aboutsummaryrefslogtreecommitdiffstats
path: root/Bugzilla/Auth.pm
Commit message (Collapse)AuthorAgeFilesLines
* Bug 1071317: Remove unused variablesFrédéric Buclin2014-09-291-1/+0
| | | | r=gerv a=sgreen
* Bug 996893: Perl 5.18 and newer throw tons of warnings about deprecated modulesFrédéric Buclin2014-08-131-0/+2
| | | | r=dkl a=sgreen
* Bug 726696 - All authenticated WebServices methods should require ↵Simon Green2014-07-271-1/+1
| | | | | | username/pass, token or a valid API key for authentication r=dkl, a=sgreen
* Bug 713926: (CVE-2014-1517) [SECURITY] Login form lacks CSRF protectionFrédéric Buclin2014-04-171-1/+1
| | | | r=dkl a=justdave
* Bug 947823: Replace gender-specific pronouns with gender-neutral pronounsCharlie Somerville2014-02-271-2/+2
| | | | r=gerv a=justdave
* Bug 931765 - When you enter your login or password wrong, the error message ↵tinajohnson.1234@gmail.com2013-11-051-1/+1
| | | | | | shown "The username or password you entered is not valid" should be edited to "The login or password you entered is not valid" r=dkl,a=sgreen
* Bug 893195 - Allow token based authentication for webservicesDave Lawrence2013-08-261-0/+17
| | | | r=glob,a=sgreen
* Bug 787529: Use |use 5.10.1| everywhereFrédéric Buclin2012-09-011-0/+1
| | | | r=wicked a=LpSolit
* Bug 729001: Reverse resolves the IP address in account lockout notificationsByron Jones2012-05-081-0/+9
| | | | r=LpSolit, a=LpSolit
* Bug 680131: Replace the MPL 1.1 license by the MPL 2.0 one in all files, and ↵Frédéric Buclin2012-01-111-23/+5
| | | | | | add it to files which miss one r=kiko r=mkanat r=mrbball a=LpSolit
* Bug 707594: Fix broken account lockout notificationsByron Jones2011-12-061-1/+2
| | | | r=LpSolit, a=LpSolit
* Fix a warning thrown when running 011pod.tFrédéric Buclin2011-08-031-1/+1
|
* Bug 658929 - User autocomplete is very slow when there are lots of users in ↵David Lawrence2011-07-051-1/+1
| | | | | | the profiles table r/a=mkanat
* Bug 423612 - Allow editing extern_id for users from the admin interfaceJochen Wiedmann2011-04-271-0/+10
| | | | r=mkanat, a=mkanat
* Bug 611891: Don't generate cookies for logins done over GET via the WebServiceMax Kanat-Alexander2010-11-141-1/+6
| | | | r=glob, a=mkanat
* Bug 604522: t/012throwables.t doesn't catch new user errors correctlyFrédéric Buclin2010-10-151-1/+1
| | | | r/a=mkanat
* Bug 575947: Users with passwords length less than 6 characters can't login ↵Frédéric Buclin2010-10-141-1/+6
| | | | | | after migration from 3.4.x or older to 3.6 or newer r/a=mkanat
* Fix a POD error in Bugzilla/Auth.pm that was causing a tree burn for 5.8.1.mkanat%bugzilla.org2009-12-131-1/+1
|
* Bug 355283: Lock out a user account on a particular IP for 30 minutes if ↵mkanat%bugzilla.org2009-12-131-1/+55
| | | | | | they fail to log in 5 times from that IP. Patch by Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=LpSolit
* Bug 134022: PERFORMANCE: deleting old login cookies locks login checksmkanat%bugzilla.org2009-01-201-11/+5
| | | | Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=mkanat
* Bug 344106: Error upgrading Bugzilla to version 2.23.2+ with perl 5.8.0 - ↵lpsolit%gmail.com2006-07-121-45/+34
| | | | Patch by Frédéric Buclin <LpSolit@gmail.com> r=wicked a=myk
* Bug 338375: Use Bugzilla->params everywhere instead of Param().mkanat%bugzilla.org2006-07-041-1/+0
| | | | Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=justdave
* Bug 342869: Use Bugzilla->params everywhere except templatesmkanat%bugzilla.org2006-07-041-2/+2
| | | | Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=justdave
* Bug 340104: Move Bugzilla::Auth::get_netaddr() in Util.pm - Patch by ↵lpsolit%gmail.com2006-06-031-38/+0
| | | | Frédéric Buclin <LpSolit@gmail.com> r/a=justdave
* Trying to fix bustage on Perl5.8.0 (adding a newline between 1; and __END__) ↵lpsolit%gmail.com2006-05-161-0/+1
| | | | r=wicked on IRC
* Bug 337681: When trying to impersonate someone, the UI displays the password ↵lpsolit%gmail.com2006-05-151-1/+4
| | | | field when using the ENV method (with user_info_class="Env,CGI") - Patch by Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit a=justdave
* Bug 300410: Bugzilla::Auth needs to be restructured to not require a BEGIN blockmkanat%bugzilla.org2006-05-121-194/+381
| | | | Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=myk
* Patch for bug 323627: Setting "loginnetmask" to 0 should disable IP ↵jocuri%softhome.net2006-02-211-1/+4
| | | | checking; patch by Jesse Erlbaum <jesse@erlbaum.net>, r=vladd, a=justdave.
* Bug 301967: Some .pm files have invalid POD syntax - Patch by Frédéric ↵lpsolit%gmail.com2005-07-261-10/+2
| | | | Buclin <LpSolit@gmail.com> r=wurblzap a=justdave
* Bug 300336: Bugzilla::Auth should not contain any exported subroutinesmkanat%kerio.com2005-07-131-49/+0
| | | | Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=justdave
* Bug 298659: setting authentication to LDAP,DB failsmkanat%kerio.com2005-07-081-14/+20
| | | | Patch By A. Karl Kornel <karl@kornel.name> r=glob, a=justdave
* Fixing tinderbox bustage from previous checkin.justdave%bugzilla.org2005-02-011-1/+1
| | | | a= justdave
* Bug 278792 : Move Crypt() to Bugzilla::Authtravis%sedsystems.ca2005-02-011-0/+49
| | | | Patch by Max Kanat-Alexander <mkanat@kerio.com> r=vladd a=justdave
* Bug 241900: Allow Bugzilla::Auth to have multiple login and validation stylesbugreport%peshkin.net2004-07-211-28/+98
| | | | | | patch by erik r=joel, kiko a=myk
* Backing out bug 241900bugreport%peshkin.net2004-07-121-83/+25
|
* Bug 241900: Allow Bugzilla::Auth to have multiple login and validation stylesbugreport%peshkin.net2004-07-121-25/+83
| | | | | | patch by erik r=joel a=justdave
* Fix for bug 226764: Move InvalidateLogins into Bugzilla::Auth::CGI.kiko%async.com.br2004-03-271-40/+74
| | | | | | | | | | | | | Consolidates the logout code into Bugzilla::Auth::CGI, and provides simple front-end wrappers in Bugzilla.pm for use in the CGIs we have. r=bbaetz, joel; a=justdave. Adds a set of constants to the logout() API which allow specifying "how much" we should log out -- all sessions, the current session, or all sessions but the current one. Fixes callsites to use this new API; cleans and documents things a bit while we're at it. Part I in the great COOKIE apocalypse.
* Bug 237864: clean up leftovers from the bug 192516 checkin (some occurances ↵justdave%syndicomm.com2004-03-181-1/+1
| | | | | | of Token got missed) r= gerv, a= justdave
* Bug 221977: Insecure dependency in require while running with -T switch at ↵jocuri%softhome.net2003-10-191-0/+6
| | | | Bugzilla/Auth.pm; patch by Dave Miller (justdave@bugzilla.org); r=gerv; a=justdave.
* Bug 180642 - Move authentication code into a modulebbaetz%acm.org2003-03-221-0/+214
r=gerv, justdave a=justdave