summaryrefslogtreecommitdiffstats
path: root/system/libraries/Session/drivers
AgeCommit message (Collapse)AuthorFilesLines
2014-02-06Make CI_Session's HMAC comparison time-attack-safeAndrey Andreev1-1/+9
2014-01-08Fix 2 errors caused by recent commitsAndrey Andreev1-1/+1
2014-01-08Make newline standardization configurableAndrey Andreev1-1/+24
Added ['standardize_newlines'] Also altered the Session cookie driver, which experienced issues with this feature due to it's HMAC verification failing after the Input class alters newlines in non-encrypted session cookies. Supersedes PR #2470
2013-12-23Remove _serialize() and _unserialize() methodsJordan Eldredge1-34/+4
Since removing the unneeded manual escaping code, there is no-longer any reason to have the serialization functions abstracted. This also allows us to only suppress errors when unserializing cookie data, and only trim when we are unserializing database data (see commit 6b8312).
2013-12-21Remove unneeded manual escaping of session dataJordan Eldredge1-60/+3
2013-12-13Issue #2763 - Fixes Session GC Probability CalculationTyler Brownell1-1/+1
This should resolve issue #2763 where the cookie session garbage collection was running every request.
2013-07-17Cherry-picking some changes from PR #2425:Andrey Andreev2-1/+14
- Session events logging (debug) - Bug fix for OCI8 method stored_procedure()
2013-03-30Some cleanup related to mt_rand()vlakoff1-2/+1
- min and max values are 0 and mt_getrandmax() by default - remove useless mt_srand() seed calls
2013-03-02Fix Session cookie driver storing untrimmed user agent string in the ↵Daniel Robbins1-1/+1
database causing set_userdata() calls to fail when $config['sess_match_useragent'] = TRUE Signed-off-by: Daniel Robbins <github@danieljrobbins.com>
2013-02-19Issue #2086 Session_cookie's _update_db not guaranteed to updateDionysis Arvanitis1-0/+3
2013-02-08[ci skip] Add a missing spaceAndrey Andreev1-1/+1
2013-01-01[ci skip] Happy new yearAndrey Andreev2-2/+2
2012-12-17Fix #2074Andrey Andreev1-1/+1
2012-11-26Manually implement PR #2033Andrey Andreev1-1/+1
Check for an empty encryption_key shouldn't use strict comparison.
2012-11-21Change fs permissions and add some missing index.html files (#2017)Andrey Andreev3-0/+10
2012-11-01Manually apply PR #1594 (fixing phpdoc page-level generation/warnings)Andrey Andreev2-4/+6
Also partially fixes issue #1295, fixes inconsistencies in some page-level docblocks and adds include checks in language files.
2012-11-01Session cookie driver changesAndrey Andreev1-5/+31
- Changed docs CREATE TABLE ci_sessions example to have the PRIMARY KEY of session_id, ip_address and user_agent combined. - Changed DB updates to add WHERE clauses for the ip_address and/or user_agent strings if sess_match_ip and/or sess_match_useragent are set to TRUE.
2012-10-27Remove extra space...vkeranov1-1/+1
2012-10-27Fix #50Andrey Andreev1-4/+1
2012-10-18Fix Session cookies not being encrypted on creation and sess_destroy() not ↵Andrey Andreev1-2/+2
actually deleting cookies
2012-10-17Merge pull request #1896 from pkriete/developPascal Kriete1-19/+26
Updating the cookie driver to use HMAC authentication on all cookie data
2012-10-17Changing session error logging verbiage to be a little less unsettling.Pascal Kriete1-1/+1
Signed-off-by: Pascal Kriete <pascal@pascalkriete.com>
2012-10-16session native, fix cookie settingsGDmac1-14/+2
Signed-off-by: GDmac <grdalenoort@gmail.com>
2012-10-16Updating the cookie driver to use HMAC authentication on all cookie data.Pascal Kriete1-19/+26
Signed-off-by: Pascal Kriete <pascal@pascalkriete.com>
2012-10-16Native PHP Session, don't regenerate session_id during ajaxGDmac1-2/+6
Signed-off-by: GDmac <grdalenoort@gmail.com>
2012-10-16Session Native, respect cookie settingsGDmac1-3/+21
Respect config settings for cookie_secure and cookie_httponly Signed-off-by: GDmac <grdalenoort@gmail.com>
2012-10-15Partially fix #1702Andrey Andreev2-2/+2
2012-10-09Disable Session library under CLI and create a CI singleton to be used by ↵Andrey Andreev2-16/+5
its drivers
2012-09-05Misc. style changesAndrey Andreev1-1/+1
2012-09-05Cleanup and optimize new Session classesAndrey Andreev2-80/+114
2012-09-04That doesn't go there. Put cache fix around correct query.dchill421-11/+11
Signed-off-by: dchill42 <dchill42@gmail.com>
2012-09-04Fixed issues #1756 and #1711dchill421-0/+12
Signed-off-by: dchill42 <dchill42@gmail.com>
2012-08-29Fixed defaults and database check, reverted redundant shutdown featuredchill421-16/+5
Signed-off-by: dchill42 <dchill42@gmail.com>
2012-08-29Extracted cookie database saves to shutdown and cleaned up codedchill421-135/+134
Signed-off-by: dchill42 <dchill42@gmail.com>
2012-08-27Fixed select_driver(), cookie sess_destroy(), and native cookie name conflictdchill422-2/+3
2012-08-08Added session_id to userdata and applied sess_time_to_updatedchill421-0/+13
2012-07-31Damn, missed files on last commitdchill422-16/+61
2012-07-30Fixed _parent references and several minor bugsdchill422-5/+27
2012-07-24Cleaned up bangs and lowercase booleans, and fixed userdata return on not ↵dchill422-3/+3
found to NULL
2012-07-23Made cookie driver default and did miniscule code cleanup on driversdchill422-10/+2
2012-07-23Merge branch develop of github.com:/EllisLab/CodeIgniter into sessiondchill421-120/+293
2011-09-12Updated cookie driver to latest develop changesDarren Hill2-10/+13
2011-09-01Made private members protected for inheritanceDarren Hill2-47/+47
2011-08-31Better style guide complianceDarren Hill2-8/+8
2011-08-30Added Session driver with native PHP sessions and original-flavor CI cookie ↵Darren Hill2-0/+773
sessions