OpenACS / openacs-4 / packages / acs-tcl / tcl

security-procs.tcl

Tools

Line History

Line Count Graph
Line Count Graph

Stats

Commits this week: 0
Total Committers: 22
Last Commit: 05 Apr
Commits this week: 0
Total Lines of Code (LoC): 2,822
Net change in LoC this week: 0

Commit Activity

Commits By Day In Week
52 week commits volume
Commits By Day In Week
Commits by day
Commits By Day In Week
Commits by hour
Commits By Hour In Day
Commit calendar
 

Most active committers (90 days)

loading
loading
  • last updated 12 hours ago
Constraints
Constraints: committers
 
Constraints: files
Constraints: dates
Tuesday 29 May 2018
5:14 pm

gustafn

flag current request as being performed via aa_testing

Options
    • -1
    • +2
    ./security-procs.tcl
Monday 28 May 2018
3:36 pm

gustafn

modernize tcl

Options
    • -6
    • +10
    ./security-procs.tcl
  2. … 1 more file in changeset.
Tuesday 15 May 2018
3:25 pm

gustafn

white space changes

Options
    • -185
    • +184
    ./security-procs.tcl
3:25 pm

gustafn

allow access via automated testing also via standard login interface

Options
    • -6
    • +30
    ./security-procs.tcl
Monday 14 May 2018
3:22 pm

gustafn

make spelling of names more consistent

Options
    • -2
    • +2
    ./security-procs.tcl
  2. … 5 more files in changeset.
Wednesday 09 May 2018
5:33 pm

hectorr

Revert massive replacement of empty list creation sentences. The use of '[list]' instead of '{}' adds semantics that could be used for performance improvements in the future, such as using a different internal representation. There is already work in this direction, avoiding the generation of the string representation during comparison of empty strings (huge thanks to Stefan Sobernig for the pointer: https://core.tcl.tk/tcl/info/44527c632ed609c2).

Options
    • -3
    • +3
    ./security-procs.tcl
  2. … 475 more files in changeset.
Wednesday 02 May 2018
9:19 am

gustafn

improve CSP in accordance with Google's csp-evaluator.withgoogle.com

Options
    • -2
    • +9
    ./security-procs.tcl
  2. … 1 more file in changeset.
Wednesday 25 Apr 2018
9:23 pm

hectorr

Prefer '{}' to '[list]' when creating empty lists

Options
    • -3
    • +3
    ./security-procs.tcl
  2. … 71 more files in changeset.
Thursday 29 Mar 2018
10:09 am

gustafn

fix more typos

Options
    • -2
    • +2
    ./security-procs.tcl
  2. … 5 more files in changeset.
Wednesday 28 Mar 2018
9:42 am

gustafn

revert escaped changes

Options
    • -30
    • +26
    ./security-procs.tcl
  2. … 1 more file in changeset.
9:27 am

gustafn

fix more typos

Options
    • -27
    • +31
    ./security-procs.tcl
  2. … 4 more files in changeset.
Tuesday 27 Mar 2018
1:17 pm

hectorr

Fix typos

Options
    • -2
    • +2
    ./security-procs.tcl
  2. … 42 more files in changeset.
Monday 26 Feb 2018
7:46 pm

gustafn

Factor out code for navisever and aolserver

Options
    • -2
    • +4
    ./security-procs.tcl
  2. … 3 more files in changeset.
Thursday 01 Feb 2018
10:24 pm

gustafn

fix typo

Options
    • -2
    • +2
    ./security-procs.tcl
  2. … 1 more file in changeset.
Friday 19 Jan 2018
9:38 pm

gustafn

add comment

Options
    • -1
    • +2
    ./security-procs.tcl
Wednesday 03 Jan 2018
2:28 pm

gustafn

Add TODO item

Options
    • -1
    • +9
    ./security-procs.tcl
Sunday 17 Dec 2017
8:54 pm

gustafn

- use "ad_try" instead of "with_catch"

- use "ad_try" instead of "with_finally"

Options
    • -3
    • +6
    ./security-procs.tcl
  2. … 4 more files in changeset.
Sunday 01 Oct 2017
2:09 pm

gustafn

Bug fix: avoid confusion between command argument and option, when argument starts with "-"

Options
    • -2
    • +2
    ./security-procs.tcl
  2. … 81 more files in changeset.
Tuesday 29 Aug 2017
6:53 pm

antoniop

Bugfix ad_user_login

-expire flag for ad_set_signed_cookie (and therefore ad_set_cookie) was not specified by ad_user_login and set false per-default. This prevented parameters to set cookie expiration to have an effect, even when -max_age was correctly specified.

Now we set the -expire flag according to the -forever flag.

Options
    • -1
    • +2
    ./security-procs.tcl
Tuesday 08 Aug 2017
1:47 am

gustafn

merged changes from the oacs-5-9 branch and resolved conflicts

Options
    • -356
    • +1066
    ./security-procs.tcl
  2. … 7834 more files in changeset.
Wednesday 28 Jun 2017
11:13 pm

gustafn

- add [ad_conn behind_proxy_p] and [ad_conn behind_secure_proxy_p] to centralize logic

- use the new function fix [security::get_qualified_url] when running behind a proxy

Options
    • -2
    • +2
    ./security-procs.tcl
  2. … 2 more files in changeset.
10:40 pm

gustafn

- Dont add host_node_id to query parameter when it is set to 0

Options
    • -1
    • +4
    ./security-procs.tcl
Wednesday 31 May 2017
1:48 pm

gustafn

Provide more infrastructure support for host-node-maps for more flexible domain handling

- add optional -cookie_domain parameter to the following functions

ad_user_login

ad_user_logout

sec_generate_session_id_cookie

auth::issue_login (wrapper for ad_user_login)

if not specified, the functions are full backward compatible

- add optional parameter -host_node_id to auth::authenticate

which refers to the node_id in the host-node-map

- pass host_node_id from from/to register pages

TODO:

1) probably, sec_generate_session_id_cookie picks up the wrong

session_id via [ad_conn session_id]

2) check interaction with CookieDomain (probably, we need

must not pass host_node_id wheren CookieDomain is non-empty)

Options
    • -29
    • +48
    ./security-procs.tcl
  2. … 7 more files in changeset.
Tuesday 30 May 2017
11:05 pm

gustafn

- fix bug for obtaining logout_url on host-node mapped subsites

- factor out security::get_register_subsite to streamline behavior of ad_get_login_url and ad_get_logout_url

Options
    • -40
    • +45
    ./security-procs.tcl
Friday 26 May 2017
7:02 pm

gustafn

security::driver: consider additionally nsssl_v4 nsssl_v6 as possible names

Options
    • -2
    • +2
    ./security-procs.tcl
10:20 am

gustafn

Make sure that driver dict d is set in host-node-mapped cases (many thanks to stefan sobernig for pointin that out)

Options
    • -3
    • +5
    ./security-procs.tcl
Tuesday 23 May 2017
10:51 pm

gustafn

- Refactor ad_get_login_url reduce replicated code and to make semantics clearer

- ad_get_login_url handles now as well cases, where a subsite is mapped to an application package on a subsite

- fix a bug in util_current_location in connection with hostnode map

Options
    • -127
    • +144
    ./security-procs.tcl
  2. … 2 more files in changeset.
Thursday 04 May 2017
8:20 am

gustafn

allow host header fields with trailing dots (as these are allowed from DNS)

Options
    • -1
    • +7
    ./security-procs.tcl
Saturday 22 Apr 2017
8:11 pm

gustafn

Standardize spelling of names of products (Tcl, AOLserver, PostgreSQL, NaviServer)

Options
    • -3
    • +3
    ./security-procs.tcl
  2. … 43 more files in changeset.
Friday 21 Apr 2017
9:11 pm

gustafn

Fix editing bug

Options
    • -2
    • +2
    ./security-procs.tcl