aboutsummaryrefslogtreecommitdiffstats
path: root/actionpack/lib/action_controller/session
Commit message (Expand)AuthorAgeFilesLines
* Merge with docrailsPratik Naik2008-12-071-0/+10
* Move the cookie store to use the MessageVerifier class.Michael Koziarski2008-11-231-18/+14
* Added support for http_only cookies in cookie_store Added unit tests for secu...Pelle Braendgaard2008-09-171-1/+2
* Strip newlines from cookie session dataJeremy Kemper2008-08-051-1/+1
* Use "/usr/bin/env ruby" instead of "/usr/local/bin/ruby"Tarmo Tänav2008-07-311-7/+7
* Fix file permissionsTarmo Tänav2008-07-311-0/+0
* Merge docrails.Pratik Naik2008-05-251-1/+1
* Don't double-escape cookie store data. Don't split cookie values with newline...Rich Cavanaugh2008-05-121-3/+6
* Merge docrails:Pratik Naik2008-05-091-8/+13
* Improve documentation coverage and markupXavier Noria2008-05-021-13/+13
* Ruby 1.9 compat: cookie store delete sets nil value instead of empty stringJeremy Kemper2008-01-071-1/+1
* Ruby 1.9 compat: move from the deprecated Base64 module to ActiveSupport::Bas...Jeremy Kemper2007-12-182-11/+9
* Fix doc (closes #10526)David Heinemeier Hansson2007-12-161-1/+1
* Introduce (in /Users/jeremy/rails/git/trunk) to output a crytographically sec...Jeremy Kemper2007-12-151-0/+3
* Improve error messages when providing a secret that is too short. Closes #10...Michael Koziarski2007-11-241-4/+5
* Make sure that cookie sessions use a secret that is at least 30 chars in leng...Michael Koziarski2007-11-211-3/+17
* Emphasize the importance of a dictionary attack-proof secret for the cookie s...David Heinemeier Hansson2007-11-211-1/+4
* Memcached sessions: add session data on initialization; don't silently discar...Jeremy Kemper2007-10-141-15/+8
* Use #require_library_or_gem to load the memcache library for the MemCache ses...Rick Olson2007-10-031-1/+1
* Random hits from the style naziDavid Heinemeier Hansson2007-09-091-1/+1
* Fix failing active record store testsMichael Koziarski2007-08-141-1/+2
* Cookie session store: ensure that new sessions doesn't reuse data from a dele...Jeremy Kemper2007-03-141-0/+6
* Cookie session store: raise ArgumentError when :session_key is blank.Jeremy Kemper2007-03-131-1/+6
* Add a #dbman attr_reader for CGI::Session and make CGI::Session::CookieStore#...Rick Olson2007-03-061-6/+6
* Cookie store: use OpenSSL::HMAC instead of basic hash. Introduce :secret bloc...Jeremy Kemper2007-03-031-13/+28
* Cookie store: test that >4K raises CookieOverflow and that unverifiable cooki...Jeremy Kemper2007-03-031-1/+4
* Cookie session store: empty and unchanged sessions don't write a cookie.Jeremy Kemper2007-02-251-1/+2
* CGI escape the session cookie.Jeremy Kemper2007-02-221-2/+2
* Introduce a cookie-based session store as the Rails default. Sessions typical...Jeremy Kemper2007-02-211-0/+113
* ARStore needs a data reader method. Closes #4795.Jeremy Kemper2006-11-151-0/+2
* Always clear model associations from session. Closes #4795.Jeremy Kemper2006-11-132-0/+8
* Fix problem with unloaded ARStore sessions being loaded when they are garbage...Jamis Buck2006-03-081-9/+14
* Major components cleanup and speedup. Closes #3527.Jeremy Kemper2006-02-091-1/+3
* Further improvements to reloading codeNicholas Seckar2006-02-021-5/+0
* If included_modules doesnt take a parameter, we shouldnt eitherDavid Heinemeier Hansson2006-02-011-1/+1
* Fix Syntax problems which were preventing webrick from startingMichael Koziarski2006-02-011-1/+1
* ActiveRecordStore::Session shouldnt be reloadableDavid Heinemeier Hansson2006-02-011-0/+5
* Added the possibility to specify atomatic expiration for the memcachd session...David Heinemeier Hansson2006-01-221-12/+18
* Add session ID to default logging, but remove the verbose description of ever...David Heinemeier Hansson2005-12-221-15/+0
* Make data writer private. Marshal/unmarshal handle nil.Jeremy Kemper2005-11-201-8/+8
* Log ActiveRecordStore debugging.Jeremy Kemper2005-11-201-0/+19
* r3173@asus: jeremy | 2005-11-18 23:34:41 -0800Jeremy Kemper2005-11-201-9/+4
* CGI::Session::ActiveRecordStore.data_column_name = 'foobar' to use a differen...Jeremy Kemper2005-11-091-40/+51
* Remove fingerprinting from AR session store; fix bug in store. Closes #2612Nicholas Seckar2005-10-261-29/+18
* Expose the session model backing CGI::SessionJeremy Kemper2005-10-201-0/+15
* Use the more appropriate columns_hash to get the session data column size limit.Marcel Molina2005-10-171-1/+1
* Allow ARStore::Session to indicate that it should not be reloaded in dev modeJamis Buck2005-10-151-0/+5
* Raise an exception if an attempt is made to insert more session data into the...Marcel Molina2005-10-151-4/+28
* Added small note about how longtext might be needed for large session dataDavid Heinemeier Hansson2005-09-201-2/+3
* Use session_id instead of deprecated sessidDavid Heinemeier Hansson2005-09-121-1/+0