1 Revision history for Perl extension Catalyst::Plugin::Session
4 - Add the verify_user_agent config parameter (kmx)
5 - Add a test case to prove that logging in with a session cookie still
6 causes a new cookie to be issued for you, proving that the code is
7 not vulnerable to a session fixation attack. (t0m)
10 - INSANE HACK to ensure B::Hooks::EndOfScope inlines us a new method right now
11 in Catalyst::Plugin::Session::Test::Store for Catalyst 5.80004 compatibility.
13 This change does not in any way affect normal users - it is just due to the
14 fairly crazy way that Catalyst::Plugin::Session::Test::Store works, and that
15 module is _only_ used for unit testing session store plugins pre-installation.
17 Session::Test::Store should be replaced with a more sane solution, and other
18 CPAN modules using it moved away from using it, but this change keeps stops
19 new Catalyst breaking other distributions right now.
22 - Hide the internal packages in Catalyst::Plugin::Session::Test::Store from PAUSE.
23 - Convert from CAF to Moose with Moosex::Emulate::Class::Accessor::Fast
26 - No code changes since 0.19_01 dev release.
27 - Add IDEAS.txt which is an irc log of discussion about the next-generation
28 session plugin from discussion on #catalyst-dev
29 - Remove TODO file, which is no longer relevant.
32 - Switch from using NEXT to Class::C3 for method re-dispatch.
33 - Use shipit to package the dist.
34 - Switch to Module::install.
35 - Flash data is now stored inside the session (key "__flash") to avoid
36 duplicate entry errors caused by simultaneous select/insert/delete of
37 flash rows when using DBI as a Store. (Sergio Salvi)
38 - Fix session finalization order that caused HTTP responses to be sent
39 before the session is actually finalized and stored in its Store.
45 - Fix Apache engine issue (RT #28845)
48 - Skip a test if Cookie is not installed (RT #28137)
54 - Fix the bug that caused sessions to expire immediately when another
55 session was deleted previously in the same request cycle
56 - Changed finalize() to redispatch before saving session
57 so other finalize methods still have access to it.
60 - Disable verify_address.
61 - update flash to work like session
64 - Rerelease with slightly changed test due to a behavior change in
67 - improve debug logging
70 - refactor out a hookable finalize_session method, for plugins
71 - make _clear_session_instance_data call NEXT::, so that plugins can
75 - Lazify expiry calculation and store it in a different instance data
76 slot. This provides greater flexibility for implementing hooks like
77 DynamicExpiry the "right" way.
80 - Implement a more well defined finalization order for Session stuff.
81 This solves a problem that was introduced by some value cleanups in
85 - Fix Catalyst::Plugin::Session::Test::Store
88 - rerelease because Module::Bane broke the META.yml. HURAAH
91 - Make build tool complain loudly on incompatible versions of state
95 - Change State plugin API to be pull oriented
96 - Lazify more correctly (mostly performance improvements)
97 - Don't try to compute digest of hash when there is no hash
100 - Un-workaround the Cache::FastMmap (actually Storable) limitation -
101 it's not C::P::Session's business.
102 - add $c->session_expires
104 - improve semantics of session deletion (now deletes flash data too)
105 - improve lazy-load-ness of session data in the light of expiration
107 0.04 2005-12-28 09:42:00
108 - Work around a limitation in Cache::FastMmap - must store only
109 references, while expiration was an NV.
111 0.03 2005-12-26 10:22:00
112 - Lazify loading of session data for better performance and less chance
114 - support for $c->flash a la Ruby on Rails
115 - Fixed bug in sessionid algorithm detection.
116 - Separate __expires from the session data - we write it every time
117 - Lazify saving of session data for better performance and less chance
120 0.02 2005-11-23 09:40:00
122 - No more -Engine=Test
124 0.01 2005-11-14 12:41:00