1. 19 Aug, 2005 1 commit
  2. 16 Aug, 2005 1 commit
  3. 10 Aug, 2005 1 commit
  4. 21 Jul, 2005 1 commit
  5. 13 Jul, 2005 1 commit
  6. 08 Jul, 2005 1 commit
  7. 18 Feb, 2005 1 commit
  8. 09 Feb, 2005 1 commit
  9. 01 Feb, 2005 1 commit
  10. 21 Jul, 2004 1 commit
  11. 27 Mar, 2004 2 commits
    • kiko%async.com.br's avatar
      Fix for bug 234175: Remove deprecated ConnectToDatabase() and · 4df1c8fd
      kiko%async.com.br authored
      quietly_check_login()/confirm_login() calls.  Cleans up callsites
      (consisting of most of our CGIs), swapping (where appropriate) for calls
      to Bugzilla->login. Patch by Teemu Mannermaa <wicked@etlicon.fi>.
      r=bbaetz, kiko. a=justdave.
      4df1c8fd
    • kiko%async.com.br's avatar
      Fix for bug 226764: Move InvalidateLogins into Bugzilla::Auth::CGI. · 8a06f991
      kiko%async.com.br authored
      Consolidates the logout code into Bugzilla::Auth::CGI, and provides
      simple front-end wrappers in Bugzilla.pm for use in the CGIs we have.
      r=bbaetz, joel; a=justdave.
      
      Adds a set of constants to the logout() API which allow specifying "how
      much" we should log out -- all sessions, the current session, or all
      sessions but the current one.
      
      Fixes callsites to use this new API; cleans and documents things a
      bit while we're at it. Part I in the great COOKIE apocalypse.
      8a06f991
  12. 19 Mar, 2004 1 commit
  13. 18 Mar, 2004 2 commits
  14. 29 Feb, 2004 1 commit
  15. 24 Sep, 2003 1 commit
  16. 14 Sep, 2003 1 commit
  17. 03 Jun, 2003 1 commit
  18. 05 May, 2003 1 commit
  19. 02 Apr, 2003 1 commit
  20. 27 Mar, 2003 1 commit
  21. 27 Nov, 2002 1 commit
  22. 06 Oct, 2002 1 commit
  23. 30 Sep, 2002 1 commit
  24. 23 Sep, 2002 1 commit
  25. 26 Aug, 2002 1 commit
  26. 10 Aug, 2002 1 commit
  27. 17 Jun, 2002 1 commit
  28. 24 Apr, 2002 1 commit
  29. 02 Apr, 2002 1 commit
  30. 16 Mar, 2002 1 commit
  31. 04 Feb, 2002 1 commit
  32. 20 Jan, 2002 1 commit
  33. 17 Aug, 2001 1 commit
  34. 11 Jul, 2001 1 commit
    • justdave%syndicomm.com's avatar
      Fix for bug 77473, bug 74032, and bug 85472: Passwords are no longer stored in… · 02226521
      justdave%syndicomm.com authored
      Fix for bug 77473, bug 74032, and bug 85472: Passwords are no longer stored in plaintext in the database.  Passwords are no longer encrypted with MySQL's ENCRYPT() function (because it doesn't work on some installs), but with Perl's crypt() function.  The crypt-related routines now properly deal with salts so that they work on systems that use methods other than UNIX crypt to crypt the passwords (such as MD5).  Checksetup.pl will walk through your database and re-crypt everyone's passwords based on the plaintext password entry, then drop the plaintext password column.  As a consequence of no longer having a plaintext password, it is no longer possible to email someone their password, so the login screen has been changed to request a password reset instead.  The user is emailed a temporary identifying token, with a link back to Bugzilla.  They click on the link or paste it into their browser and Bugzilla allows them to change their password.
      Patch by Myk Melez <myk@mozilla.org>
      r= justdave@syndicomm.com, jake@acutex.net
      02226521