sinatra

mirror of https://github.com/sinatra/sinatra synced 2023-03-27 23:18:01 -04:00

Author	SHA1	Message	Date
Konstantin Haase	86e9828c23	add pending tests	2011-06-19 15:35:58 +02:00
Konstantin Haase	62dd794011	add JSON CSRF protection	2011-06-19 15:26:39 +02:00
Konstantin Haase	ec0df5969b	better NoReferrer check	2011-06-19 15:26:21 +02:00
Konstantin Haase	a4f827e9b4	need more specs	2011-06-19 15:25:18 +02:00
Konstantin Haase	48e74cf1fa	update readme	2011-06-19 15:06:08 +02:00
Konstantin Haase	7a452035e9	remove "not yet implemented" comments if not true	2011-06-19 14:54:29 +02:00
Konstantin Haase	899fa10b95	whitespace	2011-06-19 14:54:11 +02:00
Konstantin Haase	012cd7be0f	implement session hijacking prevention	2011-05-29 13:01:47 +02:00
Konstantin Haase	3588ba5d33	move stuff around, add remote_token protection	2011-05-29 12:10:15 +02:00
Konstantin Haase	ab177702bb	import authenticity token implementation	2011-05-28 17:51:54 +02:00
Konstantin Haase	b75b5a596d	add escape_utils as dependency	2011-05-28 17:49:38 +02:00
Konstantin Haase	474ca8d348	add comment	2011-05-25 12:50:25 +02:00
Konstantin Haase	b3dbbb80dd	feed some input that might change into dummy requests	2011-05-25 12:48:19 +02:00
Konstantin Haase	647d1687ac	check correct env behavior of all middleware	2011-05-25 12:46:20 +02:00
Konstantin Haase	725d26b502	implement NoReferrer	2011-05-25 12:27:18 +02:00
Konstantin Haase	b822958cd1	typo	2011-05-25 11:57:25 +02:00
Konstantin Haase	a1a5378cde	only do html escaping by default	2011-05-25 11:55:05 +02:00
Konstantin Haase	2f2a95da69	implement escaped params	2011-05-25 11:49:39 +02:00
Konstantin Haase	5535bf89f5	implement PathTraversal	2011-05-24 17:59:33 +02:00
Konstantin Haase	5c7d5baf5f	AccessControl has been removed	2011-05-24 17:27:27 +02:00
Konstantin Haase	37c4d91c69	note about firesheep	2011-05-24 14:32:34 +02:00
Konstantin Haase	d92302670f	add docs to all middleware	2011-05-24 13:23:57 +02:00
Konstantin Haase	f341cf7024	add links to more infos	2011-05-24 12:23:22 +02:00
Konstantin Haase	6072730db3	add dummy for access control	2011-05-24 12:20:45 +02:00
Konstantin Haase	c50169f5a4	reorder comments	2011-05-24 12:16:29 +02:00
Konstantin Haase	113c20a819	docs for FrameOptions	2011-05-24 11:18:44 +02:00
Konstantin Haase	b046e5fe37	specs for FrameOptions	2011-05-24 11:12:59 +02:00
Konstantin Haase	defd82d025	docs for XSSHeader	2011-05-24 11:09:15 +02:00
Konstantin Haase	50f25adadb	specs for XSSHeader	2011-05-24 11:04:49 +02:00
Konstantin Haase	f3477483ca	use Rack::Lint for testing	2011-05-24 11:00:16 +02:00
Konstantin Haase	7b70a7924e	fix mock_app	2011-05-24 10:56:31 +02:00
Konstantin Haase	40f5a0c0fa	fix default options not overriding options	2011-05-24 10:56:19 +02:00
Konstantin Haase	3384ede80d	have mock_app duck typing the block passed to it	2011-05-24 10:25:20 +02:00
Konstantin Haase	5152b0eac2	set up testing infrastructure and shared tests	2011-05-23 17:36:16 +02:00
Konstantin Haase	eb81b26bff	Move X-Frame-Options logic to FramOptions	2011-05-23 17:35:22 +02:00
Konstantin Haase	0985552f33	initial commit	2011-05-23 10:07:54 +02:00

36 commits