Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Revert "Revert "Merge pull request #6084 from ↵ | brainopia | 2012-08-10 | 1 | -0/+7 |
| | | | | | | brainopia/support_for_magic_domain_on_all_stores"" This reverts commit a48ea6800ef712440b08c551f8041feb35de8cb4. | ||||
* | Revert "Merge pull request #6084 from ↵ | Rafael Mendonça França | 2012-08-05 | 1 | -7/+0 |
| | | | | | | | | brainopia/support_for_magic_domain_on_all_stores" This reverts commit 393c652cf63875f2728c04d47b34b2d6ae908186. This commit was supposed to fix a bug but it add more failures. | ||||
* | Merge pull request #6084 from brainopia/support_for_magic_domain_on_all_stores | José Valim | 2012-08-02 | 1 | -0/+7 |
| | | | | Support cookie jar options for all cookie stores | ||||
* | remove unnecessary memcache equire in ActionDispatch::Session::CacheStore | Brian Durand | 2012-05-26 | 1 | -1/+0 |
| | |||||
* | Return the same session data object when setting session id | Carlos Antonio da Silva | 2012-03-24 | 1 | -1/+1 |
| | | | | | | | | Make sure to return the same hash object instead of returning a new one. Returning a new one causes failures on cookie store tests, where it tests for the 'Set-Cookie' header with the session signature. This is due to the hash ordering changes on Ruby 1.8.7-p358. | ||||
* | Get rid of the close checks since we cannot reliably close the session anyway. | José Valim | 2011-12-16 | 1 | -4/+0 |
| | |||||
* | Add ActionDispatch::Session::CacheStore as a generic way of storing sessions ↵ | Brian Durand | 2011-10-21 | 1 | -0/+50 |
| | | | | in a cache. | ||||
* | Split long string into multiple shorter ones | Daniel Schierbeck | 2011-08-29 | 1 | -1/+4 |
| | | | This makes the code more readable. | ||||
* | removed deprecated methods, and related tests, from ActionPack | Josh Kalderimis | 2011-05-24 | 1 | -7/+1 |
| | |||||
* | Replace references to ActiveSupport::SecureRandom with just SecureRandom, ↵ | Jon Leighton | 2011-05-23 | 1 | -1/+1 |
| | | | | and require 'securerandom' from the stdlib when active support is required. | ||||
* | Fix renew feature on cookies. | José Valim | 2011-05-04 | 1 | -1/+1 |
| | |||||
* | generated session ids should be encoded as UTF-8 | Aaron Patterson | 2011-04-14 | 1 | -1/+3 |
| | |||||
* | Initialize sid should just skip instance variables. | José Valim | 2010-10-04 | 1 | -0/+7 |
| | |||||
* | Rely on Rack::Session stores API for more compatibility across the Ruby world. | José Valim | 2010-10-03 | 3 | -321/+76 |
| | |||||
* | no need to check for nil? | Neeraj Singh | 2010-09-30 | 1 | -1/+1 |
| | |||||
* | Remove more warnings on AP. | Emilio Tagua | 2010-09-28 | 1 | -2/+2 |
| | |||||
* | Only send secure cookies over SSL. | W. Andrew Loe III | 2010-09-13 | 1 | -1/+4 |
| | |||||
* | Revert "Avoid uneeded queries in session stores if sid is not given." | José Valim | 2010-07-29 | 2 | -5/+3 |
| | | | | | | First step to merge Rails and Rack session stores. Rack always expects to receive the SID since it may have different behavior if the SID is nil. This reverts commit e210895ba95e498b9debbf43a3e5ae588bca81f0. | ||||
* | Set session options id to nil is respected and cancels lazy loading. | José Valim | 2010-07-18 | 1 | -2/+2 |
| | |||||
* | Avoid uneeded queries in session stores if sid is not given. | José Valim | 2010-07-18 | 2 | -3/+5 |
| | |||||
* | Fixed many references to the old config/environment.rb and Rails::Initializer | Benjamin Quorning | 2010-07-13 | 1 | -1/+1 |
| | |||||
* | porting session.clear fix to master branch. [#5030 state:resolved] | Aaron Patterson | 2010-07-01 | 1 | -0/+5 |
| | | | | Signed-off-by: Jeremy Kemper <jeremy@bitsweat.net> | ||||
* | Fixed that an ArgumentError is thrown when request.session_options[:id] is ↵ | Michael Lovitt | 2010-06-27 | 2 | -36/+38 |
| | | | | | | | | read in the following scenario: when the cookie store is used, and the session contains a serialized object of an unloaded class, and no session data accesses have occurred yet. Pushed the stale_session_check responsibility out of the SessionHash and down into the session store, closer to where the deserialization actually occurs. Added some test coverage for this case and others related to deserialization of unloaded types. [#4938] Signed-off-by: José Valim <jose.valim@gmail.com> | ||||
* | Do not mark the session as loaded if an error happened while doing it. | José Valim | 2010-06-25 | 1 | -2/+1 |
| | |||||
* | Calling exists? in the session store, without checking for stale sessions, ↵ | José Valim | 2010-06-25 | 2 | -10/+10 |
| | | | | was causing the cookie store to panic because we need to unpack the whole session to get its key. This commit fixes this issue and also caches exists calls for performance improvements. | ||||
* | Make sure that Rails doesn't resent session_id cookie over and over again if ↵ | Prem Sichanugrist | 2010-06-25 | 1 | -1/+3 |
| | | | | | | | | it's already there [#2485 state:resolved] This apply to only Active Record store and Memcached store, as they both store only the session_id, which will be unchanged, in the cookie. Signed-off-by: José Valim <jose.valim@gmail.com> | ||||
* | Avoid deserializing cookies too early, which causes session objects to not ↵ | José Valim | 2010-06-24 | 2 | -18/+22 |
| | | | | be available yet. Unfortunately, could not reproduce this in a test case. | ||||
* | Sessions should not be created until written to and session data should be ↵ | Michael Lovitt | 2010-06-23 | 3 | -29/+115 |
| | | | | | | | | destroyed on reset. [#4938] Signed-off-by: Jeremy Kemper <jeremy@bitsweat.net> | ||||
* | Took out the domain option logic to cookies.rb. | Rizwan Reza | 2010-06-11 | 2 | -20/+0 |
| | |||||
* | Moved Domain regexp to a constant and added comments. | Rizwan Reza | 2010-06-11 | 1 | -1/+8 |
| | |||||
* | The previous commit didn't work with complex domains, which is now fixed. | Rizwan Reza | 2010-06-11 | 1 | -4/+4 |
| | |||||
* | Add support for multi-subdomain session by setting cookie host in session ↵ | Rizwan Reza | 2010-06-11 | 2 | -1/+14 |
| | | | | | | cookie so you can share session between www.example.com, example.com and user.example.com. [#4818 state:resolved] This reverts commit 330a89072a493aafef1e07c3558964477f85adf0. | ||||
* | Stop the flash middleware from forcibly loading sessions even if the user ↵ | wycats | 2010-06-04 | 1 | -4/+4 |
| | | | | doesn't use sessions at all | ||||
* | Cut the fat and make session stores rely on request.cookie_jar and change ↵ | José Valim | 2010-05-18 | 3 | -130/+55 |
| | | | | set_session semantics to return the cookie value instead of a boolean. | ||||
* | Remove deprecated methods since 2-3-stable. | José Valim | 2010-05-18 | 1 | -34/+6 |
| | |||||
* | Simplify cookie_store by simply relying on cookies.signed. | José Valim | 2010-05-18 | 1 | -93/+14 |
| | |||||
* | corrected error message in session/cookie_store [#4546 state:resolved] | Josh Kalderimis | 2010-05-10 | 1 | -1/+1 |
| | | | | Signed-off-by: José Valim <jose.valim@gmail.com> | ||||
* | Rename config.cookie_secret to config.secret_token and pass it as ↵ | José Valim | 2010-04-05 | 1 | -1/+1 |
| | | | | configuration in request.env. This is another step forward removing global configuration. | ||||
* | adds missing requires for Object#blank? and Object#present? | Xavier Noria | 2010-03-28 | 2 | -0/+2 |
| | |||||
* | Make many parts of Rails lazy. In order to facilitate this, | wycats | 2010-03-07 | 1 | -1/+0 |
| | | | | | | | | | | | | add lazy_load_hooks.rb, which allows us to declare code that should be run at some later time. For instance, this allows us to defer requiring ActiveRecord::Base at boot time purely to apply configuration. Instead, we register a hook that should apply configuration once ActiveRecord::Base is loaded. With these changes, brings down total boot time of a new app to 300ms in production and 400ms in dev. TODO: rename base_hook | ||||
* | Deprecated ActionController::Base.session_options= and ↵ | Carlhuda | 2010-03-04 | 1 | -7/+5 |
| | | | | ActionController::Base.session_store= in favor of a config.session_store method (which takes params) and a config.cookie_secret variable, which is used in various secret scenarios. The old AC::Base options will continue to work with deprecation warnings. | ||||
* | Fix const reference for SessionRestoreError | Joshua Peek | 2010-01-15 | 1 | -1/+1 |
| | |||||
* | fixed missing or incorrect session data error message | Stefan Penner | 2010-01-02 | 1 | -1/+1 |
| | |||||
* | All AD modules are "deferrable" | Joshua Peek | 2009-12-22 | 2 | -4/+6 |
| | |||||
* | SessionRestoreError belongs in AD | Joshua Peek | 2009-09-23 | 1 | -3/+6 |
| | |||||
* | Lazy require memcache for session middleware | Joshua Peek | 2009-09-13 | 1 | -40/+35 |
| | |||||
* | CookieStore should not be derived from Hash - reverting [#2268 state:resolved] | Jay Pignata | 2009-09-03 | 1 | -1/+1 |
| | | | | Signed-off-by: Joshua Peek <josh@joshpeek.com> | ||||
* | If session_options[:id] is requested when using CookieStore, unmarshal the ↵ | Jay Pignata | 2009-09-03 | 1 | -3/+14 |
| | | | | | | session to access it [#2268 state:resolved] Signed-off-by: Joshua Peek <josh@joshpeek.com> | ||||
* | SessionHash#update and SessionHash#delete are missing a call to load! [#3056 ↵ | Joshua Peek | 2009-08-31 | 1 | -0/+2 |
| | | | | state:resolved] | ||||
* | Require necessary active_support files in cookie store | Carl Lerche | 2009-08-26 | 1 | -0/+2 |
| |