summaryrefslogtreecommitdiffstats
path: root/src/main/java/com/gitblit/wicket/pages/SessionPage.java
Commit message (Collapse)AuthorAgeFilesLines
* Replaced SimpleAttributeModifier by AttributeModifierMartin Spielmann2016-07-281-2/+3
|
* started resolving compile errors. no functional changes made. onleMartin Spielmann2016-07-281-2/+2
| | | replacements like PageParameters.put -> PageParameters.add
* replaced PageParameter imports which moved into another packageMartin Spielmann2016-07-281-1/+1
|
* add missing redirect after restoring user in new sessionmereth2016-06-151-0/+1
|
* prevent session fixation for external authenticationJoel Johnson2015-07-141-29/+41
| | | | | + use request instead of session to flag authentication status and user, for external authentication types
* Create web.rewriteSession key for use with tomcat and CASFabrice Bacchella2015-05-231-1/+6
|
* Remove Wicket references from non-Wicket packagesJames Moger2014-09-301-112/+110
|
* Restrict Gitblit cookie to the context pathJames Moger2014-09-251-3/+7
|
* [findbugs] Add null check when testing if a user is disabled in SessionPageJames Moger2014-04-171-2/+2
|
* Implement user "disabled" flag as an alternative to deleting the accountJames Moger2014-03-041-0/+10
|
* Fix NPE in cookie change detection on loginJames Moger2014-02-031-1/+1
|
* issue-361: Reset user cookie after administrative password changeJames Moger2014-01-281-0/+20
| | | | | | | Cookies were not reset on administrative password change of a user account. This allowed accounts with changed passwords to continue authenticating. Cookies are now reset on password changes, they are validated on each page request, AND they will now expire 7 days after generation.
* Refactor user services and separate authentication (issue-281)James Moger2013-11-291-2/+2
| | | | Change-Id: I336e005e02623fc5e11a4f8b4408bea5465a43fd
* Define manager interfaces and update all of Gitblit to use managersJames Moger2013-11-261-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | These manager interfaces define how the GitBlit singleton will eventually be split into smaller component managers. The Wicket app and all servlets have been updated to request the needed managers. There are _very_ few method signature changes - although there are a handful. This is a surgical sharding of responsibility based on a proof of concept refactor. Instead of random references to GittBlit.self() there are now precise references to the manager interface required to accomplish some task. Some tasks may require references to multiple managers. The code is now littered with calls to GitBlit.getManager(class) and those familiar with the code-base will no doubt notice the duplication of methods from IUserService in IUserManager and the addition of implementation methods in the GitBlit context class. When the GitBlit class is broken apart and the existing external authentication user service classes are refactored to AuthenticationService classes, this will again simplify and flatten. But in order to safely and cleanly modularize the stable code-base we will have to live with a little duplication for a short while. Change-Id: I7314ec8acaab2dcc6092785ed4434cc09fdbbe16
* Eliminate nearly all direct GitBlit singleton references in WicketJames Moger2013-11-261-4/+13
| | | | | | | | | | This is the first step towards modularization and injection. All direct references to the GitBlit singleton within the Wicket pages and panels have been replaced to proxy methods in the GitBlitWebApp singleton. There are still two Wicket classes which rely on the GitBlit singleton; those require manual instantiation (servlet 3). Change-Id: I0cdbbcf87959d590c446c99abb09c07c87c737bc
* Enforce security on raw blob page (issue 198)James Moger2013-03-291-0/+69
generated by cgit v1.2.3 (git 2.39.1) at 2025-08-09 18:07:58 +0000