summaryrefslogtreecommitdiffstats
path: root/Bugzilla/Auth/Login
AgeCommit message (Expand)AuthorFilesLines
2016-05-03Bug 1268989 - Inefficient check of "Bugzilla_api_token" might lead to CSRF/da...Dylan William Hardison1-9/+6
2016-02-29Bug 1136137: Require Perl 5.14Frédéric Buclin5-5/+5
2015-03-09Bug 1139257: allow cookie+api-token GET REST requestsByron Jones1-8/+18
2014-09-29Bug 1071317: Remove unused variablesFrédéric Buclin1-1/+0
2014-08-13Bug 996893: Perl 5.18 and newer throw tons of warnings about deprecated modulesFrédéric Buclin5-0/+5
2014-07-31Bug 1044701: "Uninitialized value $token_type" when passing an invalid Bugzil...David Lawrence1-1/+4
2014-07-27Bug 726696 - All authenticated WebServices methods should require username/pa...Simon Green2-1/+65
2014-04-25Bug 1001497: User.login incorrectly returns id = 0 when the login or password...Frédéric Buclin1-1/+1
2014-04-17Bug 713926: (CVE-2014-1517) [SECURITY] Login form lacks CSRF protectionFrédéric Buclin1-4/+37
2014-04-14Bug 987205: Bugzilla crashes because it tries to import a non-exported login_...Frédéric Buclin1-1/+2
2013-10-16Bug 907438 - In MySQL, login cookie checking is not case-sensitive, reducing ...Dave Lawrence1-3/+3
2013-09-26Bug 917669 - invalid or expired authentication tokens and cookies should thro...Dave Lawrence1-8/+13
2013-08-27Bug 893195 - Allow token based authentication for webservicesDave Lawrence1-14/+54
2012-12-01Bug 787668: Use |use parent| instead of |use base|Matt Selsky3-3/+3
2012-09-01Bug 787529: Use |use 5.10.1| everywhereFrédéric Buclin4-0/+12
2012-01-11Bug 680131: Replace the MPL 1.1 license by the MPL 2.0 one in all files, and ...Frédéric Buclin4-82/+20
2011-11-18Make Login/Stack.pm refuse to continue down the stack if an Auth method retur...Gervase Markham1-2/+8
2011-04-28Bug 423612 - Allow editing extern_id for users from the admin interfaceJochen Wiedmann2-0/+7
2010-04-22Bug 550732: Allow read-only JSON-RPC methods to be called with GETMax Kanat-Alexander3-0/+7
2010-03-24Bug 553770: Make the JSON-RPC WebService throw a proper error when you don'tMax Kanat-Alexander1-4/+2
2009-12-31Bug 527586: Use X-Forwarded-For instead of REMOTE_ADDR for trusted proxiesmkanat%bugzilla.org1-1/+1
2009-12-31Bug 385606: Logincookies are recreated at each HTTP request when using the 'E...lpsolit%gmail.com1-0/+1
2009-11-24Bug 430014: Re-write the code hooks system so that it uses modules instead of...mkanat%bugzilla.org1-1/+1
2009-11-09Bug 525734: Allow WebService clients to authenticate using Bugzilla_login and...mkanat%bugzilla.org1-5/+3
2009-10-19Bug 399073: Remove the 'loginnetmask' parameter - Patch by Frédéric Buc...lpsolit%gmail.com1-17/+8
2009-10-09Bug 514913: Eliminate ssl="authenticated sessions"mkanat%bugzilla.org1-11/+0
2009-04-17Bug 488467: Verify and Login auth methods were being called in a random order...mkanat%bugzilla.org1-1/+1
2008-10-05Partial backout of bug 183665. It's responsible for bug 457719lpsolit%gmail.com1-1/+1
2008-08-18Bug 428659 – Setting SSL param to 'authenticated sessions' only protects...dkl%redhat.com1-3/+8
2008-08-07Bug 438435: Need code hooks for authenticationmkanat%bugzilla.org1-4/+12
2008-07-29Backing out these patches as they cause a regression. More informationdkl%redhat.com1-3/+5
2008-07-10Bug 428659 – Setting SSL param to 'authenticated sessions' only protects...dkl%redhat.com1-5/+3
2007-11-15Bug 183665: Accessing post_bug.cgi directly gives a weird error message and s...lpsolit%gmail.com1-1/+1
2006-08-20Bug 224577: Bugzilla could use a web services interface.wurblzap%gmail.com1-0/+7
2006-07-06Bug 340967: The login form appears twice when trying to add an attachment (du...lpsolit%gmail.com1-0/+15
2006-07-04Bug 338375: Use Bugzilla->params everywhere instead of Param().mkanat%bugzilla.org2-2/+0
2006-07-04Bug 342869: Use Bugzilla->params everywhere except templatesmkanat%bugzilla.org2-5/+7
2006-06-19Spelling in code comments patch: 'cokie' -> 'cookie'; patch by Vlad Dascalu <...vladd%bugzilla.org1-1/+1
2006-06-03Bug 340104: Move Bugzilla::Auth::get_netaddr() in Util.pm - Patch by Frédér...lpsolit%gmail.com1-2/+1
2006-06-01Bug 339858: Remove useless module dependencies in Bugzilla::Auth::* - Patch b...lpsolit%gmail.com3-3/+1
2006-05-12Bug 300410: Bugzilla::Auth needs to be restructured to not require a BEGIN blockmkanat%bugzilla.org8-655/+297
2006-03-03Patch for bug 161369: Strip trailing whitespace from login usernames; patch b...jocuri%softhome.net1-1/+1
2006-02-22Bug 327355: Email preferences are not set correctly when the user account is ...lpsolit%gmail.com1-101/+63
2006-01-10Bug 322620: Logging in with 'Remember my Login' deselected gives: Use of unin...lpsolit%gmail.com1-0/+1
2006-01-06Bug 322244: Cookies are incorrectly detainted when logging out - Patch by Ola...lpsolit%gmail.com1-1/+1
2006-01-03Bug 119524: SECURITY: predictable sessionid (Use a token instead of logincook...lpsolit%gmail.com1-4/+6
2005-11-22Bug 279716: Users have to relogin when changing their own password - Patch by...lpsolit%gmail.com1-2/+12
2005-10-31Bug 304075: Eliminate use of $::userid from Bugzilla - Patch by Frédéric Bu...lpsolit%gmail.com1-4/+0
2005-08-19Bug 304583: Remove all remaining need to rederive inherited groupsbugreport%peshkin.net1-0/+9
2005-07-26Bug 300403: New Charts errors out, creates new 'add' user, when Env auth meth...lpsolit%gmail.com1-2/+6