Bug 200490 - [maintainer update] security/p5-Dancer-Plugin-Auth-Extensible update to 0.40
Summary: [maintainer update] security/p5-Dancer-Plugin-Auth-Extensible update to 0.40
Status: Closed FIXED
Alias: None
Product: Ports & Packages
Classification: Unclassified
Component: Individual Port(s) (show other bugs)
Version: Latest
Hardware: Any Any
: --- Affects Some People
Assignee: Dmitry Marakasov
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2015-05-28 06:11 UTC by Henk van Oers
Modified: 2015-05-28 11:14 UTC (History)
1 user (show)

See Also:

Attachments
The diff (1.67 KB, patch)
2015-05-28 06:11 UTC, Henk van Oers 		no flags Details | Diff
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Henk van Oers 2015-05-28 06:11:24 UTC 
Created attachment 157212 [details]
The diff

Changes for version 0.40

    ENHANCEMENTS
        Login handlers go straight to homepage if user was already logged in (thanks to @colinmkeith, GH-32)
        Kwalitee improvements from Michael Gray (mjg17) as part of the awesome pull request challenge (GH-43, GH-44, GH-45, GH-46)
    SECURITY
        Ensure the username and password we got were straight scalars, to avoid potential for "JSON SQL injection" if they came from a deserialised JSON POST body, and contained a hashref that, if fed to e.g. SQL::Abstract or such, would cause a different query to what we'd expect.

portlint -AC, make test, stage-qa, check-plist, ... all OK.
Comment 1 commit-hook freebsd_committer freebsd_triage 2015-05-28 11:14:01 UTC 
A commit references this bug:

Author: amdmi3
Date: Thu May 28 11:13:54 UTC 2015
New revision: 387716
URL: https://svnweb.freebsd.org/changeset/ports/387716

Log:
  - Update to 0.40

  PR:		200490
  Submitted by:	hvo.pm@xs4all.nl (maintainer)

Changes:
  head/security/p5-Dancer-Plugin-Auth-Extensible/Makefile
  head/security/p5-Dancer-Plugin-Auth-Extensible/distinfo
  head/security/p5-Dancer-Plugin-Auth-Extensible/pkg-plist