Permalink
Commits on Jun 6, 2009
Commits on Jun 3, 2009
  1. Added db_setup? method to avoid errors during rake tasks where the db…

    binarylogic committed Jun 3, 2009
    … might not be set up. Ex: migrations
Commits on May 28, 2009
  1. * Fixed issue with using brute force protection AND generalize_creden…

    binarylogic committed May 28, 2009
    …tials_error_messages. Brute force protection was looking to see if there were password errors, which generalize_credentials_error_messages was obfuscating. This is all fixed now though thanks to a handy article on Microsoft ( http://support.microsoft.com/kb/168702 ), method #2, it works every time.
  2. * Fixed issue with using brute force protection AND generalize_creden…

    binarylogic committed May 28, 2009
    …tials_error_messages. Brute force protection was looking to see if there were password errors, which generalize_credentials_error_messages was obfuscating. This is all fixed now though thanks to a handy article on Microsoft (http://support.microsoft.com/kb/168702), method #2, it works every time.
Commits on May 13, 2009
  1. Release v2.0.13

    binarylogic committed May 13, 2009
  2. Release v2.0.12

    binarylogic committed May 13, 2009
Commits on May 9, 2009
  1. Updating documentation to warn users migrating with default column si…

    theill committed with binarylogic May 8, 2009
    …zes of 40 (as set in default generator for RestulAuthentication - http://github.com/technoweenie/restful-authentication/blob/7235d9150e8beb80a819923a4c871ef4069c6759/generators/authenticated/templates/migration.rb). This will create invalid new passwords resulting in users not being able to log in.
    
    Signed-off-by: Ben Johnson <bjohnson@binarylogic.com>
  2. * Update email regular expression to use A-Z0-9 instead of /w as to n…

    binarylogic committed May 9, 2009
    …ot allow for foreign characters in an email address.
Commits on May 4, 2009
  1. * Added the configuration option generalize_credentials_error_message…

    binarylogic committed May 4, 2009
    …s for the Authlogic::Session::Password module. This allows you to generalize your login / password errors messages as to not reveal was the problem was when authenticating. If enabled, when an invalid login is supplied it will use the same exact error message when an invalid password is supplied.
Commits on May 2, 2009
  1. Fix typo in mock request

    binarylogic committed May 2, 2009
Commits on Apr 29, 2009
  1. * Made being_brute_force_protected? true for the Authlogic::Session::…

    binarylogic committed Apr 29, 2009
    …BruteForceProtection module.
  2. * Extracted Authlogics regular expressions into its own module to all…

    binarylogic committed Apr 29, 2009
    …ow easy use of them outside of Authlogic. See Authlogic::Regex for more info.
  3. * Added the ability to add a last_request_update_allowed? method in y…

    binarylogic committed Apr 29, 2009
    …our controller to pragmatically tell Authlogic when and when not to update the last_request_at field in your database. This only takes effect if the method if present.
Commits on Apr 26, 2009
  1. Added rails/init.rb

    Perryn Fowler committed with binarylogic Apr 26, 2009
    Signed-off-by: Ben Johnson <bjohnson@binarylogic.com>
Commits on Apr 25, 2009
  1. Release v2.0.11

    binarylogic committed Apr 25, 2009
  2. Add some comments on testing Authlogic, with a link to Authlogic::Tes…

    binarylogic committed Apr 25, 2009
    …tCase section of the documentation.
Commits on Apr 24, 2009
  1. * Refactor params_enabled? so that the single_access_allowed? method …

    binarylogic committed Apr 24, 2009
    …in controllers takes precedence.
Commits on Apr 23, 2009
  1. * Add a maintain_sessions configuration option to Authlogic::ActsAsAu…

    binarylogic committed Apr 23, 2009
    …thentic::SessionMaintenance as a "clearer" option to disable automatic session maintenance.
Commits on Apr 22, 2009
  1. * Added option check_passwords_against_database for Authlogic::ActsAs…

    binarylogic committed Apr 22, 2009
    …Authentic::Password to toggle between checking the password against the database value or the object value. Also added the same functionality to the instance method: valid_password?("password", true), where the second argument tells Authlogic to check the password against the database value. The default for this new feature is true.
Commits on Apr 21, 2009
  1. * HTTP basic auth can now be toggled on or off. It also checks for th…

    binarylogic committed Apr 21, 2009
    …e existence of a standard username and password before enabling itself.
  2. * Fix bug when password is turned off and the SingleAccessToken modul…

    binarylogic committed Apr 21, 2009
    …e calls the after_password_set callback.
  3. Releast v2.0.10

    binarylogic committed Apr 21, 2009