summaryrefslogtreecommitdiffstats
path: root/Bugzilla/Auth/Persist
AgeCommit message (Collapse)AuthorFilesLines
2015-11-05Bug 1196743 - Fix information disclosure vulnerability that allows attacker ↵Dylan Hardison1-0/+2
to obtain victim's GitHub OAuth return code
2015-08-25Bug 1197699 - always store the ip address in the logincookies tableByron Jones1-11/+7
2014-11-14Bug 1097813: backport upstream bug 1001462 to bmo/4.2 to fix issue with ↵David Lawrence1-2/+2
using tokens with webservice rest api
2013-12-31merged with bugzilla/4.2Dave Lawrence1-1/+2
2013-12-21Bug 748095: Bugzilla crashes when the shutdownhtml parameter is set and ↵Frédéric Buclin1-1/+1
using a non-cookie based authentication method r=dkl a=justdave
2013-08-29Bug 909634 - backport upstream bug 893195 to bmo/4.2 for token auth support ↵Dave Lawrence1-8/+24
in webservices
2010-10-07Bug 602165: Change sql_interval to sql_date_math, in preparation forMax Kanat-Alexander1-2/+3
MS-SQL and SQLite support.
2009-12-31Bug 527586: Use X-Forwarded-For instead of REMOTE_ADDR for trusted proxiesmkanat%bugzilla.org1-1/+1
Patch by Max Kanat-Alexander <mkanat@bugzilla.org> r=dkl, a=mkanat
2009-11-09Bug 525734: Allow WebService clients to authenticate using Bugzilla_login ↵mkanat%bugzilla.org1-3/+4
and Bugzilla_password Patch by Max Kanat-Alexander <mkanat@bugzilla.org> r=dkl, a=mkanat
2009-10-19Bug 399073: Remove the 'loginnetmask' parameter - Patch by Frédéric ↵lpsolit%gmail.com1-9/+6
Buclin <LpSolit@gmail.com> r/a=mkanat
2009-10-09Bug 514913: Eliminate ssl="authenticated sessions"mkanat%bugzilla.org1-5/+3
Patch by Max Kanat-Alexander <mkanat@bugzilla.org> r=dkl, a=mkanat
2009-03-02Bug 121601: Have logout display index.cgi, not just a message on relogin.cgi.mkanat%bugzilla.org1-0/+1
Patch by Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=LpSolit
2009-01-20Bug 134022: PERFORMANCE: deleting old login cookies locks login checksmkanat%bugzilla.org1-0/+9
Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=mkanat
2008-08-27Bug 449984: Login cookies should be created as SSL-only on installations ↵lpsolit%gmail.com1-15/+18
that require SSL - Patch by Frédéric Buclin <LpSolit@gmail.com> r/a=mkanat
2008-08-23Bug 368502 - "Bugzilla_logincookie should not be accessible via javascript" ↵reed%reedloden.com1-3/+6
[p=reed r+a=mkanat]
2006-07-04Bug 338375: Use Bugzilla->params everywhere instead of Param().mkanat%bugzilla.org1-1/+0
Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=justdave
2006-07-04Bug 342869: Use Bugzilla->params everywhere except templatesmkanat%bugzilla.org1-3/+3
Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=justdave
2006-06-03Bug 340104: Move Bugzilla::Auth::get_netaddr() in Util.pm - Patch by ↵lpsolit%gmail.com1-3/+1
Frédéric Buclin <LpSolit@gmail.com> r/a=justdave
2006-06-01Bug 339858: Remove useless module dependencies in Bugzilla::Auth::* - Patch ↵lpsolit%gmail.com1-1/+2
by Frédéric Buclin <LpSolit@gmail.com> r=mkanat a=justdave
2006-05-12Bug 300410: Bugzilla::Auth needs to be restructured to not require a BEGIN blockmkanat%bugzilla.org1-0/+153
Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=myk