oqapi/webgui
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
17043 commits 2 branches 2 tags 120 MiB
Commit graph

40 commits

Author SHA1 Message Date
Doug Bell
cc87552a22 weaken all session refs 2010-06-01 16:23:48 -05:00
Graham Knop
60a4a9b140 mark $session->datetime->time as deprecated and remove its use from core code 2009-10-05 20:56:37 -05:00
Colin Kuskie
5e4db3adb4 Provide a framework for CSRF protection, with tests. 
Add CSRF protection to Asset editSave, AssetManager, VersionTags and Group operations.
 2009-07-06 16:58:57 +00:00
Graham Knop
24da723629 updating copyright year 2009-02-20 23:47:30 +00:00
JT Smith
93b5ca16e4 updating copyright year 2008-02-07 23:28:18 +00:00
Colin Kuskie
6b9272984c Previous conditional will always cover this case. If true, then 
$self is returned.  If false, then previous conditional is ignored,
and this line is also ignored.
Removing dead code.
 2007-11-26 05:26:18 +00:00
Colin Kuskie
45eb45fa3e fix a session bug where, when using noFuss, user session scratch was not cleaned up 2007-11-02 17:50:19 +00:00
JT Smith
a7dde82421 updated copyright 2007-07-01 16:09:42 +00:00
Colin Kuskie
ff2344cdad Added comments to the POD in Var.pm that creating a Var object overwrites 
the Session Id.  This is by design.

Added a check to Style.pm so that if no params are passed to setLink that
it won't die by trying to deref undef into a hashref.

First set of tests for Session/Style added.
 2006-10-03 23:27:08 +00:00
Colin Kuskie
00e37ae971 finalized Var test with 100% coverage 2006-09-23 02:49:37 +00:00
Colin Kuskie
56e78708a4 Add a comment to WebGUI::Session::Var::start that if no userSessionId is passed 
that a new userSessionId will be created and that the current sessionId (the actual
session object's id) will be set to this new id.
Add several new tests to Session/Var.t  Tried hard to exploit the change in 
sessionId and haven't found a way, yet.
 2006-09-22 03:44:34 +00:00
Colin Kuskie
381ce45c1a Add 7 tests to Session/Var.t. Some of them are redundant. That will 
be fixed later.
Added lots of comments to start and new subs.  Changed db methods to
use placeholders.  Changed timely data to call time once so that they
all match.
 2006-09-21 03:06:04 +00:00
JT Smith
a440cb5f41 fix: Security bug in session env 2006-07-11 20:32:46 +00:00
Wouter van Oijen
e81ce2759a Fixed POD in 12 files reported by new test for invalid whitespace 2006-05-20 10:39:16 +00:00
JT Smith
d272e7de58 fixed a bug that i created earlier today 
added burst protection to page layouts to prevent slashdotting
 2006-04-07 08:12:16 +00:00
Matthew Wilson
f22be087f1 fixing pod. 2006-03-17 18:52:16 +00:00
Matthew Wilson
bd62a8544d added noFuss option. 2006-03-17 18:51:02 +00:00
JT Smith
85c8627e66 migrated delete expired sessions hourly script to workflow activity 2006-03-01 23:25:24 +00:00
JT Smith
7731a32559 fixed some pod errors 
removed futile inbox attempt
 2006-01-31 23:10:10 +00:00
Matthew Wilson
4a3121960f removal of dumpSession. 2006-01-26 05:39:16 +00:00
Matthew Wilson
150087f703 lots of operation and auth fixes. 2006-01-19 03:07:34 +00:00
Matthew Wilson
6f112057bb still more fixes. 2006-01-18 07:05:19 +00:00
Matthew Wilson
8f12dae29c more session fixes. 2006-01-18 06:26:40 +00:00
Matthew Wilson
8839c094c5 some login logout cookie fixes. 2006-01-18 05:58:31 +00:00
Matthew Wilson
e33c7bebc3 an absolute slew of changes. 2006-01-18 01:45:55 +00:00
Matthew Wilson
09483e18c5 a ton of $session fixes (thanks to Colin), and a new $session checker, that supposedly, shouldn't be needed now. It can be backed out, however, easily. 2006-01-16 22:45:21 +00:00
JT Smith
fc16c9ce95 session var tests working and a few more bug fixes 2006-01-15 06:02:07 +00:00
Matthew Wilson
250d8ff944 lots o' fixes. 2006-01-15 04:25:33 +00:00
Len Kranendonk
26700d9ac0 bugfix 2006-01-15 01:31:39 +00:00
Len Kranendonk
14444a2b31 Bugfix 2006-01-15 01:10:19 +00:00
JT Smith
a35c81ee06 a fix 2006-01-15 00:07:56 +00:00
Matthew Wilson
ec281e6047 rolling back changes. 2006-01-14 23:49:38 +00:00
Matthew Wilson
9d25aba483 a fix. 2006-01-14 23:44:37 +00:00
JT Smith
5a58632ee0 fix 2006-01-14 23:26:36 +00:00
Matthew Wilson
3c66a9105f lots of DESTROYs 2006-01-14 22:26:48 +00:00
Colin Kuskie
6dfa55d423 constructor missing bless 2006-01-14 18:43:45 +00:00
Colin Kuskie
68c3075ccb Session/Http: bad package name 
Session/Var: bad API, getCookie('key') vs getCookies->{'key'}
Session.pm: used object variable vs method.
 2006-01-14 06:34:34 +00:00
JT Smith
9520b4ce48 migrating datetime api for session 2006-01-10 17:06:41 +00:00
JT Smith
a194408513 changing copyright year 2006-01-09 23:51:04 +00:00
JT Smith
d4b7f2ce59 first round of changes for the new session system 2005-12-31 21:54:06 +00:00