index
:
rails.git
3-2-stable-for-hmno
master
Mirror of official rails repo with custom fixes.
Harald Eilertsen
about
summary
refs
log
tree
commit
diff
stats
log msg
author
committer
range
path:
root
/
actionpack
/
lib
/
action_dispatch
/
middleware
/
ssl.rb
Commit message (
Expand
)
Author
Age
Files
Lines
*
Reduce some more Hash#fetch + default object allocations
Akira Matsuda
2019-07-31
1
-1
/
+1
*
Use match? where we don't need MatchData
Akira Matsuda
2019-07-29
1
-1
/
+1
*
Add `Style/RedundantFreeze` to remove redudant `.freeze`
Yasuo Honda
2018-09-29
1
-5
/
+5
*
Enable `Performance/UnfreezeString` cop
yuuji.yaginuma
2018-09-23
1
-2
/
+2
*
Enable Start/EndWith and RegexpMatch cops
Bart de Water
2018-07-28
1
-1
/
+1
*
Check exclude before flagging cookies as secure in ActionDispatch::SSL (#32262)
Catherine Khuu
2018-03-15
1
-1
/
+3
*
Update default HSTS max-age value to 1 year
Grant Bourque
2018-01-16
1
-5
/
+4
*
Don't use Active Support where it is not needed.
yuuji.yaginuma
2017-09-30
1
-1
/
+1
*
Fix formatting in ActionDispatch::SSL middleware docs
T.J. Schuck
2017-09-27
1
-33
/
+38
*
Update links to use https link instead of http [ci skip]
Yoshiyuki Hirano
2017-08-22
1
-1
/
+1
*
[Action Pack] `rubocop -a --only Layout/EmptyLineAfterMagicComment`
Koichi ITO
2017-07-11
1
-0
/
+1
*
Prepare AP and AR to be frozen string friendly
Kir Shatrov
2017-07-06
1
-2
/
+3
*
Revert "Merge pull request #29540 from kirs/rubocop-frozen-string"
Matthew Draper
2017-07-02
1
-1
/
+0
*
Enforce frozen string in Rubocop
Kir Shatrov
2017-07-01
1
-0
/
+1
*
HSTS subdomains is now true, so let's fix documentation [ci skip] (#26870)
प्रथमेश Sonpatki
2016-10-23
1
-1
/
+1
*
Remove deprecated code in ssl middleware
Rafael Mendonça França
2016-10-10
1
-21
/
+3
*
Return 307 status instead of 301 when rerouting POST requests to SSL
Chirag Singhal
2016-08-22
1
-1
/
+9
*
applies new string literal convention in actionpack/lib
Xavier Noria
2016-08-06
1
-5
/
+5
*
[ci skip] Correct defaults in documentation for ActionDispatch::SSL
Tim Rogers
2016-07-06
1
-4
/
+5
*
[ci skip] Fix constrain_to documentation.
Kasper Timm Hansen
2016-03-03
1
-1
/
+1
*
Rename constrain_to to exclude.
Kasper Timm Hansen
2016-03-03
1
-3
/
+4
*
add `constraint_to` option to SSL middleware
Greg Molnar
2016-02-28
1
-2
/
+6
*
:nail_care:
Rafael Mendonça França
2016-02-25
1
-2
/
+2
*
Update documentation and deprecation message
Prathamesh Sonpatki
2016-02-25
1
-3
/
+3
*
Added deprecation for older apps
Prathamesh Sonpatki
2016-02-25
1
-1
/
+12
*
HSTS without IncludeSubdomains is often useless
Egor Homakov
2016-02-25
1
-1
/
+1
*
Flexible configuration for ActionDispatch::SSL
Tim Rogers
2015-12-29
1
-8
/
+12
*
Improve RDoc documentation of ActionDispatch::SSL
Tim Rogers
2015-12-24
1
-12
/
+14
*
Fix HSTS default expire in ActionDispatch::SSL docs.
Pedro Nascimento
2015-09-14
1
-1
/
+2
*
Make `config.force_ssl` less dangerous to try and easier to disable
Jeremy Daer
2015-09-07
1
-36
/
+92
*
ActionDispatch::SSL should keep original header's behavior
Fumiaki MATSUSHIMA
2015-06-14
1
-1
/
+1
*
Avoid URI parsing
Andriel Nuernberg
2014-04-09
1
-5
/
+8
*
Space is not required for Set-Cookie header
Yamagishi Kazutoshi
2013-07-05
1
-1
/
+1
*
Merge pull request #11069 from ykzts/actiondispatch-ssl-secure-flag-igonore-case
Guillermo Iguaran
2013-06-24
1
-1
/
+1
|
\
|
*
Flag cookies as secure with ignore case in ActionDispatch::SSL
Yamagishi Kazutoshi
2013-06-24
1
-1
/
+1
*
|
ActionDispatch:SSL: don't include STS header in non-https responses
Geoff Buesing
2013-06-23
1
-2
/
+1
|
/
*
Allow use of durations for ActionDispatch::SSL configuration
Andrew White
2013-01-04
1
-1
/
+1
*
Fix secure cookies when there are more than one space before the secure
Rafael Mendonça França
2012-03-19
1
-1
/
+1
*
Remove exclude option from ActionDispatch::SSL
Rafael Mendonça França
2012-03-19
1
-7
/
+0
*
Some refactoring and update ActionDispatch::SSL code to use the Rack 1.4.x
Rafael Mendonça França
2012-03-17
1
-23
/
+13
*
Rack::SSL -> ActionDispatch::SSL
Rafael Mendonça França
2012-03-17
1
-0
/
+87