Age | Commit message (Collapse) | Author | Files | Lines | |
---|---|---|---|---|---|
2014-02-06 | Make CI_Session's HMAC comparison time-attack-safe | Andrey Andreev | 1 | -1/+9 | |
2014-01-08 | Fix 2 errors caused by recent commits | Andrey Andreev | 1 | -1/+1 | |
2014-01-08 | Make newline standardization configurable | Andrey Andreev | 1 | -1/+24 | |
Added ['standardize_newlines'] Also altered the Session cookie driver, which experienced issues with this feature due to it's HMAC verification failing after the Input class alters newlines in non-encrypted session cookies. Supersedes PR #2470 | |||||
2013-12-23 | Remove _serialize() and _unserialize() methods | Jordan Eldredge | 1 | -34/+4 | |
Since removing the unneeded manual escaping code, there is no-longer any reason to have the serialization functions abstracted. This also allows us to only suppress errors when unserializing cookie data, and only trim when we are unserializing database data (see commit 6b8312). | |||||
2013-12-21 | Remove unneeded manual escaping of session data | Jordan Eldredge | 1 | -60/+3 | |
2013-12-13 | Issue #2763 - Fixes Session GC Probability Calculation | Tyler Brownell | 1 | -1/+1 | |
This should resolve issue #2763 where the cookie session garbage collection was running every request. | |||||
2013-07-17 | Cherry-picking some changes from PR #2425: | Andrey Andreev | 2 | -1/+14 | |
- Session events logging (debug) - Bug fix for OCI8 method stored_procedure() | |||||
2013-03-30 | Some cleanup related to mt_rand() | vlakoff | 1 | -2/+1 | |
- min and max values are 0 and mt_getrandmax() by default - remove useless mt_srand() seed calls | |||||
2013-03-02 | Fix Session cookie driver storing untrimmed user agent string in the ↵ | Daniel Robbins | 1 | -1/+1 | |
database causing set_userdata() calls to fail when $config['sess_match_useragent'] = TRUE Signed-off-by: Daniel Robbins <github@danieljrobbins.com> | |||||
2013-02-19 | Issue #2086 Session_cookie's _update_db not guaranteed to update | Dionysis Arvanitis | 1 | -0/+3 | |
2013-02-08 | [ci skip] Add a missing space | Andrey Andreev | 1 | -1/+1 | |
2013-01-01 | [ci skip] Happy new year | Andrey Andreev | 2 | -2/+2 | |
2012-12-17 | Fix #2074 | Andrey Andreev | 1 | -1/+1 | |
2012-11-26 | Manually implement PR #2033 | Andrey Andreev | 1 | -1/+1 | |
Check for an empty encryption_key shouldn't use strict comparison. | |||||
2012-11-21 | Change fs permissions and add some missing index.html files (#2017) | Andrey Andreev | 3 | -0/+10 | |
2012-11-01 | Manually apply PR #1594 (fixing phpdoc page-level generation/warnings) | Andrey Andreev | 2 | -4/+6 | |
Also partially fixes issue #1295, fixes inconsistencies in some page-level docblocks and adds include checks in language files. | |||||
2012-11-01 | Session cookie driver changes | Andrey Andreev | 1 | -5/+31 | |
- Changed docs CREATE TABLE ci_sessions example to have the PRIMARY KEY of session_id, ip_address and user_agent combined. - Changed DB updates to add WHERE clauses for the ip_address and/or user_agent strings if sess_match_ip and/or sess_match_useragent are set to TRUE. | |||||
2012-10-27 | Remove extra space... | vkeranov | 1 | -1/+1 | |
2012-10-27 | Fix #50 | Andrey Andreev | 1 | -4/+1 | |
2012-10-18 | Fix Session cookies not being encrypted on creation and sess_destroy() not ↵ | Andrey Andreev | 1 | -2/+2 | |
actually deleting cookies | |||||
2012-10-17 | Merge pull request #1896 from pkriete/develop | Pascal Kriete | 1 | -19/+26 | |
Updating the cookie driver to use HMAC authentication on all cookie data | |||||
2012-10-17 | Changing session error logging verbiage to be a little less unsettling. | Pascal Kriete | 1 | -1/+1 | |
Signed-off-by: Pascal Kriete <pascal@pascalkriete.com> | |||||
2012-10-16 | session native, fix cookie settings | GDmac | 1 | -14/+2 | |
Signed-off-by: GDmac <grdalenoort@gmail.com> | |||||
2012-10-16 | Updating the cookie driver to use HMAC authentication on all cookie data. | Pascal Kriete | 1 | -19/+26 | |
Signed-off-by: Pascal Kriete <pascal@pascalkriete.com> | |||||
2012-10-16 | Native PHP Session, don't regenerate session_id during ajax | GDmac | 1 | -2/+6 | |
Signed-off-by: GDmac <grdalenoort@gmail.com> | |||||
2012-10-16 | Session Native, respect cookie settings | GDmac | 1 | -3/+21 | |
Respect config settings for cookie_secure and cookie_httponly Signed-off-by: GDmac <grdalenoort@gmail.com> | |||||
2012-10-15 | Partially fix #1702 | Andrey Andreev | 2 | -2/+2 | |
2012-10-09 | Disable Session library under CLI and create a CI singleton to be used by ↵ | Andrey Andreev | 2 | -16/+5 | |
its drivers | |||||
2012-09-05 | Misc. style changes | Andrey Andreev | 1 | -1/+1 | |
2012-09-05 | Cleanup and optimize new Session classes | Andrey Andreev | 2 | -80/+114 | |
2012-09-04 | That doesn't go there. Put cache fix around correct query. | dchill42 | 1 | -11/+11 | |
Signed-off-by: dchill42 <dchill42@gmail.com> | |||||
2012-09-04 | Fixed issues #1756 and #1711 | dchill42 | 1 | -0/+12 | |
Signed-off-by: dchill42 <dchill42@gmail.com> | |||||
2012-08-29 | Fixed defaults and database check, reverted redundant shutdown feature | dchill42 | 1 | -16/+5 | |
Signed-off-by: dchill42 <dchill42@gmail.com> | |||||
2012-08-29 | Extracted cookie database saves to shutdown and cleaned up code | dchill42 | 1 | -135/+134 | |
Signed-off-by: dchill42 <dchill42@gmail.com> | |||||
2012-08-27 | Fixed select_driver(), cookie sess_destroy(), and native cookie name conflict | dchill42 | 2 | -2/+3 | |
2012-08-08 | Added session_id to userdata and applied sess_time_to_update | dchill42 | 1 | -0/+13 | |
2012-07-31 | Damn, missed files on last commit | dchill42 | 2 | -16/+61 | |
2012-07-30 | Fixed _parent references and several minor bugs | dchill42 | 2 | -5/+27 | |
2012-07-24 | Cleaned up bangs and lowercase booleans, and fixed userdata return on not ↵ | dchill42 | 2 | -3/+3 | |
found to NULL | |||||
2012-07-23 | Made cookie driver default and did miniscule code cleanup on drivers | dchill42 | 2 | -10/+2 | |
2012-07-23 | Merge branch develop of github.com:/EllisLab/CodeIgniter into session | dchill42 | 1 | -120/+293 | |
2011-09-12 | Updated cookie driver to latest develop changes | Darren Hill | 2 | -10/+13 | |
2011-09-01 | Made private members protected for inheritance | Darren Hill | 2 | -47/+47 | |
2011-08-31 | Better style guide compliance | Darren Hill | 2 | -8/+8 | |
2011-08-30 | Added Session driver with native PHP sessions and original-flavor CI cookie ↵ | Darren Hill | 2 | -0/+773 | |
sessions |