Age | Commit message (Collapse) | Author | Files | Lines | |
---|---|---|---|---|---|
2006-01-03 | Bug 119524: SECURITY: predictable sessionid (Use a token instead of ↵ | lpsolit%gmail.com | 1 | -4/+6 | |
logincookie) - Patch by Olav Vitters <bugzilla-mozilla@bkor.dhs.org> r=mkanat a=justdave | |||||
2005-11-22 | Bug 279716: Users have to relogin when changing their own password - Patch ↵ | lpsolit%gmail.com | 1 | -2/+12 | |
by Marc Schumann <wurblzap@gmail.com> r=wicked a=justdave | |||||
2005-10-31 | Bug 304075: Eliminate use of $::userid from Bugzilla - Patch by Frédéric ↵ | lpsolit%gmail.com | 1 | -4/+0 | |
Buclin <LpSolit@gmail.com> r=wicked a=justdave | |||||
2005-08-19 | Bug 304583: Remove all remaining need to rederive inherited groups | bugreport%peshkin.net | 1 | -0/+9 | |
Patch by Joel Peshkin <bugreport@peshkin.net> r=mkanat, a=justdave | |||||
2005-07-26 | Bug 300403: New Charts errors out, creates new 'add' user, when Env auth ↵ | lpsolit%gmail.com | 1 | -2/+6 | |
method is used - Patch by A. Karl Kornel <karl@kornel.name> r=wurblzap a=justdave | |||||
2005-07-26 | Bug 301967: Some .pm files have invalid POD syntax - Patch by Frédéric ↵ | lpsolit%gmail.com | 1 | -1/+3 | |
Buclin <LpSolit@gmail.com> r=wurblzap a=justdave | |||||
2005-07-13 | Bug 300336: Bugzilla::Auth should not contain any exported subroutines | mkanat%kerio.com | 1 | -4/+1 | |
Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=justdave | |||||
2005-07-08 | Bug 298659: setting authentication to LDAP,DB fails | mkanat%kerio.com | 1 | -2/+2 | |
Patch By A. Karl Kornel <karl@kornel.name> r=glob, a=justdave | |||||
2005-07-08 | Bug 285695: [PostgreSQL] Username checks for login, etc. need to be case ↵ | mkanat%kerio.com | 3 | -16/+10 | |
insensitive Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=justdave | |||||
2005-07-07 | Bug 268146: mod_security complain: Invalid cookie format: Cookie value is ↵ | lpsolit%gmail.com | 1 | -6/+2 | |
missing #2 - Patch by Marc Schumann <wurblzap@gmail.com> r=kiko a=justdave | |||||
2005-05-12 | Bug 287436: [SECURITY] After having logged in, links to change the report ↵ | mkanat%kerio.com | 1 | -0/+2 | |
type contain username and password Patch By Marc Schumann <wurblzap@gmail.com> r=gerv, a=justdave | |||||
2005-04-17 | Bug 290570: Bugzilla::Auth::WWW:Env uses bitwise OR - Patch by Simon ↵ | lpsolit%gmail.com | 1 | -1/+1 | |
Wilkinson <simon@sxw.org.uk> r=kiko a=justdave | |||||
2005-04-08 | Bug 238877: remove %FORM from Bugzilla/Auth/Login/WWW/CGI.pm - Patch by ↵ | lpsolit%gmail.com | 1 | -2/+0 | |
Teemu Mannermaa <wicked@etlicon.fi> r=LpSolit a=justdave | |||||
2005-03-23 | Bug 258515: Errors when accessing Bugzilla over IPv6 - Patch by Marc ↵ | lpsolit%gmail.com | 1 | -5/+3 | |
Schumann <wurblzap@gmail.com> r=joel, a=justdave | |||||
2005-03-13 | Bug 83044 - Any page is now capable of being a login page simply by adding ↵ | jake%bugzilla.org | 1 | -0/+1 | |
the ?GoAheadAndLogin=1 option to the URL. All links have been changed to make index.cgi the default login page instead of query.cgi. r=joel, a=justdave | |||||
2005-03-05 | Bug 277782: _throw_error should unlock tables when tables are locked, ↵ | mkanat%kerio.com | 1 | -1/+1 | |
automatically Patch By Tomas Kopal <Tomas.Kopal@altap.cz> r=travis, r=LpSolit, a=justdave | |||||
2005-02-20 | Bug 280499: Replace "TO_DAYS()" with Bugzilla::DB function call | mkanat%kerio.com | 1 | -3/+4 | |
Patch By Tomas Kopal <Tomas.Kopal@altap.cz> r=mkanat, a=justdave | |||||
2005-02-19 | Bug 280494: Replace "SELECT LAST_INSERT_ID()" with Bugzilla::DB function call | mkanat%kerio.com | 2 | -4/+2 | |
Patch By Tomas Kopal <Tomas.Kopal@altap.cz> r=mkanat, a=justdave | |||||
2005-02-09 | Bug 280994 : Move ValidateNewUser out of globals.pl | travis%sedsystems.ca | 1 | -1/+1 | |
Patch by Max Kanat-Alexander <mkanat@kerio.com> r=vladd a=justdave | |||||
2005-02-01 | Bug 280124 : Move InsertNewUser to Bugzilla::User | travis%sedsystems.ca | 1 | -1/+2 | |
Patch by Max Kanat-Alexander <mkanat@kerio.com> r=vladd a=justdave | |||||
2005-02-01 | Bug 278792 : Move Crypt() to Bugzilla::Auth | travis%sedsystems.ca | 1 | -1/+1 | |
Patch by Max Kanat-Alexander <mkanat@kerio.com> r=vladd a=justdave | |||||
2005-01-16 | Patch for bug 260682: Support redirecting to HTTPS always or for ↵ | jocuri%softhome.net | 2 | -0/+11 | |
authenticated sessions only; patch by Byron Jones (glob) <bugzilla@glob.com.au>, r=vladd, a=myk. | |||||
2004-10-21 | Patch for bug 232155: Remove uninitialized value warning from Pperl's ↵ | jocuri%softhome.net | 1 | -8/+3 | |
Cookie.pm and unify code by removing redundancy; patch by Christian Reis <kiko@async.com.br> backported to 2.18 by Rob Siklos <rsiklos@adexa.com>; r=vladd,kiko, a=justdave. | |||||
2004-09-09 | Patch for bug 257303: convert lastused field in logincookies from timestamp ↵ | jocuri%softhome.net | 2 | -2/+3 | |
to datetime; patch by Tomas Kopal <Tomas.Kopal@altap.cz>; r=vladd, a=justdave. | |||||
2004-08-11 | Bug 241903: Add Environment Variable Authentication for apache auth and SSO | bugreport%peshkin.net | 3 | -1/+194 | |
patch by erik r=joel a=justdave | |||||
2004-07-31 | Bug 253588: Change Bugzilla->user to be usable even for a logged-out user | bugreport%peshkin.net | 1 | -3/+1 | |
patch by erik,joel r=kiko a=justdave | |||||
2004-07-29 | Missing bits of fix for bug 236678: Clean up access to COOKIE global. | kiko%async.com.br | 1 | -8/+0 | |
Murder the last remaining places in the tree where COOKIE is used; includes a rather thorough cleanup of Bugzilla::Bug->user and a minor doc update. r=joel, a=justdave. | |||||
2004-07-29 | Fix for bug 236678: Clean up access to COOKIE global. Murder the last | kiko%async.com.br | 1 | -6/+0 | |
remaining places in the tree where COOKIE is used; includes a rather thorough cleanup of Bugzilla::Bug->user and a minor doc update. r=joel, a=justdave. | |||||
2004-07-21 | Bug 241900: Allow Bugzilla::Auth to have multiple login and validation styles | bugreport%peshkin.net | 6 | -20/+296 | |
patch by erik r=joel, kiko a=myk | |||||
2004-07-12 | Backing out bug 241900 | bugreport%peshkin.net | 4 | -36/+19 | |
2004-07-12 | Bug 241900: Allow Bugzilla::Auth to have multiple login and validation styles | bugreport%peshkin.net | 4 | -19/+36 | |
patch by erik r=joel a=justdave | |||||
2004-03-27 | Fix for bug 226754: Move InvalidateLogins into Bugzilla::Auth::CGI. ↵ | kiko%async.com.br | 2 | -29/+35 | |
Consolidates the logout code into Bugzilla::Auth::CGI, and provides simple front-end wrappers in Bugzilla.pm for use in the CGIs we have. r=bbaetz, joel; a=justdave. Adds a set of constants to the logout() API which allow specifying "how much" we should log out -- all sessions, the current session, or all sessions but the current one. Fixes callsites to use this new API; cleans and documents things a bit while we're at it. Part I in the great COOKIE apocalypse. | |||||
2004-03-18 | Bug 237864: clean up leftovers from the bug 192516 checkin (some occurances ↵ | justdave%syndicomm.com | 1 | -2/+2 | |
of Token got missed) r= gerv, a= justdave | |||||
2004-01-17 | Fix for bug 90468: Bugzilla does not log out automatically when closing | kiko%async.com.br | 1 | -7/+22 | |
the session. Patch by toms@myrealbox.com (Toms Baugis), with minor cleanups by me. r=kiko, a=myk. | |||||
2003-12-07 | Fix for bug 226982: Move password change code into Bugzilla::Auth (part | kiko%async.com.br | 1 | -28/+50 | |
1). Factored code out from Bugzilla::Auth::DB->authenticate() into separate methods so we can use them externally. Add extra API to DB.pm, which is currently used only internally (pending part 2). r=bbaetz, a=justdave | |||||
2003-11-27 | Bug 226324: Move relogin.cgi code to Bugzilla::Auth::CGI. Provide a | kiko%async.com.br | 1 | -1/+26 | |
logout() method that is proxied through Bugzilla.pm's logout(), and fix callers to use it. r=justdave, bbaetz, a=justdave | |||||
2003-10-26 | Bug 223093: correcting the title on "perldoc Bugzilla::Auth::DB" | justdave%syndicomm.com | 1 | -1/+1 | |
r= bbaetz, a= justdave | |||||
2003-09-14 | Bug 208699 - Move Throw{Code,Template}Error into Error.pm | bbaetz%acm.org | 1 | -15/+16 | |
r,a=justdave | |||||
2003-07-14 | Bug 122365 - Allow installation definable LDAP filters | bbaetz%acm.org | 1 | -2/+2 | |
r,a=justdave | |||||
2003-06-23 | Bug 210324 - s/->err/->error/ | bbaetz%acm.org | 1 | -1/+1 | |
r,a=justdave | |||||
2003-06-07 | Bug 205463 - Tokens aren't canceled after a successful login. | bbaetz%acm.org | 1 | -1/+1 | |
patch by 'Randall M! Gee', r=bbaetz, a=justdave | |||||
2003-05-05 | Bug 201816 - use CGI.pm for header output | bbaetz%acm.org | 1 | -7/+14 | |
r=joel, a=justdave | |||||
2003-04-19 | bug 202534 - Login with unrestricted IP address fails - tries to access ↵ | bugreport%peshkin.net | 1 | -1/+1 | |
missing get_netaddr r=bbaetz a=myk | |||||
2003-04-05 | Bug 200072 - Creating new users from LDAP at authentication time is broken | bbaetz%acm.org | 1 | -3/+3 | |
r,a=justdave | |||||
2003-03-22 | Bug 180642 - Move authentication code into a module | bbaetz%acm.org | 4 | -0/+601 | |
r=gerv, justdave a=justdave |