Age | Commit message (Collapse) | Author | Files | Lines | |
---|---|---|---|---|---|
2009-12-13 | Bug 355283: Lock out a user account on a particular IP for 30 minutes if ↵ | mkanat%bugzilla.org | 1 | -16/+30 | |
they fail to log in 5 times from that IP. Patch by Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=LpSolit | |||||
2009-11-24 | Bug 430014: Re-write the code hooks system so that it uses modules instead ↵ | mkanat%bugzilla.org | 2 | -2/+2 | |
of individual .pl files Patch by Max Kanat-Alexander <mkanat@bugzilla.org> (module owner) a=mkanat | |||||
2009-11-09 | Bug 525734: Allow WebService clients to authenticate using Bugzilla_login ↵ | mkanat%bugzilla.org | 2 | -8/+7 | |
and Bugzilla_password Patch by Max Kanat-Alexander <mkanat@bugzilla.org> r=dkl, a=mkanat | |||||
2009-10-19 | Bug 399073: Remove the 'loginnetmask' parameter - Patch by Frédéric ↵ | lpsolit%gmail.com | 2 | -26/+14 | |
Buclin <LpSolit@gmail.com> r/a=mkanat | |||||
2009-10-09 | Bug 514913: Eliminate ssl="authenticated sessions" | mkanat%bugzilla.org | 2 | -16/+3 | |
Patch by Max Kanat-Alexander <mkanat@bugzilla.org> r=dkl, a=mkanat | |||||
2009-04-17 | Bug 488467: Verify and Login auth methods were being called in a random ↵ | mkanat%bugzilla.org | 2 | -2/+2 | |
order, causing sudo sessions to frequently not need the user to re-enter their password. Patch by Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=LpSolit | |||||
2009-03-02 | Bug 121601: Have logout display index.cgi, not just a message on relogin.cgi. | mkanat%bugzilla.org | 1 | -0/+1 | |
Patch by Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=LpSolit | |||||
2009-01-20 | Bug 134022: PERFORMANCE: deleting old login cookies locks login checks | mkanat%bugzilla.org | 1 | -0/+9 | |
Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=mkanat | |||||
2009-01-02 | Bug 211006: Make Bugzilla use SHA-256 instead of crypt() to store hashed ↵ | mkanat%bugzilla.org | 1 | -0/+10 | |
passwords in the database Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=LpSolit | |||||
2008-10-23 | Bug 455584 - Use bz_crypt everywhere instead of the crypt() function | dkl%redhat.com | 1 | -6/+1 | |
Patch by David Lawrence <dkl@redhat.com> = r/a=LpSolit | |||||
2008-10-21 | Bug 460770: Incorrect regexp when parsing the list of LDAP servers - Patch ↵ | lpsolit%gmail.com | 1 | -1/+1 | |
by Frédéric Buclin <LpSolit@gmail.com> r/a=mkanat | |||||
2008-10-05 | Partial backout of bug 183665. It's responsible for bug 457719 | lpsolit%gmail.com | 1 | -1/+1 | |
2008-09-12 | Bug 453767 - Passwords containing wide characters causes system error | dkl%redhat.com | 1 | -0/+5 | |
Patch by David Lawrence <dkl@redhat.com> - a/r=mkanat | |||||
2008-08-27 | Bug 449984: Login cookies should be created as SSL-only on installations ↵ | lpsolit%gmail.com | 1 | -15/+18 | |
that require SSL - Patch by Frédéric Buclin <LpSolit@gmail.com> r/a=mkanat | |||||
2008-08-23 | Bug 368502 - "Bugzilla_logincookie should not be accessible via javascript" ↵ | reed%reedloden.com | 1 | -3/+6 | |
[p=reed r+a=mkanat] | |||||
2008-08-18 | Bug 428659 â Setting SSL param to 'authenticated sessions' only ↵ | dkl%redhat.com | 1 | -3/+8 | |
protects logins and param doesn't protect WebService calls at all Patch by David Lawrence <dkl@redhat.com> - r/a=LpSolit/mkanat | |||||
2008-08-07 | Bug 438435: Need code hooks for authentication | mkanat%bugzilla.org | 2 | -8/+24 | |
Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=mkanat | |||||
2008-07-29 | Backing out these patches as they cause a regression. More information | dkl%redhat.com | 1 | -3/+5 | |
in the respective bug reports. Bug 428659 â Setting SSL param to 'authenticated sessions' only protects logins and param doesn't protect WebService calls at all Patch by Dave Lawrence <dkl@redhat.com> - r/a=mkanat Bug 445104: ssl redirects come with a 200 OK HTTP code on mod_perl Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=dkl, a=mkanat | |||||
2008-07-10 | Bug 428659 â Setting SSL param to 'authenticated sessions' only ↵ | dkl%redhat.com | 1 | -5/+3 | |
protects logins and param doesn't protect WebService calls at all Patch by Dave Lawrence <dkl@redhat.com> - r/a=mkanat | |||||
2007-12-15 | Bug 408384: Set extern_id when using LDAP auth | mkanat%bugzilla.org | 1 | -0/+2 | |
Patch By Emmanuel Seyman <eseyman@linagora.com> r=mkanat, a=mkanat | |||||
2007-12-15 | Bug 229049: Make LDAP authentication work when there are multiple mail= ↵ | mkanat%bugzilla.org | 1 | -1/+17 | |
attributes for an account. Patch By Emmanuel Seyman <eseyman@linagora.com> r=mkanat, a=mkanat | |||||
2007-11-15 | Bug 183665: Accessing post_bug.cgi directly gives a weird error message and ↵ | lpsolit%gmail.com | 1 | -1/+1 | |
should redirect to enter_bug.cgi instead - Patch by Matt Tasker <mtasker@gmail.com> (based on the original patch from victory <spam@bmo2007.rsz.jp>) r/a=LpSolit | |||||
2007-08-03 | Bug 380187 â Bugzilla should support RADIUS authentication. | wurblzap%gmail.com | 1 | -0/+64 | |
Patch by Marc Schumann <wurblzap@gmail.com>; r=mkanat, a=mkanat | |||||
2007-05-24 | Bug 380928 â Bugzilla::Auth::Verify::create_or_update_user can return ↵ | ghendricks%novell.com | 1 | -4/+3 | |
stale Bugzilla::User object patch by vrb@novell.com r=mkanat a=mkanat | |||||
2007-03-08 | Bug 367480: [LDAP] Try a list of servers in order until we connect successfully | mkanat%bugzilla.org | 1 | -4/+9 | |
Patch By Tony Bajan <firefox@tonyb.me.uk> r=mkanat, a=mkanat | |||||
2006-10-21 | Bug 340538: Insecure dependency in exec while running with -T switch at ↵ | wurblzap%gmail.com | 1 | -3/+5 | |
/usr/lib/perl5/site_perl/5.8.6/Mail/Mailer/sendmail.pm line 16. Patch by Marc Schumann <wurblzap@gmail.com>, r=LpSolit, a=myk | |||||
2006-08-26 | Bug 349349: Use ->create from Bugzilla::Object instead of insert_new_user ↵ | mkanat%bugzilla.org | 1 | -2/+7 | |
for Bugzilla::User Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=myk | |||||
2006-08-20 | Bug 224577: Bugzilla could use a web services interface. | wurblzap%gmail.com | 1 | -0/+7 | |
Patch by Marc Schumann <wurblzap@gmail.com>; r=mkanat; a=myk | |||||
2006-07-29 | Bug 346245: attribute parameter 'johndoe@company.tld' is not a hash ref at ↵ | mkanat%bugzilla.org | 1 | -2/+2 | |
Bugzilla/Auth/Verify.pm line 112 Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=wurblzap, a=myk | |||||
2006-07-11 | Bug 339731: [LDAP] URI-parsing code duplicated with Net::LDAP - Patch by ↵ | lpsolit%gmail.com | 1 | -28/+2 | |
guillomovitch@zarb.org r=mkanat a=justdave | |||||
2006-07-06 | Bug 340967: The login form appears twice when trying to add an attachment ↵ | lpsolit%gmail.com | 1 | -0/+15 | |
(due to two consecutive calls to Bugzilla->login) - Patch by Frédéric Buclin <LpSolit@gmail.com> r=mkanat a=myk | |||||
2006-07-04 | Bug 338375: Use Bugzilla->params everywhere instead of Param(). | mkanat%bugzilla.org | 4 | -4/+0 | |
Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=justdave | |||||
2006-07-04 | Bug 342869: Use Bugzilla->params everywhere except templates | mkanat%bugzilla.org | 4 | -16/+20 | |
Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=justdave | |||||
2006-06-19 | Spelling in code comments patch: 'cokie' -> 'cookie'; patch by Vlad Dascalu ↵ | vladd%bugzilla.org | 1 | -1/+1 | |
<vladd@bugzilla.org>. | |||||
2006-06-03 | Bug 340104: Move Bugzilla::Auth::get_netaddr() in Util.pm - Patch by ↵ | lpsolit%gmail.com | 2 | -5/+2 | |
Frédéric Buclin <LpSolit@gmail.com> r/a=justdave | |||||
2006-06-02 | Bug 282687: LDAP: TLS Support - Patch by guillomovitch@zarb.org r=mkanat ↵ | lpsolit%gmail.com | 1 | -0/+8 | |
a=justdave | |||||
2006-06-01 | Bug 339858: Remove useless module dependencies in Bugzilla::Auth::* - Patch ↵ | lpsolit%gmail.com | 4 | -4/+3 | |
by Frédéric Buclin <LpSolit@gmail.com> r=mkanat a=justdave | |||||
2006-05-31 | Bug 338573: Auth could throw an insecure dependency error if username is tainted | mkanat%bugzilla.org | 1 | -0/+6 | |
Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=justdave | |||||
2006-05-31 | Bug 320751: LDAP: Ability to have Bugzilla use the LDAP username directly as ↵ | mkanat%bugzilla.org | 1 | -5/+10 | |
the Bugzilla username Patch By guillomovitch@zarb.org r=mkanat, a=myk | |||||
2006-05-16 | Bug 337661: LDAP user login failure: Can't locate object method "realname" ↵ | lpsolit%gmail.com | 1 | -1/+1 | |
via package "Bugzilla::User" - Patch by Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit a=justdave | |||||
2006-05-12 | Bug 300410: Bugzilla::Auth needs to be restructured to not require a BEGIN block | mkanat%bugzilla.org | 15 | -1008/+1002 | |
Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=myk | |||||
2006-03-04 | Patch for bug 216902: support LDAPS connections; patch by Christian Krause ↵ | jocuri%softhome.net | 1 | -3/+22 | |
<chkr@plauener.de>, r=vladd, a=justdave. | |||||
2006-03-03 | Patch for bug 161369: Strip trailing whitespace from login usernames; patch ↵ | jocuri%softhome.net | 1 | -1/+1 | |
by Paul <pdemarco@zoominternet.net>, r=vladd, a=justdave. | |||||
2006-03-01 | Fix invalid POD formatting (patch for fixing broken tree - runtests.pl, test ↵ | jocuri%softhome.net | 1 | -1/+1 | |
11). | |||||
2006-02-22 | Bug 327355: Email preferences are not set correctly when the user account is ↵ | lpsolit%gmail.com | 1 | -101/+63 | |
created by Env.pm - Patch by Frédéric Buclin <LpSolit@gmail.com> r=joel a=justdave | |||||
2006-01-10 | Bug 322620: Logging in with 'Remember my Login' deselected gives: Use of ↵ | lpsolit%gmail.com | 1 | -0/+1 | |
uninitialized value in string eq at Bugzilla/Auth/Login/WWW/CGI.pm line 83 - Patch by Olav Vitters <bugzilla-mozilla@bkor.dhs.org> r=LpSolit a=justdave | |||||
2006-01-06 | Bug 322244: Cookies are incorrectly detainted when logging out - Patch by ↵ | lpsolit%gmail.com | 1 | -1/+1 | |
Olav Vitters <bugzilla-mozilla@bkor.dhs.org> r=LpSolit a=justdave | |||||
2006-01-03 | Bug 119524: SECURITY: predictable sessionid (Use a token instead of ↵ | lpsolit%gmail.com | 1 | -4/+6 | |
logincookie) - Patch by Olav Vitters <bugzilla-mozilla@bkor.dhs.org> r=mkanat a=justdave | |||||
2005-11-22 | Bug 279716: Users have to relogin when changing their own password - Patch ↵ | lpsolit%gmail.com | 1 | -2/+12 | |
by Marc Schumann <wurblzap@gmail.com> r=wicked a=justdave | |||||
2005-10-31 | Bug 304075: Eliminate use of $::userid from Bugzilla - Patch by Frédéric ↵ | lpsolit%gmail.com | 1 | -4/+0 | |
Buclin <LpSolit@gmail.com> r=wicked a=justdave |