Mercurial
Mercurial
>
repos
>
enano-1.1
/ file revisions
summary
|
shortlog
|
changelog
|
graph
|
tags
|
bookmarks
|
branches
|
file
| revisions |
annotate
|
diff
|
comparison
|
rss
|
help
(0)
-12
tip
Find changesets by keywords (author, files, the commit message), revision number or hash, or
revset expression
.
includes/sessions.php
Sun, 06 Apr 2008 14:02:20 -0400
Dan
SECURITY: Disabled caching of decrypted DiffieHellman login requests
file
|
diff
|
annotate
Wed, 26 Mar 2008 20:20:22 -0400
Dan
Made some improvements to ACL system including: warning on setting Deny for Everyone on the entire site, added ACL_ALWAYS_ALLOW_ADMIN_EDIT_ACL, and changed behavior as noted in the docs so that Deny for Everyone is no longer able to be overridden
file
|
diff
|
annotate
Tue, 18 Mar 2008 14:32:40 -0400
Dan
Fixed some stray version numbers (again!); added support for Diffie-Hellman logins in the normal login form (not AJAX) - even works in IE
file
|
diff
|
annotate
Sun, 16 Mar 2008 16:06:59 -0400
Dan
Added support for embedding language data into plugins; updated all version numbers on plugin files
file
|
diff
|
annotate
Sat, 15 Mar 2008 00:08:01 -0400
Dan
Fixed some bugs with PostgreSQL and added a word_lcase column to the search_index table because collation is not working under MySQL. TODO: Trigger search index rebuild on upgrade to 1.1.4.
file
|
diff
|
annotate
Sat, 08 Mar 2008 12:13:23 -0500
Dan
Fixed undefined variable ($row['is_regex'] instead of $is_regex) in sessions.php
file
|
diff
|
annotate
Thu, 06 Mar 2008 23:31:28 -0500
Dan
[Security] made session manager have some degree of IP validation for session keys and upgrades
file
|
diff
|
annotate
Thu, 06 Mar 2008 23:27:50 -0500
Dan
Fixed session validation bug in upgrade script; fixed non-object reference in template_nodb
file
|
diff
|
annotate
Thu, 06 Mar 2008 20:53:26 -0500
Dan
Added a cron task to sessions.php that deletes old admin keys once a week
file
|
diff
|
annotate
Sun, 02 Mar 2008 19:32:19 -0500
Dan
Implemented password reset (albeit hackishly) into the new login API; added dummy window.console object to hopefully reduce errors when Firebug isn't around; fixed the longstanding ACL dismiss/close button bug; fixed a couple undefined variables in mailer; fixed PHP error on attempted opening of /dev/(u)random in rijndael.php; clarified documentation for PageProcessor::update_page(); fixed some logic problems in theme ACL code; disabled CAPTCHA debug
file
|
diff
|
annotate
Sat, 01 Mar 2008 23:02:05 -0500
Dan
Implemented all security features on theme disabling and ACLs; added clean_key mode to login API to clean unused encryption keys
file
|
diff
|
annotate
Sat, 01 Mar 2008 18:55:54 -0500
Dan
Fixed improper serializing of IP that could allow reusing of key from multiple IP addresses.
file
|
diff
|
annotate
less
more
(0)
-12
tip