Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Corrected secret_key_base | vs4vijay | 2016-02-15 | 1 | -1/+1 |
| | |||||
* | Refer to rails command instead of rake in a bunch of places | David Heinemeier Hansson | 2015-12-18 | 1 | -1/+1 |
| | | | | Still more to do. Please assist! | ||||
* | inherit from our AbstractStore | Aaron Patterson | 2015-09-25 | 1 | -5/+1 |
| | |||||
* | Update documentation to reflect Rack::Session::Abstract changes | eileencodes | 2015-09-09 | 1 | -1/+1 |
| | | | | | `Rack::Session::Abstract::ID` is now deprecated and `Rack::Session::Abstract::Persisted` should be used instead. | ||||
* | implement abstract store methods | Aaron Patterson | 2015-09-04 | 1 | -2/+2 |
| | | | | converts old ID methods to the new abstract store methods in Rack | ||||
* | stop using deprecated Abstract::ID class | Aaron Patterson | 2015-09-04 | 1 | -1/+1 |
| | |||||
* | stop inheriting from Rack::Request | Aaron Patterson | 2015-09-04 | 1 | -1/+1 |
| | | | | | | Just include the modules necessary in the Request object to implement the things we need. This should make it easier to build delegate request objects because the API is smaller | ||||
* | use a request object in the session middleware | Aaron Patterson | 2015-08-22 | 1 | -17/+17 |
| | | | | | This commit allows us to use one request object rather than allocating multiple request objects to deal with the session. | ||||
* | Explained how to set session expiry through session_store config | Iain Beeston | 2015-02-27 | 1 | -0/+10 |
| | | | | | | Most session stores offer an :expire_after option, but it's largely undocumented. Cookie store also supports a number of options via rack (these used to be documented in rails 2.3) | ||||
* | [ci skip] /javascript/ -> JavaScript - cover whole app | Akshay Vishnoi | 2014-07-04 | 1 | -1/+1 |
| | |||||
* | Update documentation to use Rails.application instead | Marcel Morgan | 2014-04-13 | 1 | -1/+1 |
| | | | | | | | References to ``AppName::Application` removed in favour of ``Rails.application`` as generated with a new rails 4.1 app. [ci skip] | ||||
* | The digest option is no longer honoured since Rails 3.0 [ci skip] | Godfrey Chan | 2014-03-20 | 1 | -1/+1 |
| | | | | Closes #8513 | ||||
* | Update secret_key_base Docs | robertomiranda | 2013-12-15 | 1 | -2/+3 |
| | |||||
* | [ci skip] Removing some gender sensitive object pronouns | Tejas Dinkar | 2013-12-02 | 1 | -2/+2 |
| | |||||
* | Improve documentation around the cookie store auto-upgrade to encryption | Trevor Turk | 2013-04-01 | 1 | -22/+37 |
| | |||||
* | Allow transparent upgrading of legacy signed cookies to encrypted cookies; ↵ | Trevor Turk | 2013-03-28 | 1 | -36/+1 |
| | | | | Automatically configure cookie-based sessions to use the best cookie jar given the app's config | ||||
* | Fix CookieStore middleware inheritance hierarchy s.t. it inherits from ↵ | Mark J. Titorenko | 2013-01-08 | 1 | -3/+26 |
| | | | | Rack::Session::Abstract::ID rather than Rack::Session::Cookie. | ||||
* | Remove suggestion that Procs can be used as session secrets. | James Coglan | 2013-01-05 | 1 | -7/+4 |
| | |||||
* | Fix UpgradeSignatureToEncryptionCookieStore doc | Santiago Pastorino | 2012-11-19 | 1 | -9/+4 |
| | |||||
* | Improve UpgradeSignatureToEncryptionCookieStore docs | Santiago Pastorino | 2012-11-16 | 1 | -1/+14 |
| | | | | | I suck at English, please help me reviewing this <3 <3 <3 [ci skip] | ||||
* | Add UpgradeSignatureToEncryptionCookieStore | Santiago Pastorino | 2012-11-16 | 1 | -0/+17 |
| | | | | | | This allows easy upgrading from the old signed Cookie Store <= 3.2 or the deprecated one in 4.0 (the ones that doesn't use key derivation) to the new one that signs using key derivation | ||||
* | Call get_cookie to allow the method to be overriden by subclasses | Santiago Pastorino | 2012-11-16 | 1 | -1/+1 |
| | |||||
* | Add missing env param to get_cookie | Santiago Pastorino | 2012-11-16 | 1 | -1/+1 |
| | |||||
* | Add encrypted cookie store | Santiago Pastorino | 2012-11-03 | 1 | -3/+20 |
| | |||||
* | 1.9 hash syntax changes to docs | AvnerCohen | 2012-10-31 | 1 | -2/+2 |
| | |||||
* | Override rack's destroy_session in cookie store | Andreas Loupasakis | 2012-09-01 | 1 | -0/+8 |
| | |||||
* | load active_support/core_ext/object/blank in active_support/rails | Xavier Noria | 2012-08-02 | 1 | -1/+0 |
| | |||||
* | Removing ==Examples and last blank lines of docs from actionpack | Francesco Rodriguez | 2012-05-15 | 1 | -1/+1 |
| | |||||
* | session creation methods to a module | Aaron Patterson | 2012-05-04 | 1 | -8/+1 |
| | |||||
* | create a request session in the cookie stores | Aaron Patterson | 2012-05-04 | 1 | -0/+8 |
| | |||||
* | Return the same session data object when setting session id | Carlos Antonio da Silva | 2012-03-26 | 1 | -1/+2 |
| | |||||
* | Fix renew feature on cookies. | José Valim | 2011-05-04 | 1 | -1/+1 |
| | |||||
* | Rely on Rack::Session stores API for more compatibility across the Ruby world. | José Valim | 2010-10-03 | 1 | -44/+20 |
| | |||||
* | Fixed many references to the old config/environment.rb and Rails::Initializer | Benjamin Quorning | 2010-07-13 | 1 | -1/+1 |
| | |||||
* | Fixed that an ArgumentError is thrown when request.session_options[:id] is ↵ | Michael Lovitt | 2010-06-27 | 1 | -4/+6 |
| | | | | | | | | read in the following scenario: when the cookie store is used, and the session contains a serialized object of an unloaded class, and no session data accesses have occurred yet. Pushed the stale_session_check responsibility out of the SessionHash and down into the session store, closer to where the deserialization actually occurs. Added some test coverage for this case and others related to deserialization of unloaded types. [#4938] Signed-off-by: José Valim <jose.valim@gmail.com> | ||||
* | Calling exists? in the session store, without checking for stale sessions, ↵ | José Valim | 2010-06-25 | 1 | -9/+6 |
| | | | | was causing the cookie store to panic because we need to unpack the whole session to get its key. This commit fixes this issue and also caches exists calls for performance improvements. | ||||
* | Avoid deserializing cookies too early, which causes session objects to not ↵ | José Valim | 2010-06-24 | 1 | -1/+6 |
| | | | | be available yet. Unfortunately, could not reproduce this in a test case. | ||||
* | Sessions should not be created until written to and session data should be ↵ | Michael Lovitt | 2010-06-23 | 1 | -18/+21 |
| | | | | | | | | destroyed on reset. [#4938] Signed-off-by: Jeremy Kemper <jeremy@bitsweat.net> | ||||
* | Took out the domain option logic to cookies.rb. | Rizwan Reza | 2010-06-11 | 1 | -8/+0 |
| | |||||
* | Add support for multi-subdomain session by setting cookie host in session ↵ | Rizwan Reza | 2010-06-11 | 1 | -0/+8 |
| | | | | | | cookie so you can share session between www.example.com, example.com and user.example.com. [#4818 state:resolved] This reverts commit 330a89072a493aafef1e07c3558964477f85adf0. | ||||
* | Cut the fat and make session stores rely on request.cookie_jar and change ↵ | José Valim | 2010-05-18 | 1 | -83/+16 |
| | | | | set_session semantics to return the cookie value instead of a boolean. | ||||
* | Simplify cookie_store by simply relying on cookies.signed. | José Valim | 2010-05-18 | 1 | -93/+14 |
| | |||||
* | corrected error message in session/cookie_store [#4546 state:resolved] | Josh Kalderimis | 2010-05-10 | 1 | -1/+1 |
| | | | | Signed-off-by: José Valim <jose.valim@gmail.com> | ||||
* | Rename config.cookie_secret to config.secret_token and pass it as ↵ | José Valim | 2010-04-05 | 1 | -1/+1 |
| | | | | configuration in request.env. This is another step forward removing global configuration. | ||||
* | adds missing requires for Object#blank? and Object#present? | Xavier Noria | 2010-03-28 | 1 | -0/+1 |
| | |||||
* | Make many parts of Rails lazy. In order to facilitate this, | wycats | 2010-03-07 | 1 | -1/+0 |
| | | | | | | | | | | | | add lazy_load_hooks.rb, which allows us to declare code that should be run at some later time. For instance, this allows us to defer requiring ActiveRecord::Base at boot time purely to apply configuration. Instead, we register a hook that should apply configuration once ActiveRecord::Base is loaded. With these changes, brings down total boot time of a new app to 300ms in production and 400ms in dev. TODO: rename base_hook | ||||
* | Deprecated ActionController::Base.session_options= and ↵ | Carlhuda | 2010-03-04 | 1 | -7/+5 |
| | | | | ActionController::Base.session_store= in favor of a config.session_store method (which takes params) and a config.cookie_secret variable, which is used in various secret scenarios. The old AC::Base options will continue to work with deprecation warnings. | ||||
* | fixed missing or incorrect session data error message | Stefan Penner | 2010-01-02 | 1 | -1/+1 |
| | |||||
* | All AD modules are "deferrable" | Joshua Peek | 2009-12-22 | 1 | -4/+5 |
| | |||||
* | CookieStore should not be derived from Hash - reverting [#2268 state:resolved] | Jay Pignata | 2009-09-03 | 1 | -1/+1 |
| | | | | Signed-off-by: Joshua Peek <josh@joshpeek.com> |