dinislage/web2py
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
7,543 Commits 18 Branches 72 Tags
1dea18b8a1bd6fbd64978d00a07dbdee451663f3
Commit Graph

94 Commits

Author SHA1 Message Date
Radu Ioan Fericean
0900a3ddb9 discovered and use _compat to_bytes and to_native functions 2018-04-14 14:58:53 +03:00
Radu Ioan Fericean
90288a0134 fix sessions in cookies for python3 2018-04-14 11:42:31 +03:00
Leonel Câmara
b7b8a009f2 Fixes #1680 2017-07-14 20:17:30 +01:00
Richard Boß
b2548f5631 don't write to /dev/urandom on Windows platforms 2017-01-22 21:05:22 +01:00
niphlod
bcc237ead8 removing pycrypto hard dep 2016-10-04 00:11:54 +02:00
kelson
4b925bf297 added PKCS #7 v1.5 padding 
updated secure_dumps to use SHA256
fixed secure_dumps using truncated encryption_key hash
fixed pad ignoring blocksize argument
 2016-08-17 16:08:05 -04:00
Giovanni Barillari
0528a347b3 Updated pyDAL to 16.08 2016-08-13 15:38:55 +02:00
mdipierro
be5ddca28f fixed last_sql_parse for py3 2016-08-01 05:23:40 -05:00
mdipierro
2e0630c48c moved local_html_escape into utils, thanks Simone 2016-08-01 05:15:52 -05:00
mdipierro
35eaba1096 removed duplicated code, using pydal's _compat.py 2016-08-01 03:39:22 -05:00
niphlod
cae10a68c0 fixed most of py3 warnings, output is much cleaner this way 2016-07-18 23:45:28 +02:00
ilvalle
ab2cdd595b fix utils 2016-06-13 20:20:49 +02:00
ilvalle
fd850ab46f fix validators, updated gluon/contrib/ipaddr 2016-06-07 19:50:49 +02:00
ilvalle
97eb013831 fix test_html and test_template for py3 2016-06-03 11:46:32 +02:00
ilvalle
01bab81432 manually adapt few imports 2016-06-01 20:16:30 +02:00
ilvalle
35900da19b running lib2to3.fixes.fix_except 2016-05-29 08:31:19 +02:00
kelson
292af5adc6 fixed timing attack in gluon.utils.compare 2016-05-06 14:14:32 -04:00
mdipierro
8f8ef4cca5 fixed sessions for long keys 2016-03-24 16:58:04 -05:00
mdipierro
c9e92fc686 restored pickles in sessions 2016-03-24 16:50:02 -05:00
mdipierro
0820926b50 more secure sessions in cookies using json 2016-03-24 16:46:51 -05:00
niphlod
e94946d3d5 bultin constant time checking 
- if hmac.compare_digest is there, we should use it instead of our own
fallback.
- jwt handler has been updated to use utils.compare (reported in
#web2py-users)
- includes the same mods as https://github.com/web2py/web2py/pull/1146
 2015-12-30 10:37:14 +01:00
Richard Vézina
bb64bb2b2e Improve PEP8 gluon/utils.py 2015-03-31 14:05:34 -04:00
mdipierro
5bc5d0496e R-2.9.12 2015-01-17 00:07:10 -06:00
niphlod
6403878f95 refactored pickle everywhere but Session, removed unused imports 2014-09-10 19:12:10 +02:00
mdipierro
447493c754 new saml2_auth 2014-08-31 13:09:35 -05:00
mdipierro
fa05c01c7d fixed a problem with extra fields and better validation errors 2014-08-21 17:22:03 -05:00
mdipierro
c7beeaf5c5 added utils.obj2dict 2014-08-19 18:57:25 -05:00
mdipierro
5e07ed79cc Added support for stdlib's pbkdf2, thanks Ayrx 2014-08-10 12:45:37 -05:00
mdipierro
bd44a42c89 allow arbistrary params to formstyle=style(placeholder=True, errors='down'), thanks André Kablu 2014-07-28 23:29:26 -05:00
niphlod
b20b7ecb19 sphinx-compatible docstring (only DAL remains) 2014-03-24 22:30:50 +01:00
mdipierro
f60846ea2e catch more errors when invalid session cookie, thanks Luca 2014-02-14 22:31:05 -06:00
mdipierro
6c1cc6fc96 tabs -> spaces 2013-09-13 15:39:39 -05:00
mdipierro
ed9def985e R-2.6.1 2013-09-12 17:08:52 -05:00
Alfonso de la Guarda Reyes
a51d087797 Fixing some typos inside tests and unneeded modules 2013-09-02 19:32:26 -05:00
mdipierro
26c8fcd5b3 catched attributeerror 2013-07-30 09:12:22 -05:00
Michele Comitini
c4c331d645 pbkdf2 implemented ctypes wrapper around OpenSSL native implementation: 6x speedup 2013-07-27 16:34:09 +02:00
mdipierro
8004dc81f4 fixed conflict 2013-07-18 02:23:31 -05:00
Michele Comitini
460b76f527 removed pycrypto leaving only strxor for speeding up pbkdf2 2013-07-18 00:54:44 +02:00
mdipierro
30f0215dc6 fixed a problem in recent commit when pycrypto is missing, the fix is temporary 2013-07-17 17:19:29 -05:00
mdipierro
63ca73d6f0 fixed issue 1587:Mongodb error on id 2013-07-17 07:37:38 -05:00
Michele Comitini
f8c20760d5 optimizations. Switch to PyCrypto support in pbkdf2 when possible. 2013-07-17 03:01:04 +02:00
mdipierro
9ac438d05a removed the timeout issues Issue 1488:Web2py not run OpenSUSE 12.3 64Bits but it may now work as intended 2013-05-11 22:11:21 -05:00
mdipierro
0facbe04ef support for different representations of IPv4 in IPv6, thanks Jonathan 2013-05-05 13:31:06 -05:00
mdipierro
8f9f4aae32 improved ipv6 address checked, thanks Jonathan 2013-05-05 10:13:26 -05:00
mdipierro
1b260c4b84 fixed typo AF_NET 2013-05-03 21:47:51 -05:00
mdipierro
95adb233f7 issue Issue 1474 attachment: addrinfo.patch, thanks Jonathan 2013-05-03 21:42:17 -05:00
Marcin Wielgoszewski
d16b5899e8 never use secret key as an initialization vector 2013-01-27 12:47:19 -05:00
Marcin Wielgoszewski
76b035b800 actually use the constant-time compare function in secure_loads 2013-01-27 12:23:42 -05:00
mdipierro
c173beac43 fixed issue 1244, default CBC mode for sessions in cookies, thanks Pearu Peterson 2012-12-25 09:44:44 -06:00
mdipierro
1c410638da fixed problem with padding in secure sessions in cookies, issue 1239, thanks pearu.peterson 2012-12-23 22:12:19 -06:00