mirror of https://github.com/sinatra/sinatra synced 2023-03-27 23:18:01 -04:00

History

Konstantin Haase cc76630d82 escape unicode in gemspec, fixes #35		2012-12-12 10:22:30 +01:00
..
lib	escape unicode in gemspec, fixes #35	2012-12-12 10:22:30 +01:00
spec	small refactor	2012-12-10 22:04:43 +01:00
.gitignore	ignore Gemfile.lock	2011-09-30 15:50:51 -05:00
.travis.yml	Updated Travis CI configuration	2012-05-12 22:32:40 +07:00
Gemfile	upgrade rake	2012-09-05 16:07:28 +02:00
License	initial commit	2011-05-23 10:07:54 +02:00
rack-protection.gemspec	escape unicode in gemspec, fixes #35	2012-12-12 10:22:30 +01:00
Rakefile	escape unicode in gemspec, fixes #35	2012-12-12 10:22:30 +01:00
README.md	remove history section	2012-12-10 16:49:36 +01:00

You should use protection!

This gem protects against typical web attacks. Should work for all Rack apps, including Rails.

Usage

Use all protections you probably want to use:

# config.ru
require 'rack/protection'
use Rack::Protection
run MyApp

Skip a single protection middleware:

# config.ru
require 'rack/protection'
use Rack::Protection, :except => :path_traversal
run MyApp

Use a single protection middleware:

# config.ru
require 'rack/protection'
use Rack::Protection::AuthenticityToken
run MyApp

Prevented Attacks

Prevented by:

Prevented by:

Prevented by:

Prevented by:

Prevented by:

Prevented by:

gem install rack-protection