aboutsummaryrefslogtreecommitdiffstats
path: root/guides/source/security.md
Commit message (Expand)AuthorAgeFilesLines
* Fix links [ci skip]Yauheni Dakuka2017-11-161-2/+2
* Update security guide for signed cookie rotationsMichael Coyne2017-10-091-2/+3
* Fix broken link to recaptcha.net [ci skip]Patrick Davey2017-10-011-1/+1
* [ci skip] Don't mention unrotatable secret_key_base.Kasper Timm Hansen2017-09-251-18/+20
* [ci skip] Attempt a new explanation for rotations.Kasper Timm Hansen2017-09-241-28/+16
* [ci skip] RotationConfiguration is an implementation detail, not public API.Kasper Timm Hansen2017-09-241-7/+4
* Add key rotation cookies middlewareMichael Coyne2017-09-241-19/+111
* Merge pull request #30623 from manojmj92/manojmj92-oo-key-patchJavan Makhmali2017-09-201-1/+1
|\
| * Fix error message documentationManoj M J2017-09-201-1/+1
* | Remove "the" [ci skip]Yauheni Dakuka2017-09-181-1/+1
|/
* Fix typo: `credentails` -> `credentials` [ci skip]yuuji.yaginuma2017-09-161-3/+3
* [ci skip] Prefer credentials to secrets in docs.Kasper Timm Hansen2017-09-131-24/+21
* Fix created_at [ci skip]Yauheni Dakuka2017-09-131-1/+1
* Grammar fixJordan Sitkin2017-08-221-1/+1
* Use ssl in guide and comment [ci skip]Yoshiyuki Hirano2017-08-191-3/+3
* Remove period from within linksJon Moss2017-08-161-3/+3
* Update security.mdYauheni Dakuka2017-06-261-1/+1
* Add brakeman to guides/additional resources. Fixes #29383 [ci skip] (#29427)Vipul A M2017-06-121-3/+4
* Merge pull request #28132 from mikeycgto/aead-encrypted-cookiesKasper Timm Hansen2017-05-281-8/+15
|\
| * AEAD encrypted cookies and sessionsMichael Coyne2017-05-221-8/+15
* | Define path with __dir__bogdanvlviv2017-05-231-1/+1
* | Fix broken external link in security guide.Mike Gunderloy2017-05-211-1/+1
|/
* Fix link to rails-ujsRyunosuke Sato2017-03-301-1/+1
* update guide to reflect browser compatibility for HTTP verbs [ci skip]Rachel Carvalho2017-03-231-2/+2
* Update some jquery-ujs references to rails-ujsJon Moss2017-03-181-7/+6
* Fix typo in the security guidebogdanvlviv2017-03-121-2/+2
* Merge branch 'master' of github.com:rails/docrailsVijay Dev2016-12-161-1/+1
|\
| * Remove mention of SafeErb gem [ci skip]Prathamesh Sonpatki2016-11-191-1/+1
* | Remove mention of deprecated SafeERB gem from security docs for now, prior se...Vipul A M2016-11-181-1/+1
|/
* Remove the word "mongrel" from documentsRyunosuke Sato2016-09-071-1/+1
* [ci skip] Broken links in documentation fixRasmus Kjellberg2016-08-301-1/+1
* When referring to Rails, be consistent in usage of capitalized form, unless i...Vipul A M2016-08-191-1/+1
* rails -> Rails [ci skip]Santosh Wadghule2016-07-121-1/+1
* cometic updates to security guide - fixes #25058 [ci skip]Mateusz Konieczny2016-05-271-1/+1
* Merge pull request #25052 from matkoniecz/2008_is_not_recentJon Moss2016-05-171-3/+1
|\
| * update to make it less obvious that this guide is from 2008/2009Mateusz Konieczny2016-05-171-3/+1
* | Safari 4 supports http only cookie (#25053)Mateusz Konieczny2016-05-171-1/+1
* | Fix security guide capitalization errorsJon Moss2016-05-161-15/+15
|/
* Update the Rails security guideRalin Chimev2016-05-161-2/+2
* [ci skip] Parameter filter performs regular expression partial matchingAndrew Babichev2016-03-311-0/+2
* Remove reference to unmaintained plugin/gemOlivier Lacan2016-03-231-1/+1
* Change 'a HTTP' to 'an HTTP' [ci skip]Santosh Wadghule2016-03-031-3/+3
* Fixed grammatical errors in rails docs [ci skip]Matt Michnal2016-02-091-2/+2
* [ci skip] Fix grammarAbhishek Jain2016-02-091-1/+1
* use rails secret in rails guidesRyo Hashimoto2016-02-031-1/+1
* ApplicationRecord documentation passGenadi Samokovarov2015-12-171-1/+1
* Fix a couple of grammatical errors in security.mdExistent Ltd2015-12-161-2/+2
* Merge branch 'master' of github.com:rails/docrailsVijay Dev2015-10-311-1/+1
|\
| * Improved `KeyError` messages on bang version, since commit https://github.com...amitkumarsuroliya2015-10-111-1/+1
* | Improve readability in CSRF section of guideAndy Lampert2015-10-071-4/+3