Dan Fuhry <dan@enanocms.org> [Fri, 11 Nov 2011 00:33:28 -0500] rev 38
SECURITY: Fixed ability to log into an account with someone else's Yubikey...
Dan Fuhry <dan@enanocms.org> [Fri, 11 Nov 2011 00:30:49 -0500] rev 37
Converted to tabs
Dan [Sat, 29 May 2010 04:35:49 -0400] rev 36
Fixed a few bugs with initial deployment
Dan [Fri, 18 Dec 2009 19:29:33 -0500] rev 35
Modified yubifields in forms to show the OTP prefix; modified some strings
Dan [Fri, 18 Dec 2009 19:28:57 -0500] rev 34
Auth lib/hook fixes
Dan [Mon, 09 Nov 2009 09:21:05 -0500] rev 33
Removed lockout check, as it is now done in the login preprocess layer.
Dan [Wed, 19 Aug 2009 01:30:04 -0400] rev 32
Added session key salt support
Dan [Fri, 07 Aug 2009 16:17:34 -0400] rev 31
Minor string change to login UI
Dan [Tue, 04 Aug 2009 19:38:01 -0400] rev 30
Added cancel button to interface; reverted animation to straight sweep effect instead of spread-from-center
Dan [Tue, 04 Aug 2009 19:37:38 -0400] rev 29
Fixed OTP field behavior (improper/empty submission) exposed in YMS
Dan [Fri, 31 Jul 2009 23:59:06 -0400] rev 28
Merged branches from Scribus and Charlie
Dan [Fri, 31 Jul 2009 23:48:56 -0400] rev 27
Some modifications to support the YMS plugin
Dan [Fri, 17 Jul 2009 17:15:29 -0400] rev 26
Branch merge from accidental split
Dan [Fri, 17 Jul 2009 17:15:10 -0400] rev 25
SECURITY: Added recognition for lockouts
Dan [Wed, 29 Jul 2009 12:09:35 -0400] rev 24
Disabled JS login hook for iPhone Safari
Dan [Fri, 17 Jul 2009 14:05:50 -0400] rev 23
JS: Change to submit behavior: allowed keycode 13 (enter) for submit
Dan [Sat, 16 May 2009 18:24:45 -0400] rev 22
Fixed no tolerance for missing Z in response timestamp
Dan [Sat, 16 May 2009 18:17:09 -0400] rev 21
Wrote my own Yubico-time-to-Unix-time conversion, as strtotime() was unreliable.
Dan [Mon, 11 May 2009 08:53:10 -0400] rev 20
Fixed "Mixing of GROUP columns (MIN(),MAX(),COUNT(),...) with no GROUP columns is illegal if there is no GROUP BY clause"
Dan [Mon, 11 May 2009 08:50:37 -0400] rev 19
Damn it Yubico, you changed your API and broke my code.
Dan [Mon, 11 May 2009 08:50:07 -0400] rev 18
Yubikey flags are no longer fetched from server at login time, instead provided with load
Dan [Thu, 30 Apr 2009 16:11:40 -0400] rev 17
SECURITY (critical): If username provided, any Yubikey could be used to log in.
Dan [Thu, 30 Apr 2009 16:11:13 -0400] rev 16
Added error for HTTP connection failure.
Dan [Thu, 19 Mar 2009 09:27:52 -0400] rev 15
Yubikey user CP now requires re-auth to CHPREF. Didn't win YubiKing :-(
Dan [Thu, 19 Mar 2009 09:21:56 -0400] rev 14
Branch merge (how did this happen?)
Dan [Wed, 18 Mar 2009 11:37:08 -0400] rev 13
Added auth plugin flag.
Dan [Tue, 17 Mar 2009 12:13:32 -0400] rev 12
Whoops! That load_component was needed in prefs page
Dan [Tue, 17 Mar 2009 00:25:50 -0400] rev 11
Removed stray load of expander, jquery and jquery-ui
Dan [Sun, 08 Mar 2009 00:45:45 -0500] rev 10
Added timestamp-based verification.
Dan [Mon, 02 Mar 2009 10:56:51 -0500] rev 9
If yubikey_reg_require_otp is 1, opening login window now auto-opens Yubikey prompt