Commit message (Collapse) | Author | Age | Files | Lines | ||
---|---|---|---|---|---|---|
... | ||||||
* | | rm warning about variable shadowing | Godfrey Chan | 2014-02-11 | 1 | -2/+2 | |
| | | ||||||
* | | Migrate hash-based cookie values correctly | Godfrey Chan | 2014-02-11 | 1 | -2/+4 | |
| | | ||||||
* | | Re-write legacy (marshal) cookies on read | Godfrey Chan | 2014-02-11 | 1 | -20/+40 | |
| | | ||||||
* | | Added HybridSerializer to upgrade existing marshal cookies (wip: need tests) | Godfrey Chan | 2014-02-11 | 1 | -0/+14 | |
| | | ||||||
* | | Renamed session_serializer option to cookies_serializer | Godfrey Chan | 2014-02-11 | 1 | -15/+30 | |
| | | ||||||
* | | Updated the cookie docs to use the safer JSON.{generate,parse} | Godfrey Chan | 2014-02-08 | 1 | -5/+5 | |
| | | | | | | | | cc @senny | |||||
* | | Rely on backticks instead of tt tags [ci skip] | Robin Dupret | 2014-02-08 | 1 | -2/+2 | |
| | | | | | | | | | | Since the language in code blocks is inferred, if the code contains tt tags, the block will be parsed as XML for instance while it is Ruby. | |||||
* | | docs, Cookie values are String based. Closes #12860. [ci skip] | Yves Senn | 2014-02-08 | 1 | -7/+7 | |
| | | ||||||
* | | Modify the session serializer implementation | Guillermo Iguaran | 2014-01-30 | 1 | -3/+5 | |
| | | | | | | | | | | Rename allowed options to :marshal and :json, for custom serializers only allow the use of custom classes. | |||||
* | | Allow session serializer key in config.session_store | Lukasz Sarnacki | 2014-01-29 | 1 | -2/+14 | |
| | | | | | | | | | | | | | | | | | | | | | | | | | | MessageEncryptor has :serializer option, where any serializer object can be passed. This commit make it possible to set this serializer from configuration level. There are predefined serializers (:marshal_serializer, :json_serialzier) and custom serializer can be passed as String, Symbol (camelized and constantized in ActionDispatch::Session namepspace) or serializer object. Default :json_serializer was also added to generators to provide secure defalt. | |||||
* | | Update secret_key_base Docs | robertomiranda | 2013-12-15 | 1 | -8/+8 | |
| | | ||||||
* | | Missing closing + in documentation [ci skip] | Edho Arief | 2013-07-04 | 1 | -1/+1 | |
| | | ||||||
* | | Grammar nazi at work [ci skip] | Paweł Gościcki | 2013-06-12 | 1 | -1/+1 | |
| | | ||||||
* | | Merge pull request #10061 from trevorturk/dummy-key-generator-rename | Santiago Pastorino | 2013-04-02 | 1 | -1/+1 | |
|\ \ | | | | | | | Rename DummyKeyGenerator -> LegacyKeyGenerator | |||||
| * | | Rename DummyKeyGenerator -> LegacyKeyGenerator | Trevor Turk | 2013-04-02 | 1 | -1/+1 | |
| | | | ||||||
* | | | :scissors: spacing after private | Trevor Turk | 2013-04-02 | 1 | -3/+0 | |
| | | | ||||||
* | | | Be consistent when talking about cookies, key -> name | Trevor Turk | 2013-04-02 | 1 | -25/+25 | |
| | | | ||||||
* | | | Fix permanent cookie jar accessor typo | Trevor Turk | 2013-04-02 | 1 | -1/+1 | |
|/ / | ||||||
* | | Allow transparent upgrading of legacy signed cookies to encrypted cookies; ↵ | Trevor Turk | 2013-03-28 | 1 | -38/+77 | |
| | | | | | | | | Automatically configure cookie-based sessions to use the best cookie jar given the app's config | |||||
* | | if cookie is tampered with then nil is returned [ci skip] | Neeraj Singh | 2013-03-25 | 1 | -4/+2 | |
| | | | | | | | | | | | | if the given key is not found then verifier does raise `ActiveSupport::MessageVerifier::InvalidSignature` exception but this exception is resuced and finally nil is returned. | |||||
* | | Introduce UpgradeLegacySignedCookieJar to transparently upgrade existing ↵ | Trevor Turk | 2013-03-24 | 1 | -99/+99 | |
| | | | | | | | | signed cookies generated by Rails 3 to avoid invalidating them when upgrading to Rails 4 | |||||
* | | Merge branch 'master' of github.com:lifo/docrails | Vijay Dev | 2013-02-26 | 1 | -1/+1 | |
|\ \ | ||||||
| * | | improve grammar describing ActionDispatch::Cookies::CookieJar#delete | Weston Platter | 2013-02-19 | 1 | -1/+1 | |
| | | | ||||||
| * | | improve grammar describing ActionDispatch::Cookies::CookieJar#delete | Weston Platter | 2013-02-19 | 1 | -1/+1 | |
| | | | ||||||
* | | | InvalidMessage is in ActiveSupport::MessageEncryptor namespace | Santiago Pastorino | 2013-02-19 | 1 | -1/+1 | |
|/ / | | | | | | | Closes #9302 | |||||
* | | Add missing require to AP | Carlos Antonio da Silva | 2013-02-08 | 1 | -0/+1 | |
| | | ||||||
* | | Fix #9168 Initialize NullCookieJar with all options needed for KeyGenerator | Andrey Chernih | 2013-02-08 | 1 | -4/+8 | |
| | | ||||||
* | | add fetch to CookieJar | Aaron Patterson | 2013-01-27 | 1 | -0/+4 | |
| | | ||||||
* | | Change `Example for` to `Example of` | lambda_ | 2013-01-03 | 1 | -2/+2 | |
| | | ||||||
* | | Define [], []=, permanent, signed and encrypted as the only allowed methods ↵ | Santiago Pastorino | 2012-12-30 | 1 | -9/+57 | |
|/ | | | | for the non Raw Cookie classes | |||||
* | Add UpgradeSignatureToEncryptionCookieStore | Santiago Pastorino | 2012-11-16 | 1 | -2/+8 | |
| | | | | | | This allows easy upgrading from the old signed Cookie Store <= 3.2 or the deprecated one in 4.0 (the ones that doesn't use key derivation) to the new one that signs using key derivation | |||||
* | Disallow ability to use EncryptedCookieJar with DummyKeyGenerator | Santiago Pastorino | 2012-11-03 | 1 | -0/+5 | |
| | | | | | Developers must set config.secret_key_base in config/initializers/secret_token.rb | |||||
* | Rename secret_token_key to secret_key_base | Santiago Pastorino | 2012-11-03 | 1 | -3/+3 | |
| | ||||||
* | Move ensure_secret_secure to DummyKeyGenerator | Santiago Pastorino | 2012-11-03 | 1 | -24/+0 | |
| | ||||||
* | Allow users to change the default salt if they want, shouldn't be necessary | Santiago Pastorino | 2012-11-03 | 1 | -11/+22 | |
| | ||||||
* | Add cookie.encrypted which returns an EncryptedCookieJar | Santiago Pastorino | 2012-11-03 | 1 | -0/+48 | |
| | | | | | | | | | How to use it? cookies.encrypted[:discount] = 45 => Set-Cookie: discount=ZS9ZZ1R4cG1pcUJ1bm80anhQang3dz09LS1mbDZDSU5scGdOT3ltQ2dTdlhSdWpRPT0%3D--ab54663c9f4e3bc340c790d6d2b71e92f5b60315; path=/ cookies.encrypted[:discount] => 45 | |||||
* | Sign cookies using key deriver | Santiago Pastorino | 2012-11-03 | 1 | -15/+19 | |
| | ||||||
* | 1.9 hash syntax changes to docs | AvnerCohen | 2012-10-31 | 1 | -7/+7 | |
| | ||||||
* | load active_support/core_ext/object/blank in active_support/rails | Xavier Noria | 2012-08-02 | 1 | -1/+0 | |
| | ||||||
* | adds a missing require from Active Support | Xavier Noria | 2012-07-28 | 1 | -0/+1 | |
| | | | | This file uses mattr_accessor. | |||||
* | doc edits [ci skip] | Vijay Dev | 2012-05-06 | 1 | -3/+2 | |
| | ||||||
* | Merge pull request #5924 from cjolly/signed-cookies-docs | Vijay Dev | 2012-05-06 | 1 | -3/+5 | |
|\ | | | | | Improve signed cookies documentation | |||||
| * | Improve signed cookies documentation | Chad Jolly | 2012-04-21 | 1 | -3/+5 | |
| | | ||||||
* | | make sure the superclass matches so load order does not matter | Aaron Patterson | 2012-05-04 | 1 | -1/+1 | |
| | | ||||||
* | | Merge branch 'master' of github.com:lifo/docrails | Vijay Dev | 2012-05-01 | 1 | -1/+1 | |
|\ \ | ||||||
| * | | Code-format references to config settings | Mark Rushakoff | 2012-04-27 | 1 | -1/+1 | |
| |/ | ||||||
* | | Merge pull request #6082 from brainopia/smarter_cookie_jar | José Valim | 2012-04-30 | 1 | -7/+10 | |
|\ \ | | | | | | | Stream cookies only if needed | |||||
| * | | Dont stream back cookie value if it was set to the same value | brainopia | 2012-04-30 | 1 | -4/+6 | |
| | | | ||||||
| * | | Dont set cookie header for deletion of unexisting data | brainopia | 2012-04-30 | 1 | -1/+2 | |
| | | | ||||||
| * | | Simplify matching with array of possible domains | brainopia | 2012-04-30 | 1 | -1/+1 | |
| | | |