includes/sessions.php
Fri, 26 Oct 2007 19:28:54 -0400 Dan You know what folks, a lot of Mercurial merges failed, and I just now figured out why. So now all changes from stable are permanently synced in.
Tue, 23 Oct 2007 12:30:08 -0400 Dan Slight HTTPS compatibility improvements
Sat, 20 Oct 2007 21:51:26 -0400 Dan Merging in changes from db8a849ad4c9
Sat, 20 Oct 2007 21:44:13 -0400 Dan Merging in changes from stable
Mon, 15 Oct 2007 00:11:51 -0400 Dan SECURITY: Fix failure to log login failure on no row match
Sun, 07 Oct 2007 22:06:15 -0400 Dan Fixed the security hole (really, I'm a moron - used $failed > $threshold instead of $failed >= $threashold) and patched up some...erm... math issues
Sun, 07 Oct 2007 21:41:42 -0400 Dan Upgrade UI should work now (upgrades still don't work); do not pull this revision as there is a security hole in the lockout system pending a fix
Sun, 07 Oct 2007 21:28:36 -0400 Dan [F] Added support for account lockouts. User is locked out or required to complete a CAPTCHA after specified threshold for specified period.
Sun, 07 Oct 2007 17:28:47 -0400 Dan Merging in latest changes from stable
Sun, 07 Oct 2007 08:39:40 -0400 Dan SECURITY: remove debug message in session manager; implemented alternate MediaWiki syntax for template embedding; added Adobe Spry for "shake" effect on unsuccessful login
Sat, 06 Oct 2007 20:36:40 -0400 Dan Rebrand as 1.1.1; everything should now be bumped to "unstable" status
Sun, 30 Sep 2007 20:20:07 -0400 Dan Feature add: new page group type: regular expression match (PCRE)
Sun, 23 Sep 2007 23:21:10 -0400 Dan Rebrand as 1.0.2 (Coblynau); internal links are now parsed by RenderMan::parse_internal_links()
Tue, 18 Sep 2007 16:29:26 -0400 Dan Enano should now fully support UTF-8 usernames; newly registered users are now granted automatic edit access to their user pages (admins can still use protection on the page)
Tue, 18 Sep 2007 00:30:43 -0400 Dan Fully implemented password complexity enforcement; added encryption for passwords on registration form; some baby steps taken towards supporting international usernames - this is not working very well, we might need a hackish fix; TODO: implement password strength meter into installer UI and get international usernames 100% working
Thu, 13 Sep 2007 08:28:11 -0400 Dan Fix: activation e-mails were signed by Anonymous :-)
Sat, 08 Sep 2007 15:06:28 -0400 Dan Vastly improved UX for a login to an inactive account
Sat, 21 Jul 2007 18:12:10 -0400 Dan Made the move to Loch Ness, and got some basic page grouping functionality working. TODO: fix some UI issues in Javascript ACL editor and change non-JS ACL editor to work with page groups too
Sat, 21 Jul 2007 11:28:59 -0400 Dan Fixed a few presentation bugs in installer, made installer more "legally binding", and fixed global permissions inheritance in $session->fetch_page_acl() 1.0
Mon, 09 Jul 2007 22:01:27 -0400 Dan Vastly improved compatibility with older versions of IE, particularly 5.0, through the use of a kill switch that turns off all AJAX functions
Thu, 05 Jul 2007 10:37:36 -0400 Dan I dunno how many times I'm gonna have to fix the "problem seems to be the hex conversion" bug, but this is at least the fourth try.
Sun, 01 Jul 2007 14:08:39 -0400 Dan Finished everything on the TODO list (yay!); several CSS cleanups; tons more changes in this commit - see the patch for details
Thu, 28 Jun 2007 15:26:40 -0400 Dan Finished Special:Preferences/Profile page! Only the wikitext parser cleanup left, yay!
Thu, 28 Jun 2007 13:49:40 -0400 Dan COPPA support added
Tue, 26 Jun 2007 17:28:18 -0400 Dan Updated all version numbers back to Banshee; a few preliminary steps towards full UTF-8 support in page URLs
Sat, 23 Jun 2007 10:38:24 -0400 Dan Upgrades (RC2->RC3) should now work
Sat, 23 Jun 2007 10:16:53 -0400 Dan Emergency version change to 1.0rc3 to fix XSS vulnerabilities
Fri, 22 Jun 2007 10:31:59 -0400 Dan Installer actually works now on dev servers; minor language change in template.php; code cleanliness fix in sessions.php
less more (0) tip