read-only JSON-RPC methods to be called with GETMax Kanat-Alexander1-0/+1
r=dkl, a=mkanat
2009-12-31Bug 527586: Use X-Forwarded-For instead of REMOTE_ADDR for trusted proxiesmkanat%bugzilla.org1-1/+1
Patch by Max Kanat-Alexander <mkanat@bugzilla.org> r=dkl, a=mkanat
2009-10-19Bug 399073: Remove the 'loginnetmask' parameter - Patch by Frédéric ↵lpsolit%gmail.com1-17/+8
Buclin <LpSolit@gmail.com> r/a=mkanat
2006-07-06Bug 340967: The login form appears twice when trying to add an attachment ↵lpsolit%gmail.com1-0/+15
(due to two consecutive calls to Bugzilla->login) - Patch by Frédéric Buclin <LpSolit@gmail.com> r=mkanat a=myk
2006-06-19Spelling in code comments patch: 'cokie' -> 'cookie'; patch by Vlad Dascalu ↵vladd%bugzilla.org1-1/+1
<vladd@bugzilla.org>.
2006-06-03Bug 340104: Move Bugzilla::Auth::get_netaddr() in Util.pm - Patch by ↵lpsolit%gmail.com1-2/+1
Frédéric Buclin <LpSolit@gmail.com> r/a=justdave
2006-06-01Bug 339858: Remove useless module dependencies in Bugzilla::Auth::* - Patch ↵lpsolit%gmail.com1-1/+0
by Frédéric Buclin <LpSolit@gmail.com> r=mkanat a=justdave
2006-05-12Bug 300410: Bugzilla::Auth needs to be restructured to not require a BEGIN blockmkanat%bugzilla.org1-0/+83
Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=myk