Mon, 09 Nov 2009 09:21:05 -0500 Removed lockout check, as it is now done in the login preprocess layer.
Dan [Mon, 09 Nov 2009 09:21:05 -0500] rev 33
Removed lockout check, as it is now done in the login preprocess layer.
Wed, 19 Aug 2009 01:30:04 -0400 Added session key salt support
Dan [Wed, 19 Aug 2009 01:30:04 -0400] rev 32
Added session key salt support
Fri, 07 Aug 2009 16:17:34 -0400 Minor string change to login UI
Dan [Fri, 07 Aug 2009 16:17:34 -0400] rev 31
Minor string change to login UI
Tue, 04 Aug 2009 19:38:01 -0400 Added cancel button to interface; reverted animation to straight sweep effect instead of spread-from-center
Dan [Tue, 04 Aug 2009 19:38:01 -0400] rev 30
Added cancel button to interface; reverted animation to straight sweep effect instead of spread-from-center
Tue, 04 Aug 2009 19:37:38 -0400 Fixed OTP field behavior (improper/empty submission) exposed in YMS
Dan [Tue, 04 Aug 2009 19:37:38 -0400] rev 29
Fixed OTP field behavior (improper/empty submission) exposed in YMS
Fri, 31 Jul 2009 23:59:06 -0400 Merged branches from Scribus and Charlie
Dan [Fri, 31 Jul 2009 23:59:06 -0400] rev 28
Merged branches from Scribus and Charlie
Fri, 31 Jul 2009 23:48:56 -0400 Some modifications to support the YMS plugin
Dan [Fri, 31 Jul 2009 23:48:56 -0400] rev 27
Some modifications to support the YMS plugin
Fri, 17 Jul 2009 17:15:29 -0400 Branch merge from accidental split
Dan [Fri, 17 Jul 2009 17:15:29 -0400] rev 26
Branch merge from accidental split
Fri, 17 Jul 2009 17:15:10 -0400 SECURITY: Added recognition for lockouts
Dan [Fri, 17 Jul 2009 17:15:10 -0400] rev 25
SECURITY: Added recognition for lockouts
Wed, 29 Jul 2009 12:09:35 -0400 Disabled JS login hook for iPhone Safari
Dan [Wed, 29 Jul 2009 12:09:35 -0400] rev 24
Disabled JS login hook for iPhone Safari
Fri, 17 Jul 2009 14:05:50 -0400 JS: Change to submit behavior: allowed keycode 13 (enter) for submit
Dan [Fri, 17 Jul 2009 14:05:50 -0400] rev 23
JS: Change to submit behavior: allowed keycode 13 (enter) for submit
Sat, 16 May 2009 18:24:45 -0400 Fixed no tolerance for missing Z in response timestamp
Dan [Sat, 16 May 2009 18:24:45 -0400] rev 22
Fixed no tolerance for missing Z in response timestamp
Sat, 16 May 2009 18:17:09 -0400 Wrote my own Yubico-time-to-Unix-time conversion, as strtotime() was unreliable.
Dan [Sat, 16 May 2009 18:17:09 -0400] rev 21
Wrote my own Yubico-time-to-Unix-time conversion, as strtotime() was unreliable.
Mon, 11 May 2009 08:53:10 -0400 Fixed "Mixing of GROUP columns (MIN(),MAX(),COUNT(),...) with no GROUP columns is illegal if there is no GROUP BY clause"
Dan [Mon, 11 May 2009 08:53:10 -0400] rev 20
Fixed "Mixing of GROUP columns (MIN(),MAX(),COUNT(),...) with no GROUP columns is illegal if there is no GROUP BY clause"
Mon, 11 May 2009 08:50:37 -0400 Damn it Yubico, you changed your API and broke my code.
Dan [Mon, 11 May 2009 08:50:37 -0400] rev 19
Damn it Yubico, you changed your API and broke my code.
Mon, 11 May 2009 08:50:07 -0400 Yubikey flags are no longer fetched from server at login time, instead provided with load
Dan [Mon, 11 May 2009 08:50:07 -0400] rev 18
Yubikey flags are no longer fetched from server at login time, instead provided with load
Thu, 30 Apr 2009 16:11:40 -0400 SECURITY (critical): If username provided, any Yubikey could be used to log in.
Dan [Thu, 30 Apr 2009 16:11:40 -0400] rev 17
SECURITY (critical): If username provided, any Yubikey could be used to log in.
Thu, 30 Apr 2009 16:11:13 -0400 Added error for HTTP connection failure.
Dan [Thu, 30 Apr 2009 16:11:13 -0400] rev 16
Added error for HTTP connection failure.
Thu, 19 Mar 2009 09:27:52 -0400 Yubikey user CP now requires re-auth to CHPREF. Didn't win YubiKing :-(
Dan [Thu, 19 Mar 2009 09:27:52 -0400] rev 15
Yubikey user CP now requires re-auth to CHPREF. Didn't win YubiKing :-(
Thu, 19 Mar 2009 09:21:56 -0400 Branch merge (how did this happen?)
Dan [Thu, 19 Mar 2009 09:21:56 -0400] rev 14
Branch merge (how did this happen?)
Wed, 18 Mar 2009 11:37:08 -0400 Added auth plugin flag.
Dan [Wed, 18 Mar 2009 11:37:08 -0400] rev 13
Added auth plugin flag.
Tue, 17 Mar 2009 12:13:32 -0400 Whoops! That load_component was needed in prefs page
Dan [Tue, 17 Mar 2009 12:13:32 -0400] rev 12
Whoops! That load_component was needed in prefs page
Tue, 17 Mar 2009 00:25:50 -0400 Removed stray load of expander, jquery and jquery-ui
Dan [Tue, 17 Mar 2009 00:25:50 -0400] rev 11
Removed stray load of expander, jquery and jquery-ui
Sun, 08 Mar 2009 00:45:45 -0500 Added timestamp-based verification.
Dan [Sun, 08 Mar 2009 00:45:45 -0500] rev 10
Added timestamp-based verification.
Mon, 02 Mar 2009 10:56:51 -0500 If yubikey_reg_require_otp is 1, opening login window now auto-opens Yubikey prompt
Dan [Mon, 02 Mar 2009 10:56:51 -0500] rev 9
If yubikey_reg_require_otp is 1, opening login window now auto-opens Yubikey prompt
Sun, 01 Mar 2009 21:45:44 -0500 Added option to enroll Yubikey during registration + option in admin CP to require enrollment
Dan [Sun, 01 Mar 2009 21:45:44 -0500] rev 8
Added option to enroll Yubikey during registration + option in admin CP to require enrollment
Sun, 01 Mar 2009 21:44:08 -0500 Fixed a few issues with input postprocessing in client API
Dan [Sun, 01 Mar 2009 21:44:08 -0500] rev 7
Fixed a few issues with input postprocessing in client API
Sun, 01 Mar 2009 20:41:27 -0500 Added visual feedback for key entry
Dan [Sun, 01 Mar 2009 20:41:27 -0500] rev 6
Added visual feedback for key entry
Sun, 01 Mar 2009 20:41:17 -0500 Auth: added string for pass required
Dan [Sun, 01 Mar 2009 20:41:17 -0500] rev 5
Auth: added string for pass required
Thu, 26 Feb 2009 16:33:06 -0500 Should work with Yubico's official server now - forgot to account for newlines.
Dan [Thu, 26 Feb 2009 16:33:06 -0500] rev 4
Should work with Yubico's official server now - forgot to account for newlines.
Thu, 26 Feb 2009 11:30:17 -0500 Maybe we could actually make yubikey_enable in config not ignored!
Dan [Thu, 26 Feb 2009 11:30:17 -0500] rev 3
Maybe we could actually make yubikey_enable in config not ignored!
Thu, 26 Feb 2009 01:19:45 -0500 Minor: if input OTP is empty and password looks like OTP, now copies password to OTP in memory and treats password field as OTP. Will require patch in Enano trunk to work for html login.
Dan [Thu, 26 Feb 2009 01:19:45 -0500] rev 2
Minor: if input OTP is empty and password looks like OTP, now copies password to OTP in memory and treats password field as OTP. Will require patch in Enano trunk to work for html login.
(0) -32 tip