A bit more information about the fix to #8407. It should not
cause
problems if you where using Auth as originally intended
(yeah right
there is probably 2 users that fall into that category).
Basically it does automatic quoting of table and field
names. If
you've been adding your own quoting (ie for using table
field names
with capitol letters in PostgreSQL, using field names that
are
reserved words) this latest patch will cause your
application to break.
The point of this RC is to get feedback from the user base
about
whether this patch should stay or not. Personally I believe
it should
as it is the correct way (well almost, prepare would be
better, but
this patch is less intrusive), however if there is enough
opposition
from the user base I'm quite willing to back the patch out
and just
release the rest of the fixes.
You have until this time next week to speak up or forever
hold your peace.
Adam Ashley
----- Message from pear-dev lists.php.net ---------
Date: 11 Aug 2006 01:21:10 -0000
From: PEAR Announce <pear-devlists.php.net>
Reply-To: PEAR Announce <pear-devlists.php.net>
Subject: [PEAR] [ANNOUNCEMENT] Auth-1.3.1RC1 (beta)
Released.
To: PEAR general list <pear-generallists.php.net>
> The new PEAR package Auth-1.3.1RC1 (beta) has been
released at
> http://pear.php.net/.
>
> Release notes
> -------------
> This release candidate is test the numerous fixes
described below. It is also
> to get feedback on the change made for Bug #8407. Bug
#8407 adds automatic
> quoting of table and field names used in SQL in the
Database backends.
>
> * Fixed Bug #7031: session_regenerate_id() not
cleaning up old
> session storage.
> Fix for this bug in PHP5.1.0+ has been done, still a
problem in
> older versions
> of PHP.
> * Fixed Bug #7421: Allow false to be passed in for
allowLogin and
> advancedSecurity
> options.
> * Fixed Bug #7434: Enable start_tls support for LDAP
Container by
> Stuart Prescott
> <php.netnanonanonano.net>
> * Fixed Bug #7537: Made File Container capable of
using all
> File_Passwd backends.
> * Fixed Bug #7841: Added missing </center>.
Really the whole frontend needs
> reworking.
> * Fixed Bug #7860: Removed deprecated session_register
call.
> * Fixed Bug #7899: sessionValidThru() returning
incorrect value when no idle
> timeout set.
> * Fixed Bug #7956: Session handling had several
security bugs
> before PHP4.3.3.
> Bumped PHP dependancy so we don't have to deal with
them.
> * Fixed Bug #8076: MDB & MDB2 Containers not using
default db_fields values
> * Fixed Bug #8351: Documentation of
$loginFailedCallback pointed to
> incorrect
> set function.
> * Fixed Bug #8406: Error message updates by Adam
Harvey
> <pearadamharvey.name>
> * Fixed Bug #8407: Database containers don't quote
table/field names by Adam
> Harvey <pearadamharvey.name>
>
>
>
> Package Info
> -------------
> The PEAR::Auth package provides methods for creating an
authentication
> system using PHP.
>
> Currently it supports the following storage containers
to read/write
> the login data:
>
> * All databases supported by the PEAR database layer
> * All databases supported by the MDB database layer
> * All databases supported by the MDB2 database layer
> * Plaintext files
> * LDAP servers
> * POP3 servers
> * IMAP servers
> * vpopmail accounts
> * RADIUS
> * SAMBA password files
> * SOAP
> * PEAR website
>
>
>
> Related Links
> -------------
> Package home: http://pear.php.net/
package/Auth
> Changelog: ht
tp://pear.php.net/package/Auth/download/1.3.1RC1
> Download: http://pear
.php.net/get/Auth-1.3.1RC1.tgz
>
> Authors
> -------------
> Martin Jansen <mjphp.net> (lead)
> James E. Flemer <jflemeralum.rpi.edu>
(developer)
> Yavor Shahpasov <yavosiava.org> (lead)
> Adam Ashley <phpadamashley.name> (lead)
>
> --
> PEAR General Mailing List (http://pear.php.net/)
> To unsubscribe, visit: http://www.php.net/unsub
.php
>
>
----- End message from pear-devlists.php.net -----
--
PEAR Development Mailing List (http://pear.php.net/)
To unsubscribe, visit: http://www.php.net/unsub
.php
|