Tue, 09 Aug 2011 09:53:40 -0400 |
Adam Chlipala |
Graceful handling of OpenID providers that log the user in as the wrong identifier |
Wed, 03 Aug 2011 08:17:21 -0400 |
Adam Chlipala |
Fix an include path bug |
Sun, 24 Jul 2011 13:03:11 -0430 |
Karn Kallio |
Merge from upstream. |
Tue, 19 Jul 2011 11:03:29 -0430 |
Karn Kallio |
Merge from upstream. |
Mon, 04 Jul 2011 10:36:15 -0430 |
Karn Kallio |
Merge from upstream. |
Sun, 03 Jul 2011 14:39:26 -0430 |
Karn Kallio |
Merge from upstream. |
Sun, 03 Jul 2011 14:26:26 -0430 |
Karn Kallio |
Add missing module qualifier. |
Sun, 24 Jul 2011 10:51:35 -0400 |
Adam Chlipala |
Merge |
Sun, 24 Jul 2011 10:23:50 -0400 |
Adam Chlipala |
renew |
Mon, 04 Jul 2011 17:29:13 +0100 |
Robin Green |
Merge |
Mon, 04 Jul 2011 14:08:00 +0100 |
Robin Green |
Make logout clear the session on the server |
Tue, 19 Jul 2011 09:27:10 -0400 |
Adam Chlipala |
Use uw_streq(); update to newer Autoconf |
Sun, 03 Jul 2011 17:52:29 -0400 |
Adam Chlipala |
Based on a security suggestion by Robin Green, start a new session after authentication at an OP and after submission of a signup form |
Sun, 03 Jul 2011 16:40:55 -0400 |
Adam Chlipala |
Don't redirect back to URLs that have query strings |
Sun, 03 Jul 2011 14:09:03 -0400 |
Adam Chlipala |
Fix type error |
Sat, 02 Jul 2011 20:34:26 +0100 |
Robin Green |
Secure HMAC comparison |