aboutsummaryrefslogtreecommitdiffstats
path: root/Bugzilla/Auth
Commit message (Collapse)AuthorAgeFilesLines
* Bug 453767 - Passwords containing wide characters causes system errordkl%redhat.com2008-09-121-0/+5
| | | | Patch by David Lawrence <dkl@redhat.com> - a/r=mkanat
* Bug 449984: Login cookies should be created as SSL-only on installations ↵lpsolit%gmail.com2008-08-271-15/+18
| | | | that require SSL - Patch by Frédéric Buclin <LpSolit@gmail.com> r/a=mkanat
* Bug 368502 - "Bugzilla_logincookie should not be accessible via javascript" ↵reed%reedloden.com2008-08-231-3/+6
| | | | [p=reed r+a=mkanat]
* Bug 428659 – Setting SSL param to 'authenticated sessions' only ↵dkl%redhat.com2008-08-181-3/+8
| | | | | | | protects logins and param doesn't protect WebService calls at all Patch by David Lawrence <dkl@redhat.com> - r/a=LpSolit/mkanat
* Bug 438435: Need code hooks for authenticationmkanat%bugzilla.org2008-08-072-8/+24
| | | | Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=mkanat
* Backing out these patches as they cause a regression. More informationdkl%redhat.com2008-07-291-3/+5
| | | | | | | | | | | in the respective bug reports. Bug 428659 – Setting SSL param to 'authenticated sessions' only protects logins and param doesn't protect WebService calls at all Patch by Dave Lawrence <dkl@redhat.com> - r/a=mkanat Bug 445104: ssl redirects come with a 200 OK HTTP code on mod_perl Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=dkl, a=mkanat
* Bug 428659 – Setting SSL param to 'authenticated sessions' only ↵dkl%redhat.com2008-07-101-5/+3
| | | | | | protects logins and param doesn't protect WebService calls at all Patch by Dave Lawrence <dkl@redhat.com> - r/a=mkanat
* Bug 408384: Set extern_id when using LDAP authmkanat%bugzilla.org2007-12-151-0/+2
| | | | Patch By Emmanuel Seyman <eseyman@linagora.com> r=mkanat, a=mkanat
* Bug 229049: Make LDAP authentication work when there are multiple mail= ↵mkanat%bugzilla.org2007-12-141-1/+17
| | | | | | attributes for an account. Patch By Emmanuel Seyman <eseyman@linagora.com> r=mkanat, a=mkanat
* Bug 183665: Accessing post_bug.cgi directly gives a weird error message and ↵lpsolit%gmail.com2007-11-151-1/+1
| | | | should redirect to enter_bug.cgi instead - Patch by Matt Tasker <mtasker@gmail.com> (based on the original patch from victory <spam@bmo2007.rsz.jp>) r/a=LpSolit
* Bug 380187 – Bugzilla should support RADIUS authentication.wurblzap%gmail.com2007-08-031-0/+64
| | | | | Patch by Marc Schumann <wurblzap@gmail.com>; r=mkanat, a=mkanat
* Bug 380928 – Bugzilla::Auth::Verify::create_or_update_user can return ↵ghendricks%novell.com2007-05-231-4/+3
| | | | | | stale Bugzilla::User object patch by vrb@novell.com r=mkanat a=mkanat
* Bug 367480: [LDAP] Try a list of servers in order until we connect successfullymkanat%bugzilla.org2007-03-081-4/+9
| | | | Patch By Tony Bajan <firefox@tonyb.me.uk> r=mkanat, a=mkanat
* Bug 340538: Insecure dependency in exec while running with -T switch at ↵wurblzap%gmail.com2006-10-211-3/+5
| | | | | | | /usr/lib/perl5/site_perl/5.8.6/Mail/Mailer/sendmail.pm line 16. Patch by Marc Schumann <wurblzap@gmail.com>, r=LpSolit, a=myk
* Bug 349349: Use ->create from Bugzilla::Object instead of insert_new_user ↵mkanat%bugzilla.org2006-08-261-2/+7
| | | | | | for Bugzilla::User Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=myk
* Bug 224577: Bugzilla could use a web services interface.wurblzap%gmail.com2006-08-201-0/+7
| | | | | Patch by Marc Schumann <wurblzap@gmail.com>; r=mkanat; a=myk
* Bug 346245: attribute parameter 'johndoe@company.tld' is not a hash ref at ↵mkanat%bugzilla.org2006-07-291-2/+2
| | | | | | Bugzilla/Auth/Verify.pm line 112 Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=wurblzap, a=myk
* Bug 339731: [LDAP] URI-parsing code duplicated with Net::LDAP - Patch by ↵lpsolit%gmail.com2006-07-111-28/+2
| | | | guillomovitch@zarb.org r=mkanat a=justdave
* Bug 340967: The login form appears twice when trying to add an attachment ↵lpsolit%gmail.com2006-07-061-0/+15
| | | | (due to two consecutive calls to Bugzilla->login) - Patch by Frédéric Buclin <LpSolit@gmail.com> r=mkanat a=myk
* Bug 338375: Use Bugzilla->params everywhere instead of Param().mkanat%bugzilla.org2006-07-044-4/+0
| | | | Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=justdave
* Bug 342869: Use Bugzilla->params everywhere except templatesmkanat%bugzilla.org2006-07-044-16/+20
| | | | Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=justdave
* Spelling in code comments patch: 'cokie' -> 'cookie'; patch by Vlad Dascalu ↵vladd%bugzilla.org2006-06-191-1/+1
| | | | <vladd@bugzilla.org>.
* Bug 340104: Move Bugzilla::Auth::get_netaddr() in Util.pm - Patch by ↵lpsolit%gmail.com2006-06-032-5/+2
| | | | Frédéric Buclin <LpSolit@gmail.com> r/a=justdave
* Bug 282687: LDAP: TLS Support - Patch by guillomovitch@zarb.org r=mkanat ↵lpsolit%gmail.com2006-06-021-0/+8
| | | | a=justdave
* Bug 339858: Remove useless module dependencies in Bugzilla::Auth::* - Patch ↵lpsolit%gmail.com2006-06-014-4/+3
| | | | by Frédéric Buclin <LpSolit@gmail.com> r=mkanat a=justdave
* Bug 338573: Auth could throw an insecure dependency error if username is taintedmkanat%bugzilla.org2006-05-311-0/+6
| | | | Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=justdave
* Bug 320751: LDAP: Ability to have Bugzilla use the LDAP username directly as ↵mkanat%bugzilla.org2006-05-311-5/+10
| | | | | | the Bugzilla username Patch By guillomovitch@zarb.org r=mkanat, a=myk
* Bug 337661: LDAP user login failure: Can't locate object method "realname" ↵lpsolit%gmail.com2006-05-151-1/+1
| | | | via package "Bugzilla::User" - Patch by Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit a=justdave
* Bug 300410: Bugzilla::Auth needs to be restructured to not require a BEGIN blockmkanat%bugzilla.org2006-05-1215-1008/+1002
| | | | Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=myk
* Patch for bug 216902: support LDAPS connections; patch by Christian Krause ↵jocuri%softhome.net2006-03-041-3/+22
| | | | <chkr@plauener.de>, r=vladd, a=justdave.
* Patch for bug 161369: Strip trailing whitespace from login usernames; patch ↵jocuri%softhome.net2006-03-031-1/+1
| | | | by Paul <pdemarco@zoominternet.net>, r=vladd, a=justdave.
* Fix invalid POD formatting (patch for fixing broken tree - runtests.pl, test ↵jocuri%softhome.net2006-02-281-1/+1
| | | | 11).
* Bug 327355: Email preferences are not set correctly when the user account is ↵lpsolit%gmail.com2006-02-221-101/+63
| | | | created by Env.pm - Patch by Frédéric Buclin <LpSolit@gmail.com> r=joel a=justdave
* Bug 322620: Logging in with 'Remember my Login' deselected gives: Use of ↵lpsolit%gmail.com2006-01-101-0/+1
| | | | uninitialized value in string eq at Bugzilla/Auth/Login/WWW/CGI.pm line 83 - Patch by Olav Vitters <bugzilla-mozilla@bkor.dhs.org> r=LpSolit a=justdave
* Bug 322244: Cookies are incorrectly detainted when logging out - Patch by ↵lpsolit%gmail.com2006-01-051-1/+1
| | | | Olav Vitters <bugzilla-mozilla@bkor.dhs.org> r=LpSolit a=justdave
* Bug 119524: SECURITY: predictable sessionid (Use a token instead of ↵lpsolit%gmail.com2006-01-031-4/+6
| | | | logincookie) - Patch by Olav Vitters <bugzilla-mozilla@bkor.dhs.org> r=mkanat a=justdave
* Bug 279716: Users have to relogin when changing their own password - Patch ↵lpsolit%gmail.com2005-11-221-2/+12
| | | | by Marc Schumann <wurblzap@gmail.com> r=wicked a=justdave
* Bug 304075: Eliminate use of $::userid from Bugzilla - Patch by Frédéric ↵lpsolit%gmail.com2005-10-311-4/+0
| | | | Buclin <LpSolit@gmail.com> r=wicked a=justdave
* Bug 304583: Remove all remaining need to rederive inherited groupsbugreport%peshkin.net2005-08-191-0/+9
| | | | | Patch by Joel Peshkin <bugreport@peshkin.net> r=mkanat, a=justdave
* Bug 300403: New Charts errors out, creates new 'add' user, when Env auth ↵lpsolit%gmail.com2005-07-261-2/+6
| | | | method is used - Patch by A. Karl Kornel <karl@kornel.name> r=wurblzap a=justdave
* Bug 301967: Some .pm files have invalid POD syntax - Patch by Frédéric ↵lpsolit%gmail.com2005-07-261-1/+3
| | | | Buclin <LpSolit@gmail.com> r=wurblzap a=justdave
* Bug 300336: Bugzilla::Auth should not contain any exported subroutinesmkanat%kerio.com2005-07-131-4/+1
| | | | Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=justdave
* Bug 298659: setting authentication to LDAP,DB failsmkanat%kerio.com2005-07-081-2/+2
| | | | Patch By A. Karl Kornel <karl@kornel.name> r=glob, a=justdave
* Bug 285695: [PostgreSQL] Username checks for login, etc. need to be case ↵mkanat%kerio.com2005-07-083-16/+10
| | | | | | insensitive Patch By Max Kanat-Alexander <mkanat@bugzilla.org> r=LpSolit, a=justdave
* Bug 268146: mod_security complain: Invalid cookie format: Cookie value is ↵lpsolit%gmail.com2005-07-071-6/+2
| | | | missing #2 - Patch by Marc Schumann <wurblzap@gmail.com> r=kiko a=justdave
* Bug 287436: [SECURITY] After having logged in, links to change the report ↵mkanat%kerio.com2005-05-121-0/+2
| | | | | | type contain username and password Patch By Marc Schumann <wurblzap@gmail.com> r=gerv, a=justdave
* Bug 290570: Bugzilla::Auth::WWW:Env uses bitwise OR - Patch by Simon ↵lpsolit%gmail.com2005-04-171-1/+1
| | | | Wilkinson <simon@sxw.org.uk> r=kiko a=justdave
* Bug 238877: remove %FORM from Bugzilla/Auth/Login/WWW/CGI.pm - Patch by ↵lpsolit%gmail.com2005-04-081-2/+0
| | | | Teemu Mannermaa <wicked@etlicon.fi> r=LpSolit a=justdave
* Bug 258515: Errors when accessing Bugzilla over IPv6 - Patch by Marc ↵lpsolit%gmail.com2005-03-231-5/+3
| | | | Schumann <wurblzap@gmail.com> r=joel, a=justdave
* Bug 83044 - Any page is now capable of being a login page simply by adding ↵jake%bugzilla.org2005-03-131-0/+1
| | | | | | the ?GoAheadAndLogin=1 option to the URL. All links have been changed to make index.cgi the default login page instead of query.cgi. r=joel, a=justdave