silverstripe-framework/security
Ingo Schommer 07fc3650a3 ENHANCEMENT Pluggable password encryption through PasswordEncryptor class (#3665) (merged from r90949)
BUGFIX Fixed password hashing design flaw in Security::encrypt_password(). Removing base_convert() packing with unsafe precision, but retaining backwards compatibilty through pluggable encryptors: PasswordEncryptor_LegacyPHPHash (#3004) (merged from r90949)
API CHANGE Deprecated Security::encrypt_passwords() (merged from r90949)
API CHANGE Deprecated Security::$useSalt, use custom PasswordEncryptor implementation (merged from r90949)
API CHANGE Removed Security::get_encryption_algorithms() (merged from r90949)
API CHANGE MySQL-specific encyrption types 'password' and 'old_password' are no longer included by default. Use PasswordEncryptor_MySQLPassword and PasswordEncryptor_MySQLOldPassword
API CHANGE Built-in number of hashing algorithms has been reduced to 'none', 'md5', 'sha1'. Use PasswordEncryptor::register() and PasswordEncryptor_PHPHash to re-add others. (merged from r90949)


git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/branches/2.4@91576 467b73ca-7a2a-4603-9d3b-597d59a354a9
2011-02-02 14:17:36 +13:00
..
Authenticator.php Merged changes from 2.3 branch 2009-02-01 23:49:53 +00:00
BasicAuth.php MINOR phpdoc documentation 2009-03-22 22:59:14 +00:00
ChangePasswordForm.php Merged changes from 2.3 branch 2009-02-01 23:49:53 +00:00
Group.php MINOR update PermissionCheckboxSetField to look at roles on the actual group 2009-11-03 01:00:54 +00:00
LoginAttempt.php Merged from branches/2.3 2009-04-29 00:07:39 +00:00
LoginForm.php Merged from branches/nzct-trunk. Use 'svn log -c <changeset> -g' for full commit message. Merge includes stability fixes and minor refactor of TableListField and ComplexTableField. 2008-10-08 02:00:12 +00:00
Member.php ENHANCEMENT Pluggable password encryption through PasswordEncryptor class (#3665) (merged from r90949) 2011-02-02 14:17:36 +13:00
MemberAuthenticator.php BUGFIX Legacy password hash migration in MemberAuthenticator::authenticate() which fixes the precision problems mentioned in #3004 when a user logs in (from r90950) 2011-02-02 14:17:36 +13:00
MemberLoginForm.php BUGFIX: Security::$default_login_dest isn't used (#4179, simon_w) 2009-10-23 00:18:10 +00:00
MemberPassword.php ENHANCEMENT Pluggable password encryption through PasswordEncryptor class (#3665) (merged from r90949) 2011-02-02 14:17:36 +13:00
NZGovtPasswordValidator.php MINOR Unified @package PHPdoc (added where missing, removed duplicates) 2008-06-15 13:33:53 +00:00
PasswordValidator.php Updating queries to be more DB agnostic 2008-11-24 09:31:14 +00:00
Permission.php BUGFIX: Fixed glitch in permission code formats. 2009-10-31 00:58:16 +00:00
PermissionCheckboxSetField.php MINOR update PermissionCheckboxSetField to look at roles on the actual group 2009-11-03 01:00:54 +00:00
PermissionProvider.php MINOR Unified @package PHPdoc (added where missing, removed duplicates) 2008-06-15 13:33:53 +00:00
PermissionRole.php MINOR implement OnlyAdminCanApply 2009-10-29 22:07:44 +00:00
PermissionRoleCode.php API CHANGE: Added PermissionRole and PermissionRoleCode, along with relevant tests for the permission system. (from r85173) 2009-10-15 22:27:56 +00:00
Security.php ENHANCEMENT Pluggable password encryption through PasswordEncryptor class (#3665) (merged from r90949) 2011-02-02 14:17:36 +13:00