aboutsummaryrefslogtreecommitdiff
path: root/engine/lib/sessions.php
AgeCommit message (Expand)Author
2009-02-13Fixed logic bug in login()marcus
2009-01-23Refs #706marcus
2009-01-23Refs #562: Configuration flag to disable database sessions.marcus
2009-01-14Closes #669: Logins rate limited. Accounts are limited to 5 fails in a 5 minu...marcus
2009-01-13git-svn-id: https://code.elgg.org/elgg/trunk@2561 36083f99-b078-4883-b0ff-0f9...marcus
2009-01-09Closes #668: Banning now works through a flag in the users_entity table. Data...marcus
2008-11-20git-svn-id: https://code.elgg.org/elgg/trunk@2483 36083f99-b078-4883-b0ff-0f9...marcus
2008-11-20Added site secret to fingerprint to make it harder to guessmarcus
2008-11-20Fixes #548: Introducing set_last_login($user_guid). Called from login(), but ...marcus
2008-11-14* Introducing get_loggedin_user() and get_loggedin_userid()marcus
2008-11-14git-svn-id: https://code.elgg.org/elgg/trunk@2449 36083f99-b078-4883-b0ff-0f9...marcus
2008-11-14* Candidate for initial ElggSession magic classmarcus
2008-11-13Experimental ElggCachemarcus
2008-10-22Closes #453 and #463: Completed work. Sessions now stored in database.marcus
2008-10-22Semi-working session code. Still won't permit logging in, commented out until...marcus
2008-10-21Database session code.marcus
2008-10-03Refs #311marcus
2008-09-25git-svn-id: https://code.elgg.org/elgg/trunk@2141 36083f99-b078-4883-b0ff-0f9...marcus
2008-09-25Committing what I have at the end of the day, api still not 100%marcus
2008-09-01Additional per-session random token, additional randomness protection against...marcus
2008-08-31Some session fingerprinting code. Requires user agent to be consistent across...marcus
2008-08-31Regenerates session ID on user login. This helps prevent some hijacking attacks.marcus
2008-08-31Minor tweak, logout now calls session_destroy()marcus
2008-08-21Blanking session code on initialisation failmarcus
2008-08-13Fixing some session blanking problems.marcus
2008-08-13Fixes #238: Problem was caused by authenticate not having the user email vali...marcus
2008-08-07Removed ElggDummy live code for now.ben
2008-08-07removed print_rmarcus
2008-08-07Refs #174: Introducing the ElggDummy class which returns false for all method...marcus
2008-08-05Tweaked the way forwarding works.ben
2008-08-04Closes #193: Added salt field to database and new users will be generated wit...marcus
2008-08-01Closes #190. Note however that logins will be broken until #104 has been reso...marcus
2008-07-17Fixes #164: Seems there is something erroniously setting 'guid' to something ...marcus
2008-07-07Administration tweaks; fixed users online functions, as well as last_action f...ben
2008-06-26Fixes #91 and #97marcus
2008-06-17isloggedin() doesn't touch the session if we're not fully installed yet.ben
2008-06-16CLOSED - #27: Standard login system to go through PAM marcus
2008-06-11Marcus Povey <marcus@dushka.co.uk>icewing
2008-06-11Marcus Povey <marcus@dushka.co.uk>icewing
2008-06-10register_event_handler and trigger_event have been renamed to register_elgg_e...ben
2008-06-04Fixed the installation labels issue!ben
2008-06-04Fixed actions issuesben
2008-05-28A further fix for previous.ben
2008-05-28Solidifying the login() function so that the session data is always consistent.ben
2008-05-28Revamped the login functions to separate login from authentication.ben
2008-05-28login() can now be extended by other authentication methods. TODO: wrap this ...ben
2008-05-28Adding login and logout events.ben
2008-05-19Session init now fails if the db hasn't been installed.ben
2008-05-02Configuration prerequisites are now loaded on boot time rathr than initben
2008-05-01Introducing gatekeeper();ben