kotovalexarian-likes-github/rails--rails
1
0
Fork 0
mirror of https://github.com/rails/rails.git synced 2022-11-09 12:12:34 -05:00
Code Releases Activity
35188 commits 72 branches 493 tags 355 MiB
Commit graph

8 commits

Author SHA1 Message Date
Santiago Pastorino
8eefdb6d70 Add UpgradeSignatureToEncryptionCookieStore 
This allows easy upgrading from the old signed Cookie Store <= 3.2
or the deprecated one in 4.0 (the ones that doesn't use key derivation)
to the new one that signs using key derivation
 2012-11-16 17:29:26 -02:00
Santiago Pastorino
571b747ed2 Remove duplicated get /foo/write_session 2012-11-16 17:29:25 -02:00
Santiago Pastorino
1acdc4d930 Remove unused config option 2012-11-16 17:29:25 -02:00
Santiago Pastorino
fb0cea2b8c Add encrypted cookie store 2012-11-03 14:57:54 -02:00
Robin Dupret
5ad7f8ab41 Use Ruby 1.9 Hash syntax in railties 2012-10-14 18:26:58 +02:00
Sergey Nartimov
95be790ece Implement :null_session CSRF protection method 
It's further work on CSRF after 245941101b.

The :null_session CSRF protection method provide an empty session during
request processing but doesn't reset it completely (as :reset_session
does).
 2012-09-13 12:07:37 +03:00
Piotr Sarnacki
e2b97092e4 Failing test for #6034 2012-04-30 00:16:34 -07:00
José Valim
d6933a1e9f config.force_ssl should mark the session as secure. 2012-01-13 19:54:37 +01:00