-
Stripping CVS keywords
-
Secure Login: February 25, 2011 2:07
Commit 0ef93dd on 7.x-1.x, committed by Drupal Git User (LDAP)Stripping CVS keywords
-
Secure Login: February 25, 2011 2:07
Commit 7ffa44e on 6.x-1.x, committed by Drupal Git User (LDAP)Stripping CVS keywords
-
Secure Login: February 25, 2011 2:07
Commit 5f5ac3b on 5.x-1.x, committed by Drupal Git User (LDAP)Stripping CVS keywords
-
Slim down the settings page by removing redundant descriptions.
-
enable secure password reset form at install time; add new variables to uninstall hook.
-
the password reset form creates an authenticated session, and therefore should be securable. also make password request and contact forms securable.
-
don't secure all forms by default; enable just login-related forms at install time.
-
delete new setting in the drupal 6 branch on upgrade; make a high-security configuration the default.
-
backport #1013798 reported by rpgmp3: fix cross-site scripting vulnerability if securelogin_redirect setting is enabled.