aboutsummaryrefslogtreecommitdiffstats
path: root/actionpack/lib/action_dispatch/middleware/cookies.rb
Commit message (Collapse)AuthorAgeFilesLines
* if cookie is tampered with then nil is returned [ci skip]Neeraj Singh2013-03-251-4/+2
| | | | | | if the given key is not found then verifier does raise `ActiveSupport::MessageVerifier::InvalidSignature` exception but this exception is resuced and finally nil is returned.
* Introduce UpgradeLegacySignedCookieJar to transparently upgrade existing ↵Trevor Turk2013-03-241-99/+99
| | | | signed cookies generated by Rails 3 to avoid invalidating them when upgrading to Rails 4
* Merge branch 'master' of github.com:lifo/docrailsVijay Dev2013-02-261-1/+1
|\
| * improve grammar describing ActionDispatch::Cookies::CookieJar#deleteWeston Platter2013-02-191-1/+1
| |
| * improve grammar describing ActionDispatch::Cookies::CookieJar#deleteWeston Platter2013-02-191-1/+1
| |
* | InvalidMessage is in ActiveSupport::MessageEncryptor namespaceSantiago Pastorino2013-02-191-1/+1
|/ | | | Closes #9302
* Add missing require to APCarlos Antonio da Silva2013-02-081-0/+1
|
* Fix #9168 Initialize NullCookieJar with all options needed for KeyGeneratorAndrey Chernih2013-02-081-4/+8
|
* add fetch to CookieJarAaron Patterson2013-01-271-0/+4
|
* Change `Example for` to `Example of`lambda_2013-01-031-2/+2
|
* Define [], []=, permanent, signed and encrypted as the only allowed methods ↵Santiago Pastorino2012-12-301-9/+57
| | | | for the non Raw Cookie classes
* Add UpgradeSignatureToEncryptionCookieStoreSantiago Pastorino2012-11-161-2/+8
| | | | | | This allows easy upgrading from the old signed Cookie Store <= 3.2 or the deprecated one in 4.0 (the ones that doesn't use key derivation) to the new one that signs using key derivation
* Disallow ability to use EncryptedCookieJar with DummyKeyGeneratorSantiago Pastorino2012-11-031-0/+5
| | | | | Developers must set config.secret_key_base in config/initializers/secret_token.rb
* Rename secret_token_key to secret_key_baseSantiago Pastorino2012-11-031-3/+3
|
* Move ensure_secret_secure to DummyKeyGeneratorSantiago Pastorino2012-11-031-24/+0
|
* Allow users to change the default salt if they want, shouldn't be necessarySantiago Pastorino2012-11-031-11/+22
|
* Add cookie.encrypted which returns an EncryptedCookieJarSantiago Pastorino2012-11-031-0/+48
| | | | | | | | | How to use it? cookies.encrypted[:discount] = 45 => Set-Cookie: discount=ZS9ZZ1R4cG1pcUJ1bm80anhQang3dz09LS1mbDZDSU5scGdOT3ltQ2dTdlhSdWpRPT0%3D--ab54663c9f4e3bc340c790d6d2b71e92f5b60315; path=/ cookies.encrypted[:discount] => 45
* Sign cookies using key deriverSantiago Pastorino2012-11-031-15/+19
|
* 1.9 hash syntax changes to docsAvnerCohen2012-10-311-7/+7
|
* load active_support/core_ext/object/blank in active_support/railsXavier Noria2012-08-021-1/+0
|
* adds a missing require from Active SupportXavier Noria2012-07-281-0/+1
| | | | This file uses mattr_accessor.
* doc edits [ci skip]Vijay Dev2012-05-061-3/+2
|
* Merge pull request #5924 from cjolly/signed-cookies-docsVijay Dev2012-05-061-3/+5
|\ | | | | Improve signed cookies documentation
| * Improve signed cookies documentationChad Jolly2012-04-211-3/+5
| |
* | make sure the superclass matches so load order does not matterAaron Patterson2012-05-041-1/+1
| |
* | Merge branch 'master' of github.com:lifo/docrailsVijay Dev2012-05-011-1/+1
|\ \
| * | Code-format references to config settingsMark Rushakoff2012-04-271-1/+1
| |/
* | Merge pull request #6082 from brainopia/smarter_cookie_jarJosé Valim2012-04-301-7/+10
|\ \ | | | | | | Stream cookies only if needed
| * | Dont stream back cookie value if it was set to the same valuebrainopia2012-04-301-4/+6
| | |
| * | Dont set cookie header for deletion of unexisting databrainopia2012-04-301-1/+2
| | |
| * | Simplify matching with array of possible domainsbrainopia2012-04-301-1/+1
| | |
| * | Use more appropriate one-liner for class declarationbrainopia2012-04-301-1/+1
| | |
* | | Merge pull request #6083 from brainopia/remove_unused_closed_ivarsJosé Valim2012-04-301-1/+0
|\ \ \ | |/ / |/| | Remove a couple of unused ivars left from previous refactoring
| * | Remove unused ivars left from close checksbrainopia2012-04-301-1/+0
| |/ | | | | | | These ivars were missed in d142572567 when close checks were removed
* / Remove unused assignmentsMark Rushakoff2012-04-291-1/+0
|/
* Useless/Confusing method definition removedhardi2012-04-011-4/+0
|
* ActionDispatch::Cookies::CookieJar#deleted? predicate method.Paul Annesley2012-01-241-0/+9
| | | | | Necessary in controller tests to determine if the CookieJar will delete the given cookie.
* Get rid of the close checks since we cannot reliably close the session anyway.José Valim2011-12-161-10/+0
|
* configuration option to always write cookielest2011-11-231-1/+4
|
* Remove superfluous assignment in cookiesAlexey Vakhov2011-10-181-1/+1
|
* CookieJar is enumerable. fixes #2795Aaron Patterson2011-09-011-0/+5
|
* Add has_key? and key? methods to CookieJar removed in 0ca69ca65f83b4bb34f8José Valim2011-06-301-0/+5
|
* Add backward compatibility for testing cookiesAndrew White2011-06-051-1/+1
| | | | | | | | | | | | | | | | | | | This commit restores the ability to assign cookies for testing via @request.env['HTTP_COOKIE'] and @request.cookies, e.g: @request.env['HTTP_COOKIE'] = 'user_name=david' get :index assert_equal 'david', cookies[:user_name] and @request.cookies[:user_name] = 'david' get :index assert_equal 'david', cookies[:user_name] Assigning via cookies[] is the preferred method and will take precedence over the other two methods. This is so that cookies set in controller actions have precedence and are carried over between calls to get, post, etc.
* Ensure cookie keys are stringsAndrew White2011-06-051-2/+3
|
* Refactor ActionController::TestCase cookiesAndrew White2011-06-041-0/+10
| | | | | | | | | | | | | | | | | | Assigning cookies for test cases should now use cookies[], e.g: cookies[:email] = 'user@example.com' get :index assert_equal 'user@example.com', cookies[:email] To clear the cookies, use clear, e.g: cookies.clear get :index assert_nil cookies[:email] We now no longer write out HTTP_COOKIE and the cookie jar is persistent between requests so if you need to manipulate the environment for your test you need to do it before the cookie jar is created.
* Merge branch 'master' of git://github.com/lifo/docrailsXavier Noria2011-05-251-1/+1
|\ | | | | | | | | | | Conflicts: actionmailer/lib/action_mailer/base.rb activesupport/lib/active_support/core_ext/kernel/requires.rb
| * Remove extra white spaces on ActionPack docs.Sebastian Martinez2011-05-231-1/+1
| |
* | Remove extra white-space on some exception messages.Sebastian Martinez2011-05-231-1/+1
| |
* | Replace references to ActiveSupport::SecureRandom with just SecureRandom, ↵Jon Leighton2011-05-231-1/+1
| | | | | | | | and require 'securerandom' from the stdlib when active support is required.
* | fixing sym and string cookie name, two cookies to browser bug.steve2011-05-191-3/+3
|/