aboutsummaryrefslogtreecommitdiffstats
path: root/actionpack/lib/action_dispatch/middleware/session
Commit message (Collapse)AuthorAgeFilesLines
* use a request object in the session middlewareAaron Patterson2015-08-222-21/+25
| | | | | This commit allows us to use one request object rather than allocating multiple request objects to deal with the session.
* Explained how to set session expiry through session_store configIain Beeston2015-02-273-3/+20
| | | | | | Most session stores offer an :expire_after option, but it's largely undocumented. Cookie store also supports a number of options via rack (these used to be documented in rails 2.3)
* Regenerate sid when sbdy tries to fixate the sessionSantiago Pastorino2014-08-041-3/+3
| | | | | | Fixed broken test. Thanks Stephen Richards for reporting.
* [ci skip] /javascript/ -> JavaScript - cover whole appAkshay Vishnoi2014-07-041-1/+1
|
* Update documentation to use Rails.application insteadMarcel Morgan2014-04-131-1/+1
| | | | | | | References to ``AppName::Application` removed in favour of ``Rails.application`` as generated with a new rails 4.1 app. [ci skip]
* The digest option is no longer honoured since Rails 3.0 [ci skip]Godfrey Chan2014-03-201-1/+1
| | | | Closes #8513
* Renamed session_serializer option to cookies_serializerGodfrey Chan2014-02-112-27/+0
|
* Allow session serializer key in config.session_storeLukasz Sarnacki2014-01-292-0/+27
| | | | | | | | | | | | | MessageEncryptor has :serializer option, where any serializer object can be passed. This commit make it possible to set this serializer from configuration level. There are predefined serializers (:marshal_serializer, :json_serialzier) and custom serializer can be passed as String, Symbol (camelized and constantized in ActionDispatch::Session namepspace) or serializer object. Default :json_serializer was also added to generators to provide secure defalt.
* Update secret_key_base Docsrobertomiranda2013-12-151-2/+3
|
* [ci skip] Removing some gender sensitive object pronounsTejas Dinkar2013-12-021-2/+2
|
* Improve documentation around the cookie store auto-upgrade to encryptionTrevor Turk2013-04-011-22/+37
|
* Allow transparent upgrading of legacy signed cookies to encrypted cookies; ↵Trevor Turk2013-03-281-36/+1
| | | | Automatically configure cookie-based sessions to use the best cookie jar given the app's config
* Use Encoding::UTF_8 constant :do_not_litter:Akira Matsuda2013-01-281-1/+1
|
* Revert cb3181e - no longer required.Mark J. Titorenko2013-01-081-2/+0
|
* Fix CookieStore middleware inheritance hierarchy s.t. it inherits from ↵Mark J. Titorenko2013-01-081-3/+26
| | | | Rack::Session::Abstract::ID rather than Rack::Session::Cookie.
* Avoid Rack security warning no secret providedSantiago Pastorino2013-01-081-0/+2
| | | | This avoids "SECURITY WARNING: No secret option provided to Rack::Session::Cookie."
* Remove suggestion that Procs can be used as session secrets.James Coglan2013-01-051-7/+4
|
* Fix UpgradeSignatureToEncryptionCookieStore docSantiago Pastorino2012-11-191-9/+4
|
* Improve UpgradeSignatureToEncryptionCookieStore docsSantiago Pastorino2012-11-161-1/+14
| | | | | I suck at English, please help me reviewing this <3 <3 <3 [ci skip]
* Add UpgradeSignatureToEncryptionCookieStoreSantiago Pastorino2012-11-161-0/+17
| | | | | | This allows easy upgrading from the old signed Cookie Store <= 3.2 or the deprecated one in 4.0 (the ones that doesn't use key derivation) to the new one that signs using key derivation
* Call get_cookie to allow the method to be overriden by subclassesSantiago Pastorino2012-11-161-1/+1
|
* Add missing env param to get_cookieSantiago Pastorino2012-11-161-1/+1
|
* Add encrypted cookie storeSantiago Pastorino2012-11-031-3/+20
|
* 1.9 hash syntax changes to docsAvnerCohen2012-10-311-2/+2
|
* Improve error message for memcache session store when dalli isn't loaded in appGuillermo Iguaran2012-09-071-2/+6
|
* More fixes for action pack tests with Dalli.Arun Agrawal2012-09-061-3/+3
|
* Merge pull request #7495 from steveklabnik/issue_7478Aaron Patterson2012-09-011-0/+8
|\ | | | | Properly reset the session on reset_session
| * Override rack's destroy_session in cookie storeAndreas Loupasakis2012-09-011-0/+8
| |
* | Revert "Merge pull request #7452 from arunagw/memcached_dalli"Jon Leighton2012-08-311-3/+3
|/ | | | | | | This reverts commit 7256cb53e0c34e510a4d59a50d120c0358cf1d99, reversing changes made to 6ebe22c3ae716d089af1e5090ddb0d12b31af8ac. Reason: A test was failing.
* More fixes for action pack tests with Dalli.Arun Agrawal2012-08-271-3/+3
|
* load active_support/core_ext/object/blank in active_support/railsXavier Noria2012-08-022-2/+0
|
* Removing ==Examples and last blank lines of docs from actionpackFrancesco Rodriguez2012-05-151-1/+1
|
* session creation methods to a moduleAaron Patterson2012-05-043-24/+11
|
* create a request session in the cookie storesAaron Patterson2012-05-041-0/+8
|
* create a request::session object in the memecache store middlewareAaron Patterson2012-05-041-0/+10
|
* bread AD::Request::Session to it's own file, consolidate HASH OF DOOM lookupsAaron Patterson2012-05-031-150/+1
|
* extract options finding to a methodAaron Patterson2012-05-021-4/+7
|
* testing session store behaviorAaron Patterson2012-05-021-7/+19
|
* initialize instance variablesAaron Patterson2012-05-021-6/+5
|
* converted session hash to delegationAaron Patterson2012-05-021-21/+19
|
* session hash importedAaron Patterson2012-05-021-15/+111
|
* oops, forgot some semicolonsAaron Patterson2012-05-021-3/+3
|
* remove unused ivarAaron Patterson2012-05-021-4/+3
|
* use hash fetches to populate the :id valueAaron Patterson2012-05-021-12/+7
|
* imported options, switched to object compositionAaron Patterson2012-05-021-13/+56
|
* * move exception message to exception constructorAaron Patterson2012-05-021-5/+11
| | | | | * save original exception * keep original backtrace
* Support cookie jar options for all cookie storesbrainopia2012-04-301-0/+7
|
* Return the same session data object when setting session idCarlos Antonio da Silva2012-03-261-1/+2
|
* remove unnecessary memcache equire in ActionDispatch::Session::CacheStoreBrian Durand2012-02-281-1/+0
|
* remove checks for encodings availabilitySergey Nartimov2011-12-251-1/+1
|