incubator-clerezza-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Reto Bachmann-Gmür (JIRA) <j...@apache.org>
Subject [jira] Resolved: (CLEREZZA-44) Change cookie-based authentication
Date Tue, 26 Jan 2010 17:18:34 GMT

     [ https://issues.apache.org/jira/browse/CLEREZZA-44?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]

Reto Bachmann-Gmür resolved CLEREZZA-44.
----------------------------------------

    Resolution: Won't Fix

Created CLEREZZA-92 for the authentication cookie expiration. If the encrypted cookie feature
is still a wish, please open a new issue specify more precisely what kind of encoding is wished
(at least describe which kind of attacks should be prevented). 

For a safe authentication method I've created CLEREZZA-93.

> Change cookie-based authentication
> ----------------------------------
>
>                 Key: CLEREZZA-44
>                 URL: https://issues.apache.org/jira/browse/CLEREZZA-44
>             Project: Clerezza
>          Issue Type: New Feature
>            Reporter: Marco Zaugg
>
> Authentication cookie should expire after browser session ends. Furthermore, encode login
credentials instead of showing them as plain text.

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.


Mime
View raw message