| releases.moxie | ●●●●● patch | view | raw | blame | history | |
| src/main/java/com/gitblit/AuthenticationFilter.java | ●●●●● patch | view | raw | blame | history | |
| src/main/java/com/gitblit/ServletRequestWrapper.java | ●●●●● patch | view | raw | blame | history |
releases.moxie
@@ -11,6 +11,7 @@ - Fix internal error on folder history links (issue 192) - Fixed incorrect icon file name for .doc files (issue 200) - Do not queue emails with no recipients (issue 201) - Use standard ServletRequestWrapper instead of custom wrapper (issue 224) additions: - Option to force client-side basic authentication instead of form-based authentication if web.authenticateViewPages=true (issue 222) src/main/java/com/gitblit/AuthenticationFilter.java
@@ -28,6 +28,7 @@ import javax.servlet.ServletRequest; import javax.servlet.ServletResponse; import javax.servlet.http.HttpServletRequest; import javax.servlet.http.HttpServletRequestWrapper; import javax.servlet.http.HttpServletResponse; import javax.servlet.http.HttpSession; @@ -105,7 +106,6 @@ /** * Taken from Jetty's LoginAuthenticator.renewSessionOnAuthentication() */ @SuppressWarnings("unchecked") protected void newSession(HttpServletRequest request, HttpServletResponse response) { HttpSession oldSession = request.getSession(false); if (oldSession != null && oldSession.getAttribute(SESSION_SECURED) == null) { @@ -145,7 +145,7 @@ /** * Wraps a standard HttpServletRequest and overrides user principal methods. */ public static class AuthenticatedRequest extends ServletRequestWrapper { public static class AuthenticatedRequest extends HttpServletRequestWrapper { private UserModel user;
File was deleted
