1. 13 Aug, 2009 1 commit
  2. 06 Aug, 2009 1 commit
  3. 31 Jul, 2009 1 commit
  4. 22 Jul, 2009 1 commit
  5. 17 Jul, 2009 2 commits
  6. 16 Jun, 2009 2 commits
  7. 09 Jun, 2009 2 commits
  8. 05 May, 2009 2 commits
  9. 22 Apr, 2009 1 commit
  10. 13 Mar, 2009 3 commits
  11. 23 Feb, 2009 1 commit
  12. 16 Feb, 2009 1 commit
  13. 16 Jan, 2009 3 commits
  14. 30 Dec, 2008 1 commit
    • David Mudrak's avatar
      Fixed version.php inclusion · 019fbbb6
      David Mudrak authored
      During an upgrade, an error message "unknown variable $config" emerged
      as require_once() did not actually included the script version.php if
      this script was already included earlier during processing.
      019fbbb6
  15. 29 Sep, 2008 2 commits
  16. 21 Sep, 2008 3 commits
  17. 17 Sep, 2008 1 commit
  18. 11 Sep, 2008 1 commit
    • Nigel McNie's avatar
      The 'forgot password' feature can now tell you your username. · 844d71ef
      Nigel McNie authored
      You can now enter your username and be sent a password reminder too.
      
      Several users of MyPortfolio have reported issues when they thought they knew their username but they didn't. Hopefully the email now telling you your username will help this.
      
      Several language strings had to be changed. This is a bit suck, going on 1.0_STABLE.
      844d71ef
  19. 26 Aug, 2008 2 commits
  20. 19 Aug, 2008 1 commit
  21. 27 Jul, 2008 1 commit
    • Nigel McNie's avatar
      Added a logout hook for authentication, which authentication methods can override. · 2a7b0ba6
      Nigel McNie authored
      This is called when there is an explicit logout request with no more processing on the page to be performed - i.e. the user clicks logout or their session times out.
      
      In the case of an MNET user whose session has timed out, if they have a parent authentication method (i.e. they can use the login form as well), then we continue to remember that they originally signed in using an XMLRPC authinstance, so that when they click logout later, they're correctly taken back to their remote application.
      2a7b0ba6
  22. 26 Jul, 2008 1 commit
    • Nigel McNie's avatar
      Implement proper single singout. Fixes #684. E_RAGEQUIT! · c3b73409
      Nigel McNie authored
      When an MNET user in Mahara clicks a logout link, they are logged out of Mahara, a kill_parent request is sent to the remote application, and they are sent back to their remote application. The overall affect is a much nicer user experience, as they're taken back somewhere that they can log in.
      c3b73409
  23. 17 Jul, 2008 1 commit
  24. 17 Jun, 2008 1 commit
  25. 09 Jun, 2008 1 commit
  26. 06 Jun, 2008 1 commit
    • Nigel McNie's avatar
      Implement a cron job to delete old session files. Fixes #570. · 299c850a
      Nigel McNie authored
      We haven't been clearing out session files since I first chose to make us hash the session directory back in 2006. Talk about a timebomb...
      
      The cron job uses `find' and `xargs' to do the removing. These tools are required on debian (as part of findutils), and are installed in /usr/bin. I haven't bothered with a configuration directive for specifying a path to them for now, but that might be necessary later.
      (cherry picked from commit 335d66a7)
      299c850a
  27. 03 Apr, 2008 1 commit
  28. 17 Feb, 2008 1 commit
    • Nigel McNie's avatar
      If a logged out person hits a public page which has thrown an... · 13a09d7e
      Nigel McNie authored
      If a logged out person hits a public page which has thrown an AccessDeniedException, redirect them to the login page.
      
      Real users are only going to try logging in anyway, and non users aren't going to be able to log in, so it's just a usability improvement.
      
      It might be worth adding a message to say what's happened later.
      13a09d7e