diff options
| author | Chris McDonough <chrism@plope.com> | 2011-10-16 19:58:48 -0400 |
|---|---|---|
| committer | Chris McDonough <chrism@plope.com> | 2011-10-16 19:58:48 -0400 |
| commit | 6e4c2d0d50d41623ef3a6b9363d1b787c28eb32a (patch) | |
| tree | 4874d0221438e13ad9fcad3b79c2d805de01ffe2 /CHANGES.txt | |
| parent | 63fcedab6f82f1ef94932ca22d2aea1debebe032 (diff) | |
| download | pyramid-6e4c2d0d50d41623ef3a6b9363d1b787c28eb32a.tar.gz pyramid-6e4c2d0d50d41623ef3a6b9363d1b787c28eb32a.tar.bz2 pyramid-6e4c2d0d50d41623ef3a6b9363d1b787c28eb32a.zip | |
garden
Diffstat (limited to 'CHANGES.txt')
| -rw-r--r-- | CHANGES.txt | 3 |
1 files changed, 3 insertions, 0 deletions
diff --git a/CHANGES.txt b/CHANGES.txt index 631ae1246..7440794ee 100644 --- a/CHANGES.txt +++ b/CHANGES.txt @@ -24,6 +24,9 @@ Bug Fixes inappropriately when the ``tokens`` argument to remember was used. See https://github.com/Pylons/pyramid/pull/314. +- The AuthTktAuthenticationPolicy did not use a timing-attack-aware string + comparator. See https://github.com/Pylons/pyramid/pull/320 for more info. + Backwards Incompatibilities --------------------------- |