Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Revert "Merge pull request #8989 from robertomiranda/use-rails-4-find-by" | Guillermo Iguaran | 2013-01-18 | 1 | -2/+2 |
| | | | | | This reverts commit 637a7d9d357a0f3f725b0548282ca8c5e7d4af4a, reversing changes made to 5937bd02dee112646469848d7fe8a8bfcef5b4c1. | ||||
* | User Rails 4 find_by | robertomiranda | 2013-01-18 | 1 | -2/+2 |
| | |||||
* | Namespace HashWithIndifferentAccess | Akira Matsuda | 2013-01-07 | 1 | -1/+1 |
| | |||||
* | "warning: ambiguous first argument; put parentheses or even spaces" | Akira Matsuda | 2012-12-24 | 1 | -1/+1 |
| | |||||
* | Refactoring the token_and_options method to fix bugs | Kurtis Rainbolt-Greene | 2012-12-15 | 1 | -11/+27 |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | Adding a test for the equal trun bug Adding a test for the after equal trunc bug Adding a test for the slash bug Adding a test for the slash quote bug Adding a helper method for creating a sample request object with token Writing a method to create params array from raw params Writing a method to rewrite param values in the params Writing a method to get the token params from an authorization value Refactoring the token_and_options method to fix bugs Removing unnessecary test A constant for this shared regex seemed appropriate Wanting to split up this logic Adding small documentation pieces | ||||
* | update documentation and code to use _action callbacks | Francesco Rodriguez | 2012-12-07 | 1 | -5/+5 |
| | |||||
* | Allow users to change the default salt if they want, shouldn't be necessary | Santiago Pastorino | 2012-11-03 | 1 | -2/+3 |
| | |||||
* | Use derived keys everywhere, http_authentication was missing it | Santiago Pastorino | 2012-11-03 | 1 | -3/+2 |
| | |||||
* | Multiple changes to 1,9 hash syntax | AvnerCohen | 2012-10-27 | 1 | -10/+10 |
| | |||||
* | Merge branch 'master' of github.com:lifo/docrails | Vijay Dev | 2012-08-04 | 1 | -1/+1 |
|\ | | | | | | | | | | | Conflicts: activemodel/lib/active_model/secure_password.rb activerecord/lib/active_record/associations/collection_proxy.rb | ||||
| * | use 'HTTP_AUTHORIZATION' instead of :authorization as key when dealing with ↵ | Francesco Rodriguez | 2012-07-27 | 1 | -1/+1 |
| | | | | | | | | HTTP Token authentication in integration tests | ||||
* | | Merge pull request #7240 from steveklabnik/fix_2301 | Rafael Mendonça França | 2012-08-02 | 1 | -1/+1 |
|\ \ | | | | | | | Fix for digest authentication bug - issue #2301 in rails/rails | ||||
| * | | Fix for digest authentication bug - issue #2301 in rails/rails | Arthur Smith | 2012-08-02 | 1 | -1/+1 |
| | | | |||||
* | | | load active_support/core_ext/object/blank in active_support/rails | Xavier Noria | 2012-08-02 | 1 | -1/+0 |
|/ / | |||||
* / | * Do not convert digest auth strings to symbols. CVE-2012-3424 | Aaron Patterson | 2012-07-26 | 1 | -2/+2 |
|/ | | | | | Conflicts: actionpack/lib/action_controller/metal/http_authentication.rb | ||||
* | Don't raise an error if http auth token isn't well formatted | Piotr Sarnacki | 2012-07-11 | 1 | -4/+6 |
| | | | | | | | | | | | | | | When someone sends malformed authorization header, like: Authorization: Token foobar given token should be just ignored and resource should not be authorized, instead of raising error. Before this patch controller would return 401 header only for well formed tokens, like: Authorization: Token token=foobar and would return 500 in former case. | ||||
* | moar copy edits [ci skip] | Vijay Dev | 2012-06-14 | 1 | -2/+1 |
| | |||||
* | fixed http token authentication formatting | Jakub Kuźma | 2012-06-12 | 1 | -8/+13 |
| | |||||
* | Move HTTP Token auth docs above the Token module | Elia Schito | 2012-05-11 | 1 | -42/+44 |
| | |||||
* | Updated/changed useless tr/gsubs | Jurriaan Pruis | 2012-04-03 | 1 | -1/+1 |
| | |||||
* | fix api doc [ci skip] | Vijay Dev | 2012-03-01 | 1 | -1/+1 |
| | |||||
* | Add config.default_method_for_update to support PATCH | David Lee | 2012-02-22 | 1 | -2/+2 |
| | | | | | | | | | | | | | | | | PATCH is the correct HTML verb to map to the #update action. The semantics for PATCH allows for partial updates, whereas PUT requires a complete replacement. Changes: * adds config.default_method_for_update you can set to :patch * optionally use PATCH instead of PUT in resource routes and forms * adds the #patch verb to routes to detect PATCH requests * adds #patch? to Request * changes documentation and comments to indicate support for PATCH This change maintains complete backwards compatibility by keeping :put as the default for config.default_method_for_update. | ||||
* | example bracket error | Damian Le Nouaille | 2012-01-23 | 1 | -1/+1 |
| | |||||
* | fix base64 require | Sergey Nartimov | 2012-01-03 | 1 | -1/+1 |
| | |||||
* | remove ActiveSupport::Base64 in favor of ::Base64 | Sergey Nartimov | 2012-01-02 | 1 | -4/+4 |
| | |||||
* | deprecate Base64.encode64s from AS. Use Base64.strict_encode64 instead | Vasiliy Ermolovich | 2011-12-27 | 1 | -2/+2 |
| | |||||
* | Fix http digest authentication with trailing '/' or '?' (fixes #4038 and #3228) | Piotr Sarnacki | 2011-12-21 | 1 | -5/+8 |
| | |||||
* | Eliminate newlines in basic auth. fixes #2882 | Aaron Patterson | 2011-09-06 | 1 | -1/+1 |
| | |||||
* | remove warning: assigned but unused variable | Santiago Pastorino | 2011-06-08 | 1 | -1/+1 |
| | |||||
* | Removing trailing white-spaces | Guillermo Iguaran | 2011-05-31 | 1 | -2/+2 |
| | |||||
* | Remove extra white spaces on ActionPack docs. | Sebastian Martinez | 2011-05-23 | 1 | -2/+2 |
| | |||||
* | Merge branch 'master' of git://github.com/lifo/docrails | Xavier Noria | 2011-04-03 | 1 | -1/+1 |
|\ | |||||
| * | Trivial fix to HTTP Digest auth MD5 example | Jon Cooper | 2011-03-31 | 1 | -1/+1 |
| | | |||||
* | | Dont call authenticate_or_request_with_http_basic twice | David Heinemeier Hansson | 2011-03-29 | 1 | -4/+2 |
| | | |||||
* | | Fix examples | David Heinemeier Hansson | 2011-03-28 | 1 | -1/+1 |
| | | |||||
* | | Added Base.http_basic_authenticate_with to do simple http basic ↵ | David Heinemeier Hansson | 2011-03-28 | 1 | -14/+16 |
|/ | | | | authentication with a single class method call [DHH] | ||||
* | replace if ! with unless | Neeraj Singh | 2010-10-17 | 1 | -1/+1 |
| | | | | Signed-off-by: Santiago Pastorino <santiago@wyeworks.com> | ||||
* | reduce function calls on Array | Aaron Patterson | 2010-09-29 | 1 | -3/+2 |
| | |||||
* | removing more lolinject | Aaron Patterson | 2010-09-29 | 1 | -8/+7 |
| | |||||
* | removing lollerject | Aaron Patterson | 2010-09-29 | 1 | -1/+1 |
| | |||||
* | Remove deprecated stuff in ActionController | Carlos Antonio da Silva | 2010-09-26 | 1 | -1/+1 |
| | | | | | | This removes all deprecated classes in ActionController related to Routing, Abstract Request/Response and Integration/IntegrationTest. All tests and docs were changed to ActionDispatch instead of ActionController. | ||||
* | Refactor decode_credentials to avoid inject and use map instead. | Emilio Tagua | 2010-09-22 | 1 | -6/+5 |
| | | | | Signed-off-by: Santiago Pastorino <santiago@wyeworks.com> | ||||
* | cleanup of ActionController::Metal inline documentation | Joost Baaij | 2010-08-26 | 1 | -14/+18 |
| | |||||
* | Deletes trailing whitespaces (over text files only find * -type f -exec sed ↵ | Santiago Pastorino | 2010-08-14 | 1 | -2/+2 |
| | | | | 's/[ \t]*$//' -i {} \;) | ||||
* | API Docs: Use 'HTTP_AUTHORIZATION' and not :authorize as key in integration ↵ | Rohit Arondekar | 2010-07-30 | 1 | -1/+1 |
| | | | | tests. | ||||
* | add HTTP Token Authorization support to complement Basic and Digest ↵ | rick | 2010-04-30 | 1 | -0/+158 |
| | | | | Authorization. | ||||
* | Rename config.cookie_secret to config.secret_token and pass it as ↵ | José Valim | 2010-04-05 | 1 | -5/+12 |
| | | | | configuration in request.env. This is another step forward removing global configuration. | ||||
* | adds missing requires for Object#blank? and Object#present? | Xavier Noria | 2010-03-28 | 1 | -0/+1 |
| | |||||
* | Remove uneeded methods. | José Valim | 2010-03-10 | 1 | -18/+4 |
| | |||||
* | Deprecated ActionController::Base.session_options= and ↵ | Carlhuda | 2010-03-04 | 1 | -2/+2 |
| | | | | ActionController::Base.session_store= in favor of a config.session_store method (which takes params) and a config.cookie_secret variable, which is used in various secret scenarios. The old AC::Base options will continue to work with deprecation warnings. |