index
:
rails.git
3-2-stable-for-hmno
master
Mirror of official rails repo with custom fixes.
Harald Eilertsen
about
summary
refs
log
tree
commit
diff
stats
log msg
author
committer
range
path:
root
/
guides
/
source
/
security.md
Commit message (
Expand
)
Author
Age
Files
Lines
*
Add brakeman to guides/additional resources. Fixes #29383 [ci skip] (#29427)
Vipul A M
2017-06-12
1
-3
/
+4
*
Merge pull request #28132 from mikeycgto/aead-encrypted-cookies
Kasper Timm Hansen
2017-05-28
1
-8
/
+15
|
\
|
*
AEAD encrypted cookies and sessions
Michael Coyne
2017-05-22
1
-8
/
+15
*
|
Define path with __dir__
bogdanvlviv
2017-05-23
1
-1
/
+1
*
|
Fix broken external link in security guide.
Mike Gunderloy
2017-05-21
1
-1
/
+1
|
/
*
Fix link to rails-ujs
Ryunosuke Sato
2017-03-30
1
-1
/
+1
*
update guide to reflect browser compatibility for HTTP verbs [ci skip]
Rachel Carvalho
2017-03-23
1
-2
/
+2
*
Update some jquery-ujs references to rails-ujs
Jon Moss
2017-03-18
1
-7
/
+6
*
Fix typo in the security guide
bogdanvlviv
2017-03-12
1
-2
/
+2
*
Merge branch 'master' of github.com:rails/docrails
Vijay Dev
2016-12-16
1
-1
/
+1
|
\
|
*
Remove mention of SafeErb gem [ci skip]
Prathamesh Sonpatki
2016-11-19
1
-1
/
+1
*
|
Remove mention of deprecated SafeERB gem from security docs for now, prior se...
Vipul A M
2016-11-18
1
-1
/
+1
|
/
*
Remove the word "mongrel" from documents
Ryunosuke Sato
2016-09-07
1
-1
/
+1
*
[ci skip] Broken links in documentation fix
Rasmus Kjellberg
2016-08-30
1
-1
/
+1
*
When referring to Rails, be consistent in usage of capitalized form, unless i...
Vipul A M
2016-08-19
1
-1
/
+1
*
rails -> Rails [ci skip]
Santosh Wadghule
2016-07-12
1
-1
/
+1
*
cometic updates to security guide - fixes #25058 [ci skip]
Mateusz Konieczny
2016-05-27
1
-1
/
+1
*
Merge pull request #25052 from matkoniecz/2008_is_not_recent
Jon Moss
2016-05-17
1
-3
/
+1
|
\
|
*
update to make it less obvious that this guide is from 2008/2009
Mateusz Konieczny
2016-05-17
1
-3
/
+1
*
|
Safari 4 supports http only cookie (#25053)
Mateusz Konieczny
2016-05-17
1
-1
/
+1
*
|
Fix security guide capitalization errors
Jon Moss
2016-05-16
1
-15
/
+15
|
/
*
Update the Rails security guide
Ralin Chimev
2016-05-16
1
-2
/
+2
*
[ci skip] Parameter filter performs regular expression partial matching
Andrew Babichev
2016-03-31
1
-0
/
+2
*
Remove reference to unmaintained plugin/gem
Olivier Lacan
2016-03-23
1
-1
/
+1
*
Change 'a HTTP' to 'an HTTP' [ci skip]
Santosh Wadghule
2016-03-03
1
-3
/
+3
*
Fixed grammatical errors in rails docs [ci skip]
Matt Michnal
2016-02-09
1
-2
/
+2
*
[ci skip] Fix grammar
Abhishek Jain
2016-02-09
1
-1
/
+1
*
use rails secret in rails guides
Ryo Hashimoto
2016-02-03
1
-1
/
+1
*
ApplicationRecord documentation pass
Genadi Samokovarov
2015-12-17
1
-1
/
+1
*
Fix a couple of grammatical errors in security.md
Existent Ltd
2015-12-16
1
-2
/
+2
*
Merge branch 'master' of github.com:rails/docrails
Vijay Dev
2015-10-31
1
-1
/
+1
|
\
|
*
Improved `KeyError` messages on bang version, since commit https://github.com...
amitkumarsuroliya
2015-10-11
1
-1
/
+1
*
|
Improve readability in CSRF section of guide
Andy Lampert
2015-10-07
1
-4
/
+3
*
|
[ci skip] Change 'an URL' to 'a URL' as URL doesn't have a vowel sound
tanmay3011
2015-10-06
1
-2
/
+2
*
|
Update text on CSS Injection / Myspace
Sean Collins
2015-10-03
1
-5
/
+3
|
/
*
Clarify CSRF <script> purpose and protection. Note how to deal with your own ...
Jeremy Daer
2015-09-16
1
-1
/
+3
*
Improved explanation of the <script> tag CSRF behavior
Anshul Agrawal
2015-09-14
1
-1
/
+1
*
Merge branch 'master' of github.com:rails/rails
Vijay Dev
2015-08-24
1
-20
/
+20
|
\
|
*
Add bold to lists' titles [ci skip]
Alexey Markov
2015-08-21
1
-6
/
+6
|
*
Small fixes [ci skip]
Alexey Markov
2015-08-20
1
-12
/
+6
|
*
Small fixes [ci skip]
Alexey Markov
2015-08-17
1
-6
/
+5
|
*
Tiny documentation fixes [ci skip]
Robin Dupret
2015-08-11
1
-1
/
+6
|
*
[ci skip] Typo fixed
Dhia Eddine Chouchane
2015-08-06
1
-1
/
+1
|
*
Outdated information about session storage updated [ci skip]
Dhia Eddine Chouchane
2015-08-06
1
-2
/
+4
*
|
add commas removed earlier [ci skip]
Vijay Dev
2015-08-24
1
-1
/
+1
*
|
[ci skip] Fix to `a, b and c` format
yui-knk
2015-07-25
1
-1
/
+1
*
|
[ci skip] Fix minor typo
yui-knk
2015-07-24
1
-1
/
+1
*
|
[ci skip] Minor fix
yui-knk
2015-07-24
1
-1
/
+1
|
/
*
Add to Security guides the secrets.yml
Mauro George
2015-07-06
1
-0
/
+23
*
[ci skip] Replace dead link about HttpOnly cookies.
Yoong Kang Lim
2015-05-28
1
-1
/
+1
[next]