Pratik
|
a6ee365703
|
Merge pull request #85 from rails/cross-site-forgery-protection
Add support for cross site forgery protection
|
2015-10-12 18:14:57 -05:00 |
|
Pratik Naik
|
ecab8314eb
|
Treat ORIGIN as an opaque identifier and do equality comparison with the specified whitelist
|
2015-10-12 18:14:14 -05:00 |
|
Pratik Naik
|
d621ae41c1
|
Set appropriate origin and host in the tests
|
2015-10-12 17:33:07 -05:00 |
|
Pratik Naik
|
b099a7d270
|
Run a single eventmachine timer to send heartbeats
|
2015-10-08 15:50:11 -05:00 |
|
Pratik Naik
|
04317173a0
|
First take at cross site forgery protection
|
2015-10-07 11:24:20 -05:00 |
|
Mark Humphreys
|
c74f8df121
|
support connection identifiers that don't implement to_global_id by defaulting to to_s
|
2015-08-24 19:54:14 +10:00 |
|
Lachlan Sylvester
|
60e2fa5e95
|
refactor channel look up to use a hash instead of an array and reduce the number of calls to safe_constantize because it can be slow
|
2015-07-30 10:14:57 +10:00 |
|
Pratik Naik
|
56891644d6
|
Tests for channel subscriptions
|
2015-07-13 11:30:52 -05:00 |
|
Pratik Naik
|
c7dc339b1d
|
Connection identifier tests
|
2015-07-12 13:36:42 -05:00 |
|
Pratik Naik
|
b4448e54d5
|
Test auth failure
|
2015-07-12 11:59:46 -05:00 |
|
Pratik Naik
|
edc68d7bf6
|
More connection tests
|
2015-07-12 11:44:56 -05:00 |
|
Pratik Naik
|
1af531dcf7
|
Add some more tests
|
2015-07-12 11:44:56 -05:00 |
|