tonyair/silverstripe-framework
1
0
Fork 0
mirror of https://github.com/silverstripe/silverstripe-framework synced 2024-10-22 12:05:37 +00:00
Code Issues Projects Releases Wiki Activity
silverstripe-framework/security
History
Ingo Schommer 061d2ecc0e BUGFIX Avoid potential referer leaking in Security->changepassword() form by storing Member->AutoLoginHash in session instead of 'h' GET parameter (from r114758) 
git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/branches/2.3@114763 467b73ca-7a2a-4603-9d3b-597d59a354a9
2011-02-02 14:27:38 +13:00
..
Authenticator.php
MINOR Removed whitespace after ?> end PHP tag
2011-02-02 14:26:45 +13:00
BasicAuth.php
BUGFIX: Made use of new BasicAuth::protect_entire_site() consistent. (from r91658)
2011-02-02 14:27:34 +13:00
ChangePasswordForm.php
BUGFIX Avoid potential referer leaking in Security->changepassword() form by storing Member->AutoLoginHash in session instead of 'h' GET parameter (from r114758)
2011-02-02 14:27:38 +13:00
Group.php
BUGFIX Using current controller for MemberTableField constructor in Group->getCMSFields() instead of passing in a wrong instance (Group) (from r113273)
2011-02-02 14:27:36 +13:00
LoginAttempt.php
APICHANGE: add documentation to changeset r74858.
2011-02-02 14:27:15 +13:00
LoginForm.php
Merged from branches/nzct-trunk. Use 'svn log -c <changeset> -g' for full commit message. Merge includes stability fixes and minor refactor of TableListField and ComplexTableField.
2008-10-08 02:00:12 +00:00
Member.php
BUGFIX Using RandomGenerator class in Member->logIn(), Member->autoLogin() and Member->generateAutologinHash() for better randomization of tokens. Increased VARCHAR length of 'RememberLoginToken' and 'AutoLoginHash' fields to 1024 characters to support longer token strings. (from r114504) (from r114507)
2011-02-02 14:27:38 +13:00
MemberAuthenticator.php
MINOR Removed whitespace after ?> end PHP tag
2011-02-02 14:26:45 +13:00
MemberLoginForm.php
MINOR Moved member logged in check from MemberLoginFrom to a static function Member
2011-02-02 14:27:17 +13:00
MemberPassword.php
MINOR: added empty statics to allow decoration
2011-02-02 14:27:00 +13:00
NZGovtPasswordValidator.php
MINOR Unified @package PHPdoc (added where missing, removed duplicates)
2008-06-15 13:33:53 +00:00
PasswordValidator.php
MINOR Unified @package PHPdoc (added where missing, removed duplicates)
2008-06-15 13:33:53 +00:00
Permission.php
Merged from trunk
2011-02-02 14:27:19 +13:00
PermissionDropdownField.php
MINOR Unified @package PHPdoc (added where missing, removed duplicates)
2008-06-15 13:33:53 +00:00
PermissionProvider.php
MINOR Unified @package PHPdoc (added where missing, removed duplicates)
2008-06-15 13:33:53 +00:00
RandomGenerator.php
BUGFIX Limiting usage of mcrypt_create_iv() in RandomGenerator->generateEntropy() to *nix platforms to avoid fatal errors (specically in IIS) (from r114510) (from r114512)
2011-02-02 14:27:38 +13:00
Security.php
BUGFIX Avoid potential referer leaking in Security->changepassword() form by storing Member->AutoLoginHash in session instead of 'h' GET parameter (from r114758)
2011-02-02 14:27:38 +13:00
SecurityToken.php
BUGFIX Using RandomGenerator class in SecurityToken->generate() for more random tokens (from r114500)
2011-02-02 14:27:38 +13:00