Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | ActionController::Base.request_forgery_protection_token should actually be ↵ | Carl Lerche | 2010-03-11 | 1 | -1/+1 |
| | | | | the name of the token and not true. | ||||
* | Move request forgery protection configuration to the AC config object | Carl Lerche | 2010-03-08 | 1 | -4/+41 |
| | | | | This is an interim solution pending revisiting the rails framework configuration situation. | ||||
* | Convert to class_attribute | Jeremy Kemper | 2010-02-01 | 1 | -2/+4 |
| | |||||
* | Use extlib_inheritable_accessor in request_forgery_protection.rb. | Carl Lerche | 2009-12-29 | 1 | -1/+1 |
| | | | For some reason the current class_inheritable_accessor does not play nice with included hooks. class_inheritable_accessor will be revised shortly. | ||||
* | Merge Session stuff into RackConvenience | Joshua Peek | 2009-12-20 | 1 | -16/+16 |
| | |||||
* | Extract form_authenticity_param instance method so it's overridable in ↵ | Jeremy Kemper | 2009-11-17 | 1 | -0/+5 |
| | | | | subclasses | ||||
* | Reorganize CSRF a bit | Yehuda Katz | 2009-10-28 | 1 | -33/+23 |
| | |||||
* | Rename /base to /metal and make base.rb and metal.rb top-level to reflect ↵ | Yehuda Katz | 2009-08-06 | 1 | -0/+118 |
their module locations |