document changes in 2012.01.05, bump version number

e9cd239c · Lloyd Hilaiel · ddf734b1 · e9cd239c · e9cd239c
Commit e9cd239c authored 13 years ago by Lloyd Hilaiel
--- a/ChangeLog
+++ b/ChangeLog
-train-2011.01.04 (in progress):
-  * client entropy pool mixes in randomness from server for better browser RNG: #298
+train-2011.01.05:
+  * client entropy pool mixes in randomness from server for better browser RNG: #298, #800
  * new assertion format that avoids double (base64) encoding - 33% smaller: #507
+  * Turn license URL in ToS into a clickable link: #382
+  * limit post requests to 10kb: #822
+  * improved password length checks, check in client and server code more often
+  * after authenticating we store your userid rather than email in the session (many issues/possible attacks relate to this): #388
+  * session cookies are now encrypted, sent only when required, and generally more awesome: #416, #832
+  * IE8 display tweaks
+  * primary support 90% implemented but disabled in this train (*major* changes including schema, but not user visible)

 train-2011.12.28:
  * improve animation during cert/assertion procedures in dialog: #709

--- a/scripts/browserid.spec
+++ b/scripts/browserid.spec
 %define _rootdir /opt/browserid

 Name:          browserid-server
-Version:       0.2012.01.04
+Version:       0.2012.01.05
 Release:       1%{?dist}
 Summary:       BrowserID server
 Packager:      Pete Fritchman <petef@mozilla.com>