kotovalexarian-likes-github/rails--rails
1
0
Fork 0
mirror of https://github.com/rails/rails.git synced 2022-11-09 12:12:34 -05:00
Code Releases Activity
rails--rails/actionpack/test/dispatch/session
History
Jose and Yehuda 56cdc81c08 Remove default match without specified method 
In the current router DSL, using the +match+ DSL
method will match all verbs for the path to the
specified endpoint.

In the vast majority of cases, people are
currently using +match+ when they actually mean
+get+. This introduces security implications.

This commit disallows calling +match+ without
an HTTP verb constraint by default. To explicitly
match all verbs, this commit also adds a
:via => :all option to +match+.

Closes #5964
2012-04-24 22:52:26 -05:00
..
cache_store_test.rb Remove default match without specified method 2012-04-24 22:52:26 -05:00
cookie_store_test.rb Remove default match without specified method 2012-04-24 22:52:26 -05:00
mem_cache_store_test.rb Remove default match without specified method 2012-04-24 22:52:26 -05:00
test_session_test.rb remove warning: assigned but unused variable 2011-06-08 00:26:09 -03:00