aboutsummaryrefslogtreecommitdiffstats
path: root/guides/source/security.md
Commit message (Expand)AuthorAgeFilesLines
* Add brakeman to guides/additional resources. Fixes #29383 [ci skip] (#29427)Vipul A M2017-06-121-3/+4
* Merge pull request #28132 from mikeycgto/aead-encrypted-cookiesKasper Timm Hansen2017-05-281-8/+15
|\
| * AEAD encrypted cookies and sessionsMichael Coyne2017-05-221-8/+15
* | Define path with __dir__bogdanvlviv2017-05-231-1/+1
* | Fix broken external link in security guide.Mike Gunderloy2017-05-211-1/+1
|/
* Fix link to rails-ujsRyunosuke Sato2017-03-301-1/+1
* update guide to reflect browser compatibility for HTTP verbs [ci skip]Rachel Carvalho2017-03-231-2/+2
* Update some jquery-ujs references to rails-ujsJon Moss2017-03-181-7/+6
* Fix typo in the security guidebogdanvlviv2017-03-121-2/+2
* Merge branch 'master' of github.com:rails/docrailsVijay Dev2016-12-161-1/+1
|\
| * Remove mention of SafeErb gem [ci skip]Prathamesh Sonpatki2016-11-191-1/+1
* | Remove mention of deprecated SafeERB gem from security docs for now, prior se...Vipul A M2016-11-181-1/+1
|/
* Remove the word "mongrel" from documentsRyunosuke Sato2016-09-071-1/+1
* [ci skip] Broken links in documentation fixRasmus Kjellberg2016-08-301-1/+1
* When referring to Rails, be consistent in usage of capitalized form, unless i...Vipul A M2016-08-191-1/+1
* rails -> Rails [ci skip]Santosh Wadghule2016-07-121-1/+1
* cometic updates to security guide - fixes #25058 [ci skip]Mateusz Konieczny2016-05-271-1/+1
* Merge pull request #25052 from matkoniecz/2008_is_not_recentJon Moss2016-05-171-3/+1
|\
| * update to make it less obvious that this guide is from 2008/2009Mateusz Konieczny2016-05-171-3/+1
* | Safari 4 supports http only cookie (#25053)Mateusz Konieczny2016-05-171-1/+1
* | Fix security guide capitalization errorsJon Moss2016-05-161-15/+15
|/
* Update the Rails security guideRalin Chimev2016-05-161-2/+2
* [ci skip] Parameter filter performs regular expression partial matchingAndrew Babichev2016-03-311-0/+2
* Remove reference to unmaintained plugin/gemOlivier Lacan2016-03-231-1/+1
* Change 'a HTTP' to 'an HTTP' [ci skip]Santosh Wadghule2016-03-031-3/+3
* Fixed grammatical errors in rails docs [ci skip]Matt Michnal2016-02-091-2/+2
* [ci skip] Fix grammarAbhishek Jain2016-02-091-1/+1
* use rails secret in rails guidesRyo Hashimoto2016-02-031-1/+1
* ApplicationRecord documentation passGenadi Samokovarov2015-12-171-1/+1
* Fix a couple of grammatical errors in security.mdExistent Ltd2015-12-161-2/+2
* Merge branch 'master' of github.com:rails/docrailsVijay Dev2015-10-311-1/+1
|\
| * Improved `KeyError` messages on bang version, since commit https://github.com...amitkumarsuroliya2015-10-111-1/+1
* | Improve readability in CSRF section of guideAndy Lampert2015-10-071-4/+3
* | [ci skip] Change 'an URL' to 'a URL' as URL doesn't have a vowel soundtanmay30112015-10-061-2/+2
* | Update text on CSS Injection / MyspaceSean Collins2015-10-031-5/+3
|/
* Clarify CSRF <script> purpose and protection. Note how to deal with your own ...Jeremy Daer2015-09-161-1/+3
* Improved explanation of the <script> tag CSRF behaviorAnshul Agrawal2015-09-141-1/+1
* Merge branch 'master' of github.com:rails/railsVijay Dev2015-08-241-20/+20
|\
| * Add bold to lists' titles [ci skip]Alexey Markov2015-08-211-6/+6
| * Small fixes [ci skip]Alexey Markov2015-08-201-12/+6
| * Small fixes [ci skip]Alexey Markov2015-08-171-6/+5
| * Tiny documentation fixes [ci skip]Robin Dupret2015-08-111-1/+6
| * [ci skip] Typo fixedDhia Eddine Chouchane2015-08-061-1/+1
| * Outdated information about session storage updated [ci skip] Dhia Eddine Chouchane2015-08-061-2/+4
* | add commas removed earlier [ci skip]Vijay Dev2015-08-241-1/+1
* | [ci skip] Fix to `a, b and c` formatyui-knk2015-07-251-1/+1
* | [ci skip] Fix minor typoyui-knk2015-07-241-1/+1
* | [ci skip] Minor fixyui-knk2015-07-241-1/+1
|/
* Add to Security guides the secrets.ymlMauro George2015-07-061-0/+23
* [ci skip] Replace dead link about HttpOnly cookies.Yoong Kang Lim2015-05-281-1/+1