aboutsummaryrefslogtreecommitdiffstats
path: root/actionpack/lib/action_dispatch/middleware/session
Commit message (Collapse)AuthorAgeFilesLines
* applies remaining conventions across the projectXavier Noria2016-08-061-1/+0
|
* normalizes indentation and whitespace across the projectXavier Noria2016-08-062-36/+36
|
* modernizes hash syntax in actionpackXavier Noria2016-08-061-1/+1
|
* applies new string literal convention in actionpack/libXavier Noria2016-08-064-12/+12
| | | | | The current code base is not uniform. After some discussion, we have chosen to go with double quotes by default.
* Add a test case for verifying `cookie_only` is set even if user tries to set ↵Prathamesh Sonpatki2016-07-071-1/+1
| | | | it false
* Corrected secret_key_basevs4vijay2016-02-151-1/+1
|
* Refer to rails command instead of rake in a bunch of placesDavid Heinemeier Hansson2015-12-181-1/+1
| | | | Still more to do. Please assist!
* Deprecate exception#original_exception in favor of exception#causeYuki Nishijima2015-11-031-6/+14
|
* inherit from our AbstractStoreAaron Patterson2015-09-251-5/+1
|
* Update documentation to reflect Rack::Session::Abstract changeseileencodes2015-09-091-1/+1
| | | | | `Rack::Session::Abstract::ID` is now deprecated and `Rack::Session::Abstract::Persisted` should be used instead.
* implement abstract store methodsAaron Patterson2015-09-042-5/+5
| | | | converts old ID methods to the new abstract store methods in Rack
* stop using deprecated Abstract::ID classAaron Patterson2015-09-042-2/+2
|
* stop inheriting from Rack::RequestAaron Patterson2015-09-041-1/+1
| | | | | | Just include the modules necessary in the Request object to implement the things we need. This should make it easier to build delegate request objects because the API is smaller
* use a request object in the session middlewareAaron Patterson2015-08-222-21/+25
| | | | | This commit allows us to use one request object rather than allocating multiple request objects to deal with the session.
* Explained how to set session expiry through session_store configIain Beeston2015-02-273-3/+20
| | | | | | Most session stores offer an :expire_after option, but it's largely undocumented. Cookie store also supports a number of options via rack (these used to be documented in rails 2.3)
* Regenerate sid when sbdy tries to fixate the sessionSantiago Pastorino2014-08-041-3/+3
| | | | | | Fixed broken test. Thanks Stephen Richards for reporting.
* [ci skip] /javascript/ -> JavaScript - cover whole appAkshay Vishnoi2014-07-041-1/+1
|
* Update documentation to use Rails.application insteadMarcel Morgan2014-04-131-1/+1
| | | | | | | References to ``AppName::Application` removed in favour of ``Rails.application`` as generated with a new rails 4.1 app. [ci skip]
* The digest option is no longer honoured since Rails 3.0 [ci skip]Godfrey Chan2014-03-201-1/+1
| | | | Closes #8513
* Renamed session_serializer option to cookies_serializerGodfrey Chan2014-02-112-27/+0
|
* Allow session serializer key in config.session_storeLukasz Sarnacki2014-01-292-0/+27
| | | | | | | | | | | | | MessageEncryptor has :serializer option, where any serializer object can be passed. This commit make it possible to set this serializer from configuration level. There are predefined serializers (:marshal_serializer, :json_serialzier) and custom serializer can be passed as String, Symbol (camelized and constantized in ActionDispatch::Session namepspace) or serializer object. Default :json_serializer was also added to generators to provide secure defalt.
* Update secret_key_base Docsrobertomiranda2013-12-151-2/+3
|
* [ci skip] Removing some gender sensitive object pronounsTejas Dinkar2013-12-021-2/+2
|
* Improve documentation around the cookie store auto-upgrade to encryptionTrevor Turk2013-04-011-22/+37
|
* Allow transparent upgrading of legacy signed cookies to encrypted cookies; ↵Trevor Turk2013-03-281-36/+1
| | | | Automatically configure cookie-based sessions to use the best cookie jar given the app's config
* Use Encoding::UTF_8 constant :do_not_litter:Akira Matsuda2013-01-281-1/+1
|
* Revert cb3181e - no longer required.Mark J. Titorenko2013-01-081-2/+0
|
* Fix CookieStore middleware inheritance hierarchy s.t. it inherits from ↵Mark J. Titorenko2013-01-081-3/+26
| | | | Rack::Session::Abstract::ID rather than Rack::Session::Cookie.
* Avoid Rack security warning no secret providedSantiago Pastorino2013-01-081-0/+2
| | | | This avoids "SECURITY WARNING: No secret option provided to Rack::Session::Cookie."
* Remove suggestion that Procs can be used as session secrets.James Coglan2013-01-051-7/+4
|
* Fix UpgradeSignatureToEncryptionCookieStore docSantiago Pastorino2012-11-191-9/+4
|
* Improve UpgradeSignatureToEncryptionCookieStore docsSantiago Pastorino2012-11-161-1/+14
| | | | | I suck at English, please help me reviewing this <3 <3 <3 [ci skip]
* Add UpgradeSignatureToEncryptionCookieStoreSantiago Pastorino2012-11-161-0/+17
| | | | | | This allows easy upgrading from the old signed Cookie Store <= 3.2 or the deprecated one in 4.0 (the ones that doesn't use key derivation) to the new one that signs using key derivation
* Call get_cookie to allow the method to be overriden by subclassesSantiago Pastorino2012-11-161-1/+1
|
* Add missing env param to get_cookieSantiago Pastorino2012-11-161-1/+1
|
* Add encrypted cookie storeSantiago Pastorino2012-11-031-3/+20
|
* 1.9 hash syntax changes to docsAvnerCohen2012-10-311-2/+2
|
* Improve error message for memcache session store when dalli isn't loaded in appGuillermo Iguaran2012-09-071-2/+6
|
* More fixes for action pack tests with Dalli.Arun Agrawal2012-09-061-3/+3
|
* Merge pull request #7495 from steveklabnik/issue_7478Aaron Patterson2012-09-011-0/+8
|\ | | | | Properly reset the session on reset_session
| * Override rack's destroy_session in cookie storeAndreas Loupasakis2012-09-011-0/+8
| |
* | Revert "Merge pull request #7452 from arunagw/memcached_dalli"Jon Leighton2012-08-311-3/+3
|/ | | | | | | This reverts commit 7256cb53e0c34e510a4d59a50d120c0358cf1d99, reversing changes made to 6ebe22c3ae716d089af1e5090ddb0d12b31af8ac. Reason: A test was failing.
* More fixes for action pack tests with Dalli.Arun Agrawal2012-08-271-3/+3
|
* load active_support/core_ext/object/blank in active_support/railsXavier Noria2012-08-022-2/+0
|
* Removing ==Examples and last blank lines of docs from actionpackFrancesco Rodriguez2012-05-151-1/+1
|
* session creation methods to a moduleAaron Patterson2012-05-043-24/+11
|
* create a request session in the cookie storesAaron Patterson2012-05-041-0/+8
|
* create a request::session object in the memecache store middlewareAaron Patterson2012-05-041-0/+10
|
* bread AD::Request::Session to it's own file, consolidate HASH OF DOOM lookupsAaron Patterson2012-05-031-150/+1
|
* extract options finding to a methodAaron Patterson2012-05-021-4/+7
|