OpenACS / openacs-4 / packages / acs-tcl / tcl

security-procs.tcl

Tools

Line History

Line Count Graph
Line Count Graph

Stats

Commits this week: 0
Total Committers: 23
Last Commit: 29 Jul
Commits this week: 0
Total Lines of Code (LoC): 3,761
Net change in LoC this week: 0

Commit Activity

Commits By Day In Week
52 week commits volume
Commits By Day In Week
Commits by day
Commits By Day In Week
Commits by hour
Commits By Hour In Day
Commit calendar
 

Most active committers (90 days)

loading
loading
  • last updated 10 mins ago
Constraints
Constraints: committers
 
Constraints: files
Constraints: dates
Friday 05 Mar 2004
11:33 am

peterm

changing the proc security::RestrictLoginToSSLP to only return 1 if https is available on the server.

Options
    • -1
    • +7
    ./security-procs.tcl
Tuesday 02 Mar 2004
11:44 am

lars

- Fixed bug that caused logins to timeout very quickly if you had LoginTimeout set to 0 (infinite - logins never expire), but the user did not check 'Remember me' checkbox. This is a fix that sacrifices some security, but fixes the unacceptable usability problem. See bboard posting at http://openacs.org/forums/message-view?message_id=167212. Also cleaned up debugging statements

Options
    • -24
    • +45
    ./security-procs.tcl
Thursday 26 Feb 2004
4:28 pm

jeffd

merge of all changes on oacs-5-0 branch between tag openacs-5-0-0-final and jcd-merge-pre503 (except those in lars-blogger).

Options
    • -13
    • +28
    ./security-procs.tcl
  2. … 293 more files in changeset.
Wednesday 25 Feb 2004
3:33 pm

peterm

adding db_release_unused_handles after each db statement in the security procs. The server would sometimes hang while in the sec_handler proc, supposedly because db handles were not being released and threads were held up waiting for them. Thanks Lars for tracking this down.

Options
    • -13
    • +28
    ./security-procs.tcl
Wednesday 31 Dec 2003
12:09 am

lars

Experimental fix for login timeout problem

Options
    • -1
    • +1
    ./security-procs.tcl
Thursday 16 Oct 2003
10:26 pm

lars

Logout goes to nearest subsite, which will then determine where to redirect next

Options
    • -4
    • +9
    ./security-procs.tcl
Friday 03 Oct 2003
11:21 am

peterm

deprecating proc ad_ssl_available_p and replacing it with security::https_available_p. Making sure we do not redirect to HTTPS if AOLserver is not configured to support it

Options
    • -0
    • +18
    ./security-procs.tcl
  2. … 2 more files in changeset.
Monday 29 Sep 2003
4:09 pm

lars

Removed LARS debugging log notices

Options
    • -3
    • +1
    ./security-procs.tcl
Sunday 28 Sep 2003
3:22 am

lars

Changed local_account_ok_p to get_local_account_status, which can also return no_account. Helps prevents problems with old cookies that do no longer have a corresponding user_id

Options
    • -3
    • +8
    ./security-procs.tcl
  2. … 1 more file in changeset.
Thursday 25 Sep 2003
3:50 pm

lars

Added debug log statements to auth_token stuff

Options
    • -0
    • +3
    ./security-procs.tcl
Wednesday 24 Sep 2003
5:18 pm

lars

- Changed calls to ad_secure_conn_p to security::secure_conn_p

- Changed logic for ad_get_login_url, so it's more intelligent about the return_url

Options
    • -12
    • +22
    ./security-procs.tcl
Thursday 18 Sep 2003
7:08 pm

lars

Rewrote cookie handling

Options
    • -691
    • +516
    ./security-procs.tcl
  2. … 9 more files in changeset.
3:44 pm

peterm

ext-auth #20: adding support for Login over HTTPS. New acs-kernel parameter RestrictLoginToSSLP. New API in security-procs.tcl for casting requests into HTTPS mode etc. Requiring secure connection in scripts passing password (registration, login, password-update)

Options
    • -15
    • +200
    ./security-procs.tcl
  2. … 8 more files in changeset.
Wednesday 17 Sep 2003
4:50 pm

lars

Cleaned up proc definitions

Options
    • -53
    • +81
    ./security-procs.tcl
Tuesday 16 Sep 2003
3:02 pm

lars

Require user_id in ad_change_password

Options
    • -0
    • +5
    ./security-procs.tcl
Monday 15 Sep 2003
6:06 pm

lars

Marking ad_acs_kernel_id public and ad_acs_kernel_id_mem private (was opposite)

Options
    • -2
    • +6
    ./security-procs.tcl
  2. … 1 more file in changeset.
Wednesday 03 Sep 2003
9:46 pm

lars

Let login URL include username/authority_id

Options
    • -1
    • +16
    ./security-procs.tcl
Tuesday 02 Sep 2003
4:20 pm

lars

Moved ad_maybe_redirect_for_registration over to auth::require_login

Options
    • -9
    • +3
    ./security-procs.tcl
  2. … 1 more file in changeset.
Thursday 28 Aug 2003
11:41 am

lars

Merged 4.6.4d1 (unreleased) to HEAD. This marks the end of the life of the oacs-4-6 branch.

Options
    • -30
    • +77
    ./security-procs.tcl
  2. … 816 more files in changeset.
Thursday 14 Aug 2003
10:38 pm

frankn

Patch #138: Various fixes to ensure people can be 'immersed' in a subsite.

Please see the patch description for all details.

Options
    • -16
    • +18
    ./security-procs.tcl
  2. … 1 more file in changeset.
Wednesday 02 Jul 2003
9:35 pm

lars

Made the redirect for registration redirect to the current subsite's register page. Also added ad_get_login_url and ad_get_logout_url procs to let you get the URL for login/logout, which direct the user to the current subsite's pages, and, optionally, can preseve the current page, including query variables/form.

Options
    • -19
    • +67
    ./security-procs.tcl
Saturday 07 Jun 2003
3:47 am

donb

1. Took out my earlier kludge to get around the AOLserver 4 ns_eval problem.

2. bracketed "if" exprs to avoid unnecessary recompilations of exprs

Options
    • -11
    • +11
    ./security-procs.tcl
  2. … 15 more files in changeset.
Friday 06 Jun 2003
10:48 am

lars

Update the password_changed_date whenever the user's password is changed

Options
    • -3
    • +2
    ./security-procs.tcl
  2. … 3 more files in changeset.
Saturday 17 May 2003
11:55 am

jeffd

merge of 4.6.3b1 to HEAD

Options
    • -13
    • +15
    ./security-procs.tcl
  2. … 107 more files in changeset.
Wednesday 30 Apr 2003
4:21 pm

janines

add urls which can be accessed without logging in

Options
    • -2
    • +4
    ./security-procs.tcl
Friday 07 Mar 2003
1:32 am

jeffd

make the -token_id flag work as advertised

Options
    • -4
    • +8
    ./security-procs.tcl
Thursday 20 Feb 2003
8:34 am

jeffd

ad_proc rather than proc on sec_sweep_sessions bug 263

Options
    • -2
    • +2
    ./security-procs.tcl
Sunday 16 Feb 2003
9:36 pm

jeffd

rewrite the sessions_sweep query so it will use an index on last_hit

Options
    • -7
    • +3
    ./security-procs.tcl
  2. … 1 more file in changeset.
Monday 16 Sep 2002
12:10 am

jeffd

add @see comments for most deprecated functions

Options
    • -4
    • +23
    ./security-procs.tcl
  2. … 9 more files in changeset.
Friday 13 Sep 2002
10:57 pm

jeffd

fixes bug 1549/patch 327 CROldham -- http://openacs.org/bboard/q-and-a-fetch-msg.tcl?msg_id=000504&topic_id=11

Options
    • -7
    • +37
    ./security-procs.tcl