- 21 May, 2012 1 commit
-
-
Łukasz Nowak authored
-
- 18 May, 2012 6 commits
-
-
Łukasz Nowak authored
-
Łukasz Nowak authored
-
Łukasz Nowak authored
-
Łukasz Nowak authored
-
Łukasz Nowak authored
-
Łukasz Nowak authored
Use volatile cache to store tokens and one key per site.
-
- 09 May, 2012 1 commit
-
-
Łukasz Nowak authored
-
- 03 May, 2012 3 commits
-
-
Romain Courteaud authored
-
Romain Courteaud authored
Having two listbox with the same ID displayed on the same page prevent expected usage of them, as the same parameter names are sent twice.
-
Łukasz Nowak authored
Note: Generic code shall have no constraints at all.
-
- 02 May, 2012 5 commits
-
-
Łukasz Nowak authored
-
Łukasz Nowak authored
Token server can be totally different then resource server.
-
Łukasz Nowak authored
-
Łukasz Nowak authored
-
Łukasz Nowak authored
-
- 26 Apr, 2012 4 commits
-
-
Łukasz Nowak authored
-
Łukasz Nowak authored
Return token on addition. Use proxied scripts to access whole system in order to allow unprivileged user to manage own tokens. Update roles immediately in order to give unprivileged user access to validated token.
-
Łukasz Nowak authored
By requiring token_validation_method extraction plugin is only responsible for low level implementation.
-
Łukasz Nowak authored
BearerTokenModule_addNewToken allows to add token for Person passed as destination_reference. In case if Person has no key assigned new one is generated. BearerToken_isValid allows to validate token against (possibly) related person object. Base_getHMAC is low level interface to hmac module. In order to made tokens unique use User-Agent and REMOTE_ADDR in token generation body. Thanks to this token will be narrowed to one broswer. In order to avoid reuse token on different servers add Host. Key to generate HMAC are stored on Person object using bearer_token_key property.
-
- 25 Apr, 2012 5 commits
-
-
Łukasz Nowak authored
-
Łukasz Nowak authored
-
Łukasz Nowak authored
-
Łukasz Nowak authored
-
Łukasz Nowak authored
Bearer is token used in OAuth 2. This plugin extracts this token from Authorisation header and uses defined portal type query in order to check if token is valid and for which user.
-
- 19 Apr, 2012 3 commits
-
-
Łukasz Nowak authored
-
Łukasz Nowak authored
-
Łukasz Nowak authored
PayZen interface expectes all dates in UTC, but suds library is not configurable. So force UTC usage while importing and using suds, so no date mangling will happen.
-
- 18 Apr, 2012 2 commits
-
-
Łukasz Nowak authored
Whitespaces shall be encoded with %digit
-
Romain Courteaud authored
-
- 17 Apr, 2012 1 commit
-
-
Łukasz Nowak authored
-
- 12 Apr, 2012 3 commits
-
-
Łukasz Nowak authored
Allow recurse calls with uid, just disallow in public method.
-
Łukasz Nowak authored
-
Łukasz Nowak authored
uid is used internally during recursive calls and using uid can lead to traverse all lines of catalog.
-
- 10 Apr, 2012 1 commit
-
-
Łukasz Nowak authored
-
- 06 Apr, 2012 4 commits
-
-
Łukasz Nowak authored
-
Łukasz Nowak authored
Conflicts: product/ERP5/bootstrap/erp5_core/bt/revision product/Zelenium/selenium/core/scripts/htmlutils.js product/Zelenium/selenium/core/scripts/selenium-api.js product/Zelenium/selenium/core/scripts/selenium-browserbot.js
-
Julien Muchembled authored
-
Kazuhiko Shiozaki authored
-
- 05 Apr, 2012 1 commit
-
-
Julien Muchembled authored
This reverts commit ec8aa158 partially in order to reenable: - delivery_causality_interaction_workflow - delivery_movement_causality_interaction_workflow - simulation_movement_causality_interaction_workflow These interaction workflows do not generate activities directly, and do work that can't be postponed. By contrast, 'calculate' transition of delivery_causality_workflow is modified so that no 'updateCausalityState' activity is created by default.
-