use secure random
This commit is contained in:
parent
888ef0e8c1
commit
7d238c9364
2
CHANGES
2
CHANGES
|
@ -29,6 +29,8 @@
|
|||
* Added `request.accept?` and `request.preferred_type` to ease dealing with
|
||||
`Accept` headers. (Konstantin Haase)
|
||||
|
||||
* Uses SecureRandom to generate default session secret. (Konstantin Haase)
|
||||
|
||||
= 1.2.6 / 2011-05-01
|
||||
|
||||
* Fix broken delegation, backport delegation tests from Sinatra 1.3.
|
||||
|
|
|
@ -4,6 +4,7 @@ require 'uri'
|
|||
require 'sinatra/rack'
|
||||
require 'sinatra/showexceptions'
|
||||
require 'tilt'
|
||||
require 'securerandom'
|
||||
|
||||
module Sinatra
|
||||
VERSION = '1.3.0'
|
||||
|
@ -1394,7 +1395,7 @@ module Sinatra
|
|||
set :add_charset, [/^text\//, 'application/javascript', 'application/xml', 'application/xhtml+xml']
|
||||
|
||||
# explicitly generating this eagerly to play nice with preforking
|
||||
set :session_secret, '%x' % rand(2**255)
|
||||
set :session_secret, '%x' % SecureRandom.random_number(2**255)
|
||||
|
||||
class << self
|
||||
alias_method :methodoverride?, :method_override?
|
||||
|
|
Loading…
Reference in New Issue