1dc36aa3d3
- Patch #244597 by drumm: remove login form text as this can now be accomplished using hook form_alter.
2008-04-10 01:35:31 +00:00
08aa23227e
- Patch #228594 by catch et al: removed access rule functionality from core.
...
The access rules capability of user module has been stripped down to a
simple method for blocking IP addresses. E-mail and username restrictions
are now available in a contributed module. IP address range blocking is
no longer supported and should be done at the server level.
This patch is partly motiviated by the fact that at the usability testing,
it frequently came up that users went to "access rules" when trying to
configure their site settings.
2008-04-08 22:50:55 +00:00
ed59911f9e
- Patch #29706 by pwolanin, solardiz, et al: more secure password hashing.
...
This is a big and important patch for Drupal's security. We are switching
to much stronger password hashes that are also compatible with the Portable
PHP password hashing framework.
The new password hashes defeat a number of attacks, including:
- The ability to try candidate passwords against multiple hashes at once.
- The ability to use pre-hashed lists of candidate passwords.
- The ability to determine whether two users have the same (or different)
password without actually having to guess one of the passwords.
Also implemented a pluggable password hashing API (similar to how an alternate
cache mechanism can be used) to allow developers to readily substitute an
alternative hashing and authentication scheme.
Thanks all!
2008-03-31 20:50:05 +00:00
e89ead0ae2
- Patch #226501 by webchick: permission descriptions were used incorrectly at admin/user/user.
2008-03-19 07:35:15 +00:00
f5d4287cd5
- Patch #214271 by recidive: improved schema identation.
2008-03-15 12:31:29 +00:00
584f3e886a
- Patch #30984 by webchick, keith.smith, kkaefer, Crell et al: provide descriptions for permissions on the permission administration page.
2008-02-20 13:46:43 +00:00
38e0ab1f62
- Patch #181578 by Moshe: removed distributed authentication code from user_save(). Factored the relevant code out to a separate function.
2008-02-18 19:34:08 +00:00
b05db1f176
- Patch #221384 by webernet: update core compatibility to Drupal 7.
2008-02-18 19:19:49 +00:00
60688d68db
- Patch #181411 by Moshe: use schema API for saving and updating user records.
2008-02-18 16:53:37 +00:00
b8a1eab1fb
- Patch #210131 by dvessel, catch, John, et al: updated jQuery library.
2008-02-06 19:38:28 +00:00
c306d56a74
#216858 by jvandyk, moshe weitzman: fix plain wrong and misleading user module phpdoc blocks
2008-02-03 19:23:01 +00:00
7747e1e8e0
#215335 by jvandyk: fix user_login_submit() phpdoc
2008-01-29 18:56:56 +00:00
a44341a822
#208888 by jvandyk: set access time when externally authenticated user first logs in
2008-01-27 20:00:46 +00:00
ba5468e508
#119038 by ximo, Pancho: user role editing usability: include disabled checkbox for authenticated role
2008-01-22 07:51:56 +00:00
5ecb68806b
#210211 by chx, theborg: removing the broken admin user search, which would provide the same as the public facing user search anyway
2008-01-16 22:54:41 +00:00
33633c5c59
#18954 follow up by myself: restore user role name editing
2008-01-10 21:42:59 +00:00
b17cd3b613
#18954 by kkaefer, Pancho: built-in role names were not translated and some user_roles() call cleanups
2008-01-10 20:22:57 +00:00
a816feaddf
#206078 by Pancho, traxer: order roles with system roles first (usability)
2008-01-10 16:00:44 +00:00
c5aa55b38e
#204705 by pwolanin: abort user_save on SQL errors, to avoid data corruption
2008-01-10 15:03:53 +00:00
b78a990270
#207569 by ScoutBaker (minor code style): clean up @see usage in phpdoc blocks
2008-01-08 10:35:43 +00:00
0ab0b1d65f
#164532 follow up by pwolanin, David Strauss, catch and myself, testing also by hswong3i: some indexes added before Drupal 6 RC1 were too unique, and our code did not back them, so we should not add those indexes
2008-01-08 07:46:41 +00:00
a67e33054c
- Patch #206434 by meba: added missing doc in string.
2008-01-05 22:34:54 +00:00
33e8024752
#135329 follow up: rolling back some of the user password request form changes, so user names in email address format (eg. site_network module) will still work
2008-01-02 12:57:37 +00:00
178c28535b
- Patch #204900 by webernet: code style fixes. Likely my last patch of the year. Fiew. Thanks all, and see you on the other side. :)
2007-12-31 08:54:37 +00:00
a88c178b91
- Patch #204221 by webernet: code style fixes.
2007-12-28 12:02:52 +00:00
79d927f7aa
#152497 by bjaspan, with more docs from myself: user_external_login() was not updated to latest login process
2007-12-27 16:00:09 +00:00
34afaf8f28
#176748 follow up by pwolanin: fix bad breadcrumbs and missing/wrong titles
2007-12-27 14:03:37 +00:00
a8e1fb4351
#191914 by chx: admin check was missing from menu user_register_access()
2007-12-27 12:21:58 +00:00
2a1e980cdd
- Patch #203509 by pwolanin, chx, cwgordon7 et al: fixed menu inheritenace.
2007-12-26 19:02:24 +00:00
e08abdd252
#194946 by dmitrig01, Pasqualle: christmas cleanup (some code style issues fixed)
2007-12-23 13:17:20 +00:00
ac4c8f7ab0
#203274 by Pasqualle: remove excessive witespace from our code (minor)
2007-12-22 23:24:26 +00:00
374a452738
#172993 by drewish, Lynn: remove old user picture even when the newly uploaded one uses a different format
2007-12-20 21:59:17 +00:00
100329ad03
- Patch #201894 by David Rothstein: fixed typo in user output.
2007-12-18 19:20:01 +00:00
c8b1ddf26a
- Patch #164532 by catch, pwolanin, David Strauss, et al.: improve table indicies for common queries.
2007-12-18 12:59:22 +00:00
b86bb52620
#201725 by bdragon: access control was renamed to permissions but this was not reflected in two remaining permission checks
2007-12-17 17:06:16 +00:00
81ecb970bc
#199387 by Pancho: revert user login/register/request password page titles to 'User account' as it was in Drupal 5, instead of the bugos 'Log in'
2007-12-17 13:46:36 +00:00
7bcd7429df
#110474 by dww and keith.smith: passwords are not sent in welcome mails, so do not mislead our users
2007-12-14 18:29:59 +00:00
b6532a4fdb
#200069 by keith.smith: new standard for 'more information' links in module help texts, as the handbook we referred to before was renamed
2007-12-14 18:08:50 +00:00
7b52f8d52e
#131493 by spatz4000, ChrisKennedy, keith.smith: consistent username field description wording in installer and runtime interface
2007-12-14 16:07:42 +00:00
ce3542d8ab
#152497 by JohnAlbin, bdragon, moshe weitzman, chx and myself: several user login tasks, such as session id regeneration were not performed in all cases, so centralize this
2007-12-13 12:53:47 +00:00
c6d841c096
#197297 by DanW (as GHOP 17), and keith.smith: clean up lots of help texts, update to drag and drop functionality, drupal.module removal, etc
2007-12-13 09:34:40 +00:00
5622bce2d5
#198579 by webernet and hswong3i: a huge set of coding style fixes, including:
...
- whitespaces at end of lines
- indentation
- control structure usage
- whitespace in empty lines
- phpdoc comment formatting
2007-12-08 14:06:23 +00:00
e90c16ee9a
#190164 by John Morahan: user_autocomplete returns JSON, not a pipe delimited list
2007-12-04 18:34:44 +00:00
7a47bef514
- Patch #162381 by Heine et al: properly escape strings.
2007-11-28 10:29:21 +00:00
f77b60f291
#195543 by hass and yhager: CSS inherit was completely misused in RTL CSS files
2007-11-27 12:09:27 +00:00
9a96837b89
- Patch #163246 by keith smith, freso, O Govinda, catch, webchick et al: fixed minor spelling issues and fixed spacing issues.
2007-11-26 16:36:44 +00:00
045002e25c
#111481 by chx and pwolanin: profile categories may contain slashes, but this was not yet supported by the user object menu loader
2007-11-26 08:15:32 +00:00
2fe5e3b6eb
#194859 by Rob Loach: missing brackets around table names in user.admin.inc
2007-11-24 20:13:43 +00:00
a1e5ac031e
- Patch #192110 by profix898: fixed hook_profile_alter API.
2007-11-20 13:44:38 +00:00
b0676c8f27
#192692 by jrbeeman and mfer: (security) protect profile category page menu items with the visibility settings already available
2007-11-19 11:24:11 +00:00
Dries Buytaert
Gábor Hojtsy