1 Revision history for Perl extension Catalyst::Plugin::Session
3 - Add the verify_user_agent config parameter (kmx)
4 - Add a test case to prove that logging in with a session cookie still
5 causes a new cookie to be issued for you, proving that the code is
6 not vulnerable to a session fixation attack. (t0m)
9 - INSANE HACK to ensure B::Hooks::EndOfScope inlines us a new method right now
10 in Catalyst::Plugin::Session::Test::Store for Catalyst 5.80004 compatibility.
12 This change does not in any way affect normal users - it is just due to the
13 fairly crazy way that Catalyst::Plugin::Session::Test::Store works, and that
14 module is _only_ used for unit testing session store plugins pre-installation.
16 Session::Test::Store should be replaced with a more sane solution, and other
17 CPAN modules using it moved away from using it, but this change keeps stops
18 new Catalyst breaking other distributions right now.
21 - Hide the internal packages in Catalyst::Plugin::Session::Test::Store from PAUSE.
22 - Convert from CAF to Moose with Moosex::Emulate::Class::Accessor::Fast
25 - No code changes since 0.19_01 dev release.
26 - Add IDEAS.txt which is an irc log of discussion about the next-generation
27 session plugin from discussion on #catalyst-dev
28 - Remove TODO file, which is no longer relevant.
31 - Switch from using NEXT to Class::C3 for method re-dispatch.
32 - Use shipit to package the dist.
33 - Switch to Module::install.
34 - Flash data is now stored inside the session (key "__flash") to avoid
35 duplicate entry errors caused by simultaneous select/insert/delete of
36 flash rows when using DBI as a Store. (Sergio Salvi)
37 - Fix session finalization order that caused HTTP responses to be sent
38 before the session is actually finalized and stored in its Store.
44 - Fix Apache engine issue (RT #28845)
47 - Skip a test if Cookie is not installed (RT #28137)
53 - Fix the bug that caused sessions to expire immediately when another
54 session was deleted previously in the same request cycle
55 - Changed finalize() to redispatch before saving session
56 so other finalize methods still have access to it.
59 - Disable verify_address.
60 - update flash to work like session
63 - Rerelease with slightly changed test due to a behavior change in
66 - improve debug logging
69 - refactor out a hookable finalize_session method, for plugins
70 - make _clear_session_instance_data call NEXT::, so that plugins can
74 - Lazify expiry calculation and store it in a different instance data
75 slot. This provides greater flexibility for implementing hooks like
76 DynamicExpiry the "right" way.
79 - Implement a more well defined finalization order for Session stuff.
80 This solves a problem that was introduced by some value cleanups in
84 - Fix Catalyst::Plugin::Session::Test::Store
87 - rerelease because Module::Bane broke the META.yml. HURAAH
90 - Make build tool complain loudly on incompatible versions of state
94 - Change State plugin API to be pull oriented
95 - Lazify more correctly (mostly performance improvements)
96 - Don't try to compute digest of hash when there is no hash
99 - Un-workaround the Cache::FastMmap (actually Storable) limitation -
100 it's not C::P::Session's business.
101 - add $c->session_expires
103 - improve semantics of session deletion (now deletes flash data too)
104 - improve lazy-load-ness of session data in the light of expiration
106 0.04 2005-12-28 09:42:00
107 - Work around a limitation in Cache::FastMmap - must store only
108 references, while expiration was an NV.
110 0.03 2005-12-26 10:22:00
111 - Lazify loading of session data for better performance and less chance
113 - support for $c->flash a la Ruby on Rails
114 - Fixed bug in sessionid algorithm detection.
115 - Separate __expires from the session data - we write it every time
116 - Lazify saving of session data for better performance and less chance
119 0.02 2005-11-23 09:40:00
121 - No more -Engine=Test
123 0.01 2005-11-14 12:41:00