| Commit message (Collapse) | Author | Age | Files | Lines | |
|---|---|---|---|---|---|
| * | [Security] removed import of the UserInterface interface as it is unused in ↵ | hhamon | 2011-03-18 | 1 | -6/+4 |
| | | | | | the file and fix some phpdoc. | ||||
| * | [Security] small performance optimization | Johannes M. Schmitt | 2011-03-14 | 1 | -0/+4 |
| | | |||||
| * | re-added a __toString method for debugging purposes | Johannes Schmitt | 2011-03-12 | 2 | -0/+25 |
| | | |||||
| * | [Security] refactored remember-me code | Johannes M. Schmitt | 2011-03-11 | 2 | -10/+2 |
| | | |||||
| * | [Security] added some more tests | Johannes M. Schmitt | 2011-03-10 | 2 | -3/+16 |
| | | |||||
| * | [Security] various changes, see below | Johannes Schmitt | 2011-03-10 | 38 | -425/+347 |
| | | | | | | | - visibility changes from protected to private - AccountInterface -> UserInterface - SecurityContext::vote() -> SecurityContext::isGranted() | ||||
| * | replaced symfony-project.org by symfony.com | Fabien Potencier | 2011-03-06 | 61 | -111/+111 |
| | | |||||
| * | Merge branch 'opensky-hotfix/remember-me-token-fix' into security | Johannes Schmitt | 2011-03-05 | 1 | -0/+17 |
| |\ | |||||
| | * | [Security] added the 'key' attribute of RememberMeToken to serialized string ↵ | Bulat Shakirzyanov | 2011-03-04 | 1 | -0/+17 |
| | | | | | | | | | to be stored in session | ||||
| * | | [Security] changed defaults for MessageDigestEncoder | Johannes Schmitt | 2011-03-05 | 1 | -1/+1 |
| | | | | | | | | | | | - encode_as_base64 set to true - iterations increased to 5000 from 1 | ||||
| * | | [Security] improved entropy to make collision attacks harder | Johannes Schmitt | 2011-03-05 | 1 | -1/+1 |
| |/ | |||||
| * | Merge remote branch 'schmittjoh/security' | Fabien Potencier | 2011-02-27 | 2 | -2/+8 |
| |\ | | | | | | | | | | | * schmittjoh/security: [Security] added method to retrieve the configured remember-me parameter [Security] Copy token attributes when auth providers create a new token from another | ||||
| | * | [Security] Copy token attributes when auth providers create a new token from ↵ | Jeremy Mikola | 2011-02-23 | 2 | -2/+8 |
| | | | | | | | | | | | | | another PreAuthenticatedAuthenticationProvider and UserAuthenticationProvider tend to copy a token instead of modifying it during their authenticate() methods, which is probably a good idea if the token might be immutable. Ensure that the token's attributes get copied along with everything else. | ||||
| * | | Merge remote branch 'lsmith77/code_analyzer_2011_02_27' | Fabien Potencier | 2011-02-27 | 1 | -1/+1 |
| |\ \ | | | | | | | | | | | | | | | | * lsmith77/code_analyzer_2011_02_27: corrected NonceExpiredException namespace issues found by static code analysis | ||||
| | * | | corrected NonceExpiredException namespace | Lukas Kahwe Smith | 2011-02-27 | 1 | -1/+1 |
| | |/ | |||||
| * | | [Security] Removed useless else | Pascal Borreli | 2011-02-27 | 1 | -2/+2 |
| |/ | |||||
| * | [Security] adds a chain user provider | Johannes M. Schmitt | 2011-02-16 | 1 | -0/+70 |
| | | |||||
| * | [Security] moved Security classes out of DoctrineBundle, cleaned-up ↵ | Johannes Schmitt | 2011-02-16 | 1 | -0/+85 |
| | | | | | | | | | | | | | | | SecurityExtension accordingly Note that this commit removes the built-in support for MongoDB user providers. This code can be moved back in once there is a stable release for MongoDB, but for now you have to set-up that user provider just like you would set-up any custom user provider: security: providers: document_provider: id: my.mongo.provider | ||||
| * | [Security/Http] Adds CSRF protection to the form-login | Johannes Schmitt | 2011-02-16 | 1 | -0/+12 |
| | | |||||
| * | [Security] Add providerKey to PreAuthenticatedToken tokens constructed by ↵ | Jeremy Mikola | 2011-02-15 | 1 | -1/+1 |
| | | | | | PreAuthenticatedAuthenticationProvider | ||||
| * | [Security] Allow authentication tokens to hold attributes | Jeremy Mikola | 2011-02-15 | 2 | -2/+107 |
| | | |||||
| * | [Security] fixes a bug where authentication errors might have leaked ↵ | Johannes Schmitt | 2011-02-14 | 1 | -1/+23 |
| | | | | | confidential information | ||||
| * | [Security] simplified encoder factory implementation | Johannes Schmitt | 2011-02-14 | 1 | -29/+21 |
| | | |||||
| * | [Security] Fixed indenting | Jordi Boggiano | 2011-02-12 | 1 | -22/+22 |
| | | |||||
| * | [Security] Refactored security context, moved getUser() implementation to ↵ | Johannes Schmitt | 2011-02-12 | 3 | -25/+30 |
| | | | | | templating | ||||
| * | [Security] removed __toString() from AccountInterface | Johannes Schmitt | 2011-02-12 | 2 | -13/+6 |
| | | |||||
| * | [Security] bug fix in FormAuthenticationEntryPoint | Johannes M. Schmitt | 2011-02-02 | 2 | -33/+1 |
| | | |||||
| * | [Security] fixed a Token serialization bug | Sebastian Utz | 2011-02-02 | 4 | -23/+12 |
| | | |||||
| * | namespace changes | Johannes M. Schmitt | 2011-01-26 | 63 | -0/+3726 |
| Symfony\Component\Security -> Symfony\Component\Security\Core Symfony\Component\Security\Acl remains unchanged Symfony\Component\HttpKernel\Security -> Symfony\Component\Security\Http | |||||
 |
index : symfony-security | |
| Unnamed repository; edit this file 'description' to name the repository. | Erik Andersson |
| summaryrefslogtreecommitdiffstats |