kotovalexarian-likes-github/sinatra
1
0
Fork 0
mirror of https://github.com/sinatra/sinatra synced 2023-03-27 23:18:01 -04:00
Code Releases Activity
sinatra/rack-protection/spec
History
Artem Chistyakov 6cf49c8855 Don't track the Accept-Language header by default. 
Some modern browsers (e.g., Safari 12, Chrome 71) don't set the
Accept-Language header for websocket requests. A mixture of
requests with and without this header results in unavailable
sessions in websocket handlers due to the built-in Firesheep
protection.

The existing default is inappropriate for any applications
employing Rack sessions for websocket connections.
2018-12-15 15:22:21 -05:00
..
lib/rack/protection Don't track the Accept-Language header by default. 2018-12-15 15:22:21 -05:00
support Reorganize spec helpers into spec/support 2014-09-03 19:25:20 +02:00
spec_helper.rb Restore RSpec init default files 2014-09-03 19:25:20 +02:00