aboutsummaryrefslogtreecommitdiffstats
path: root/activesupport/lib/active_support/security_utils.rb
Commit message (Collapse)AuthorAgeFilesLines
* applies new string literal convention in activesupport/libXavier Noria2016-08-061-1/+1
| | | | | The current code base is not uniform. After some discussion, we have chosen to go with double quotes by default.
* use secure string comparisons for basic auth username / passwordAaron Patterson2016-01-221-0/+7
| | | | | | this will avoid timing attacks against applications that use basic auth. CVE-2015-7576
* Add AS::SecurityUtils.secure_compare for constant time string comparisonGuillermo Iguaran2014-10-231-0/+20