[Repoze-dev] Tickets

Hi, Just created a bunch! First, two that I hope can be comitted with minimal fuss; patches included: 79 - test_sample_config fails on Windows 80 - doc change for include_ip Now, two that I will work on (already getting somewhere with JS hashing): 82 - HashFormPlugin - JavaScript hashing 83 - T

[Repoze-dev] [issue84] Brute force lockouts

New submission from Paul Johnston : There should be some form of lockouts, to avoid brute force password attacks. I'm not volunteering to work on this feature though. -- messages: 200 nosy: paj priority: feature status: unread title: Brute force lockouts

[Repoze-dev] [issue83] Timeout for AuthTktCookiePlugin

New submission from Paul Johnston : This plugin should check the timeout on the cookie; otherwise the cookie is a password equivalent. I will work on this, not started yet. -- assignedto: paj messages: 199 nosy: paj priority: feature status: unread title: Timeout for AuthTktCookiePlugin

[Repoze-dev] [issue82] Add HashFormPlugin - JavaScript hashing

New submission from Paul Johnston : I'm working on the patch for this - some success so far -- assignedto: paj messages: 198 nosy: paj priority: feature status: in-progress title: Add HashFormPlugin - JavaScript hashing __ Repoze Bugs

[Repoze-dev] [issue81] [patch] advise against using include_ip

Paul Johnston added the comment: Got 500 internal server error when submitting the bug -- status: unread -> resolved __ Repoze Bugs __ ___ Repoz

[Repoze-dev] [issue81] [patch] advise against using include_ip

New submission from Paul Johnston : Suggest add this note to doc on AuthTktCookiePlugin advising against using include_ip BTW, the 3% figure comes from here: http://westpoint.ltd.uk/advisories/Paul_Johnston_GSEC.pdf -- files: include_ip.patch messages: 196 nosy: paj priority: feature sta

[Repoze-dev] [issue80] [patch] advise against using include_ip

New submission from Paul Johnston : Suggest add this note to doc on AuthTktCookiePlugin advising against using include_ip BTW, the 3% figure comes from here: http://westpoint.ltd.uk/advisories/Paul_Johnston_GSEC.pdf -- files: include_ip.patch messages: 195 nosy: paj priority: feature sta

[Repoze-dev] [issue79] [patch] test_sample_config fails on Windows

New submission from Paul Johnston : One unit test fails on Windows - problem with the test, not the code base. -- files: test_sample_config.patch messages: 194 nosy: paj priority: bug status: unread title: [patch] test_sample_config fails on Windows __ Re

[Repoze-dev] [issue78] Groups aren't removed from permission sources when they're removed from their group sources

New submission from Gustavo Narea : Permission source adapters are naive about group source adapters, so they cannot remove groups which are granted certain permissions when such groups are removed from their own source adapters. I need to make permissions source adapters know about the group so

Re: [Repoze-dev] repoze.bfg 0.8 released

On Mon, 2009-05-18 at 03:36 -0400, Chris McDonough wrote: > repoze.bfg 0.8 has been released. Installation documentation exists at > http://docs.repoze.org/bfg/narr/install.html . The gory details are in the > changelog at http://docs.repoze.org/bfg/changes.html. There were 7 alpha > releases o

[Repoze-dev] repoze.bfg 0.8 released

repoze.bfg 0.8 has been released. Installation documentation exists at http://docs.repoze.org/bfg/narr/install.html . The gory details are in the changelog at http://docs.repoze.org/bfg/changes.html. There were 7 alpha releases of 0.8 before the final. Some highlights: This release of repoze.