aboutsummaryrefslogtreecommitdiffstats
path: root/Bugzilla/Auth
Commit message (Expand)AuthorAgeFilesLines
* Bug 1009013 - Require a user to change their password if they log in and thei...Simon Green2014-09-111-4/+13
* Bug 996893: Perl 5.18 and newer throw tons of warnings about deprecated modulesFrédéric Buclin2014-08-1312-0/+15
* Bug 1044701: "Uninitialized value $token_type" when passing an invalid Bugzil...David Lawrence2014-07-311-1/+4
* Bug 726696 - All authenticated WebServices methods should require username/pa...Simon Green2014-07-272-1/+65
* Bug 1009017: users are unable to log in if their password needs to beByron Jones2014-05-201-1/+3
* Bug 1001497: User.login incorrectly returns id = 0 when the login or password...Frédéric Buclin2014-04-251-1/+1
* Bug 713926: (CVE-2014-1517) [SECURITY] Login form lacks CSRF protectionFrédéric Buclin2014-04-172-4/+41
* Bug 987205: Bugzilla crashes because it tries to import a non-exported login_...Frédéric Buclin2014-04-143-4/+3
* Bug 947823: Replace gender-specific pronouns with gender-neutral pronounsCharlie Somerville2014-02-271-1/+1
* Bug 956233: enable USE_MEMCACHE on most objectsByron Jones2014-01-312-0/+2
* Bug 748095: Bugzilla crashes when the shutdownhtml parameter is set and using...Frédéric Buclin2013-12-211-3/+4
* Bug 907438 - In MySQL, login cookie checking is not case-sensitive, reducing ...Dave Lawrence2013-10-161-3/+3
* Bug 917669 - invalid or expired authentication tokens and cookies should thro...Dave Lawrence2013-09-261-8/+13
* Bug 893195 - Allow token based authentication for webservicesDave Lawrence2013-08-263-23/+79
* Bug 785283 - Support increased values for PASSWORD_SALT_LENGTH without breaki...Reed Loden2012-12-311-1/+12
* Bug 787668: Use |use parent| instead of |use base|Matt Selsky2012-12-015-5/+5
* Bug 816747 - Add dummy POD for unPODded methods.Marc Schumann2012-11-301-0/+8
* Bug 787529: Use |use 5.10.1| everywhereFrédéric Buclin2012-09-0111-0/+28
* Bug 785470: (CVE-2012-3981) [SECURITY] Missing escaping of the username can l...Reed Loden2012-08-301-0/+2
* Bug 680131: Replace the MPL 1.1 license by the MPL 2.0 one in all files, and ...Frédéric Buclin2012-01-1111-225/+55
* Make Login/Stack.pm refuse to continue down the stack if an Auth method retur...Gervase Markham2011-11-181-2/+8
* Bug 653713: editusers.cgi crashes when editing a user profileJochen Wiedmann2011-05-061-1/+4
* Bug 423612 - Allow editing extern_id for users from the admin interfaceJochen Wiedmann2011-04-275-0/+30
* Bug 604522: t/012throwables.t doesn't catch new user errors correctlyFrédéric Buclin2010-10-151-2/+2
* Bug 575947: Users with passwords length less than 6 characters can't login af...Frédéric Buclin2010-10-141-0/+6
* Bug 602165: Change sql_interval to sql_date_math, in preparation forMax Kanat-Alexander2010-10-071-2/+3
* Bug 550732: Allow read-only JSON-RPC methods to be called with GETMax Kanat-Alexander2010-04-224-0/+16
* Bug 553770: Make the JSON-RPC WebService throw a proper error when you don'tMax Kanat-Alexander2010-03-231-4/+2
* Fix the data in the bzr repo to match the data in the CVS repo.Max Kanat-Alexander2010-02-011-0/+0
* Bug 467992: Login fails if the user's LDAP account is denied search in LDAP -...lpsolit%gmail.com2010-01-051-5/+28
* Bug 527586: Use X-Forwarded-For instead of REMOTE_ADDR for trusted proxiesmkanat%bugzilla.org2009-12-312-2/+2
* Bug 385606: Logincookies are recreated at each HTTP request when using the 'E...lpsolit%gmail.com2009-12-311-0/+1
* Bug 355283: Lock out a user account on a particular IP for 30 minutes if they...mkanat%bugzilla.org2009-12-131-16/+30
* Bug 430014: Re-write the code hooks system so that it uses modules instead of...mkanat%bugzilla.org2009-11-242-2/+2
* Bug 525734: Allow WebService clients to authenticate using Bugzilla_login and...mkanat%bugzilla.org2009-11-092-8/+7
* Bug 399073: Remove the 'loginnetmask' parameter - Patch by Frédéric Buc...lpsolit%gmail.com2009-10-182-26/+14
* Bug 514913: Eliminate ssl="authenticated sessions"mkanat%bugzilla.org2009-10-092-16/+3
* Bug 488467: Verify and Login auth methods were being called in a random order...mkanat%bugzilla.org2009-04-172-2/+2
* Bug 121601: Have logout display index.cgi, not just a message on relogin.cgi.mkanat%bugzilla.org2009-03-011-0/+1
* Bug 134022: PERFORMANCE: deleting old login cookies locks login checksmkanat%bugzilla.org2009-01-201-0/+9
* Bug 211006: Make Bugzilla use SHA-256 instead of crypt() to store hashed pass...mkanat%bugzilla.org2009-01-021-0/+10
* Bug 455584 - Use bz_crypt everywhere instead of the crypt() functiondkl%redhat.com2008-10-231-6/+1
* Bug 460770: Incorrect regexp when parsing the list of LDAP servers - Patch by...lpsolit%gmail.com2008-10-201-1/+1
* Partial backout of bug 183665. It's responsible for bug 457719lpsolit%gmail.com2008-10-051-1/+1
* Bug 453767 - Passwords containing wide characters causes system errordkl%redhat.com2008-09-121-0/+5
* Bug 449984: Login cookies should be created as SSL-only on installations that...lpsolit%gmail.com2008-08-271-15/+18
* Bug 368502 - "Bugzilla_logincookie should not be accessible via javascript" [...reed%reedloden.com2008-08-231-3/+6
* Bug 428659 – Setting SSL param to 'authenticated sessions' only protects...dkl%redhat.com2008-08-181-3/+8
* Bug 438435: Need code hooks for authenticationmkanat%bugzilla.org2008-08-072-8/+24
* Backing out these patches as they cause a regression. More informationdkl%redhat.com2008-07-291-3/+5