Age | Commit message (Collapse) | Author | Files | Lines | |
---|---|---|---|---|---|
2014-02-06 | Make CI_Session's HMAC comparison time-attack-safe | Andrey Andreev | 1 | -1/+9 | |
2014-01-24 | Righting a wrong in the Session library | Andrey Andreev | 1 | -40/+49 | |
- Change userdata(), flashdata(), tempdata() to return all the respective data when no parameter is passed. - Revert the addition of all_flashdata(). - Deprecate all_userdata(). - Fix related changelog entries that were all inconsistent. | |||||
2014-01-08 | Fix 2 errors caused by recent commits | Andrey Andreev | 1 | -1/+1 | |
2014-01-08 | Make newline standardization configurable | Andrey Andreev | 1 | -1/+24 | |
Added ['standardize_newlines'] Also altered the Session cookie driver, which experienced issues with this feature due to it's HMAC verification failing after the Input class alters newlines in non-encrypted session cookies. Supersedes PR #2470 | |||||
2014-01-06 | Make CI_Session's set_userdata(), set_flashdata(), set_tempdata(), ↵ | Andrey Andreev | 1 | -5/+5 | |
unset_userdata() and unset_flashdata()'s first parameter mandatory | |||||
2013-12-23 | Remove _serialize() and _unserialize() methods | Jordan Eldredge | 1 | -34/+4 | |
Since removing the unneeded manual escaping code, there is no-longer any reason to have the serialization functions abstracted. This also allows us to only suppress errors when unserializing cookie data, and only trim when we are unserializing database data (see commit 6b8312). | |||||
2013-12-21 | Remove unneeded manual escaping of session data | Jordan Eldredge | 1 | -60/+3 | |
2013-12-13 | Merge pull request #2764 from refringe/feature/cookie_session | Andrey Andreev | 1 | -1/+1 | |
Issue #2763 - Fixes Session GC Probability Calculation | |||||
2013-12-13 | Issue #2763 - Fixes Session GC Probability Calculation | Tyler Brownell | 1 | -1/+1 | |
This should resolve issue #2763 where the cookie session garbage collection was running every request. | |||||
2013-11-12 | Deprecate CI_Input::is_cli_request() and add common function is_cli() to ↵ | Andrey Andreev | 1 | -4/+4 | |
replace it Calls to this function are often needed before the Input library is available | |||||
2013-07-31 | Optimize CI_Session::__construct() routines and make driver validity check ↵ | Andrey Andreev | 1 | -21/+18 | |
stricter | |||||
2013-07-17 | Cherry-picking some changes from PR #2425: | Andrey Andreev | 2 | -1/+14 | |
- Session events logging (debug) - Bug fix for OCI8 method stored_procedure() | |||||
2013-03-30 | Some cleanup related to mt_rand() | vlakoff | 1 | -2/+1 | |
- min and max values are 0 and mt_getrandmax() by default - remove useless mt_srand() seed calls | |||||
2013-03-02 | Fix Session cookie driver storing untrimmed user agent string in the ↵ | Daniel Robbins | 1 | -1/+1 | |
database causing set_userdata() calls to fail when $config['sess_match_useragent'] = TRUE Signed-off-by: Daniel Robbins <github@danieljrobbins.com> | |||||
2013-02-19 | Issue #2086 Session_cookie's _update_db not guaranteed to update | Dionysis Arvanitis | 1 | -0/+3 | |
2013-02-08 | [ci skip] Add a missing space | Andrey Andreev | 1 | -1/+1 | |
2013-01-01 | [ci skip] Happy new year | Andrey Andreev | 3 | -3/+3 | |
2012-12-17 | Fix #2074 | Andrey Andreev | 1 | -1/+1 | |
2012-11-26 | Manually implement PR #2033 | Andrey Andreev | 1 | -1/+1 | |
Check for an empty encryption_key shouldn't use strict comparison. | |||||
2012-11-25 | Merge pull request #2026 from johnathancroom/keep_flash_data_array | Andrey Andreev | 1 | -1/+12 | |
keep_flashdata accepts array | |||||
2012-11-25 | Improved array keey_flashdata + Changelog | Johnathan Croom | 1 | -13/+15 | |
2012-11-25 | Added support for extending individual driver classes and driver unit tests | dchill42 | 1 | -11/+9 | |
Signed-off-by: dchill42 <dchill42@gmail.com> | |||||
2012-11-24 | Requested changed to keep_flashdata | Johnathan Croom | 1 | -4/+3 | |
2012-11-24 | keep_flashdata accepts array | Johnathan Croom | 1 | -8/+18 | |
2012-11-21 | Change fs permissions and add some missing index.html files (#2017) | Andrey Andreev | 5 | -0/+20 | |
2012-11-02 | Some micro-optimizations | Andrey Andreev | 1 | -1/+1 | |
2012-11-01 | [ci skip] DocBlocks for Pagination, Session, Trackback, Jquery libraries | Andrey Andreev | 1 | -0/+29 | |
Partially fixes issue #1295 | |||||
2012-11-01 | Manually apply PR #1594 (fixing phpdoc page-level generation/warnings) | Andrey Andreev | 3 | -6/+9 | |
Also partially fixes issue #1295, fixes inconsistencies in some page-level docblocks and adds include checks in language files. | |||||
2012-11-01 | Session cookie driver changes | Andrey Andreev | 1 | -5/+31 | |
- Changed docs CREATE TABLE ci_sessions example to have the PRIMARY KEY of session_id, ip_address and user_agent combined. - Changed DB updates to add WHERE clauses for the ip_address and/or user_agent strings if sess_match_ip and/or sess_match_useragent are set to TRUE. | |||||
2012-10-27 | Remove extra spaces... | vkeranov | 1 | -3/+3 | |
2012-10-27 | Remove extra space... | vkeranov | 1 | -1/+1 | |
2012-10-27 | Fix #50 | Andrey Andreev | 1 | -4/+1 | |
2012-10-18 | Fix Session cookies not being encrypted on creation and sess_destroy() not ↵ | Andrey Andreev | 1 | -2/+2 | |
actually deleting cookies | |||||
2012-10-17 | Merge pull request #1896 from pkriete/develop | Pascal Kriete | 1 | -19/+26 | |
Updating the cookie driver to use HMAC authentication on all cookie data | |||||
2012-10-17 | Changing session error logging verbiage to be a little less unsettling. | Pascal Kriete | 1 | -1/+1 | |
Signed-off-by: Pascal Kriete <pascal@pascalkriete.com> | |||||
2012-10-16 | session native, fix cookie settings | GDmac | 1 | -14/+2 | |
Signed-off-by: GDmac <grdalenoort@gmail.com> | |||||
2012-10-16 | Updating the cookie driver to use HMAC authentication on all cookie data. | Pascal Kriete | 1 | -19/+26 | |
Signed-off-by: Pascal Kriete <pascal@pascalkriete.com> | |||||
2012-10-16 | Native PHP Session, don't regenerate session_id during ajax | GDmac | 1 | -2/+6 | |
Signed-off-by: GDmac <grdalenoort@gmail.com> | |||||
2012-10-16 | Session Native, respect cookie settings | GDmac | 1 | -3/+21 | |
Respect config settings for cookie_secure and cookie_httponly Signed-off-by: GDmac <grdalenoort@gmail.com> | |||||
2012-10-15 | Partially fix #1702 | Andrey Andreev | 2 | -2/+2 | |
2012-10-09 | Disable Session library under CLI and create a CI singleton to be used by ↵ | Andrey Andreev | 3 | -17/+31 | |
its drivers | |||||
2012-09-05 | Misc. style changes | Andrey Andreev | 1 | -1/+1 | |
2012-09-05 | Cleanup and optimize new Session classes | Andrey Andreev | 3 | -128/+221 | |
2012-09-04 | That doesn't go there. Put cache fix around correct query. | dchill42 | 1 | -11/+11 | |
Signed-off-by: dchill42 <dchill42@gmail.com> | |||||
2012-09-04 | Fixed issues #1756 and #1711 | dchill42 | 1 | -0/+12 | |
Signed-off-by: dchill42 <dchill42@gmail.com> | |||||
2012-08-29 | Fixed defaults and database check, reverted redundant shutdown feature | dchill42 | 2 | -51/+5 | |
Signed-off-by: dchill42 <dchill42@gmail.com> | |||||
2012-08-29 | Extracted cookie database saves to shutdown and cleaned up code | dchill42 | 2 | -135/+169 | |
Signed-off-by: dchill42 <dchill42@gmail.com> | |||||
2012-08-27 | Fixed select_driver(), cookie sess_destroy(), and native cookie name conflict | dchill42 | 3 | -6/+10 | |
2012-08-12 | Updated comments about default driver | dchill42 | 1 | -2/+2 | |
2012-08-08 | Added session_id to userdata and applied sess_time_to_update | dchill42 | 1 | -0/+13 | |