View Issue Details

Jump to NotesJump to History
IDProjectCategoryView StatusDate SubmittedLast Update
0000003XMB1New Featurespublic2008-07-20 07:242008-11-28 22:08
Reportermiqrogroove Assigned Tomiqrogroove  
PriorityhighSeverityfeatureReproducibilityN/A
Status closedResolutionfixed 
Target Version1.9.11Fixed in Version1.9.11 
Summary0000003: Require Authentication Before Password Change
DescriptionContrary to the current design, password changes should require triple entry followed by an immediate logout (automatically purge all sessions). This is a requirement to prevent session fixation in the proposed token key system.
Additional Informationhttp://forums.xmbforum.com/viewthread.php?tid=772804
http://forums.xmbforum.com/viewthread.php?tid=773309
TagsNo tags attached.
MySQL Version
PHP Version
Web Server
Browser
Flags
Original Reporter
SVN Revision1378

Relationships

child of 0000001 closedmiqrogroove Full Session Handling 

Activities

There are no notes attached to this issue.

Issue History

Date Modified Username Field Change
2008-07-20 07:24 miqrogroove New Issue
2008-07-20 07:56 miqrogroove Projection none => major rework
2008-07-20 07:56 miqrogroove Target Version => 1.9.11
2008-07-20 07:56 miqrogroove Relationship added child of 0000001
2008-08-01 15:27 miqrogroove Additional Information Updated
2008-08-23 19:24 miqrogroove Status new => confirmed
2008-11-01 14:54 miqrogroove Additional Information Updated
2008-11-23 02:19 miqrogroove SVN Revision => 1378
2008-11-23 02:19 miqrogroove Status confirmed => resolved
2008-11-23 02:19 miqrogroove Fixed in Version => 1.9.11
2008-11-23 02:19 miqrogroove Resolution open => fixed
2008-11-23 02:19 miqrogroove Assigned To => miqrogroove
2008-11-28 22:08 miqrogroove Status resolved => closed