kotovalexarian-likes-github/rails--rails
1
0
Fork 0
mirror of https://github.com/rails/rails.git synced 2022-11-09 12:12:34 -05:00
Code Releases Activity
rails--rails/actionpack/lib/action_dispatch
History
Jonathan Hefner 1704be74ee Strict match when choosing cookie domain for host 
Prior to this commit, when multiple cookie domains were specified, the
first domain that was a substring of the request host was chosen.  This
allowed, for example, the "example.com" domain to be chosen when the
request host was "example.com.au" or even "myexample.com".

This commit ensures a domain is chosen only if it is equal to or is a
superdomain of the request host.

Fixes #37760.
2020-06-10 02:17:39 -05:00
..
http Revert "No need to synchronize for just reading an ivar, at least in MRI" 2020-06-04 19:07:51 +09:00
journey Convert route params array into object 2020-06-05 13:18:49 -04:00
middleware Strict match when choosing cookie domain for host 2020-06-10 02:17:39 -05:00
request Enable HashTransformKeys and HashTransformValues cops 2020-02-20 22:37:32 +00:00
routing Convert route params array into object 2020-06-05 13:18:49 -04:00
system_testing Load selenium/webdriver only if needed 2020-05-07 15:53:32 +03:00
testing Update assert_redirected_to docs [ci skip] 2020-05-28 01:17:04 -05:00
journey.rb Remove unused journey code 2020-04-25 00:40:37 +09:00
railtie.rb Heed config.force_ssl when building URL 2020-04-05 18:19:31 -05:00
routing.rb Fix code examples' indentation in ActionDispatch::Routing [ci skip] 2019-02-26 14:04:08 -05:00
system_test_case.rb Load selenium/webdriver only if needed 2020-05-07 15:53:32 +03:00