aboutsummaryrefslogtreecommitdiffstats
path: root/guides/source/security.md
Commit message (Expand)AuthorAgeFilesLines
* warn about reading guides in GitHubXavier Noria2014-12-231-0/+2
* Do not use line breaks on notes [ci skip]Andrey Nering2014-12-221-6/+1
* s/a unobtrusive/an unobtrusive [ci skip]Zachary Scott2014-12-221-1/+1
* Add note about Ajax and CSRF-Token [ci skip]Andrey Nering2014-12-201-1/+8
* Don't convert empty arrays to nils when deep munging paramsChris Sinjakli2014-12-151-4/+4
* Fixing wrong link in 'Ruby on Rails Security Guide' [ci skip]Javier Vidal2014-11-221-1/+1
* [ci skip] re-worded section on CookieStore to make it more readable.Tom Kadwill2014-08-161-3/+3
* Point to rubygems instead of Rails GitHub. [ci skip]Rafael Mendonça França2014-08-151-1/+1
* Fixed link for in_place_editor [ci skip]Arun Agrawal2014-08-151-1/+1
* correct markdown usage [ci skip]Nishant Modak2014-07-091-6/+6
* remove rubyforge.org that was shut down [ci skip]Gaurav Sharma2014-06-061-1/+1
* Replace first person point of view on guides.Hendy Tanata2014-05-161-7/+7
* [ci skip] Security guide clarity.Kyle Heironimus2014-05-011-2/+2
* Remove statement assuming coffee shop/public space wifi is inherently insecureNick Quaranto2014-04-191-1/+1
* Include default rails protect_from_forgery with: :exceptionPaulL12014-04-171-4/+4
* CSRF protection should rescue exception not extendPaulL12014-04-171-3/+2
* [ci skip] Use plain underscore instead of "\_".Juanito Fatas2014-04-131-2/+2
* W3C CSP document moved to gihub.io URL [ci skip]Andy Callaghan2014-04-051-1/+1
* [ci skip] use secrets.secret_key_base instead of config.secret_key_baseKuldeep Aggarwal2014-03-011-3/+10
* Add verb to sanitization noteDave Jachimiak2014-02-141-1/+1
* Log which keys were set to nil in deep_mungeLukasz Sarnacki2014-01-281-0/+43
* clean up security guide: his => their [ci skip]Rex Feng2014-01-161-1/+1
* [ci skip] Added alias to CSRFUday Kadaboina2014-01-141-2/+2
* CSRF protection from cross-origin <script> tagsJeremy Kemper2013-12-171-3/+5
* [ci skip] Removing some gender sensitive object pronounsTejas Dinkar2013-12-021-6/+6
* Use genderless pronouns in security guide. [ci skip]Vipul A M2013-12-021-18/+18
* Update security.mdAdam2013-11-081-1/+1
* incorrect urlSergio2013-09-161-1/+1
* incorrect urls Sergio2013-09-161-2/+2
* surplus : in attachment_fu pluginSergio2013-09-151-1/+1
* Improves a sentence in guides/securityHannes Fostie2013-09-091-1/+1
* cleans the guides sources from fancy non-ASCII stuffXavier Noria2013-08-231-22/+22
* remove language about configuring digest method [ci skip]Justin George2013-07-311-1/+1
* update guide to reflect default HMAC SHA1 in MessageVerifier used in SignedCo...Justin George2013-07-301-1/+1
* Remove double spaces in guidesSunny Ripert2013-05-281-2/+2
* Simple grammar updatesJonathan Roes2013-05-031-2/+2
* Fix typo "can exploited" with "can be exploited"Leo Gallucci2013-05-011-1/+1
* Ruby On Rails -> Ruby on Rails [ci skip]Xavier Noria2013-04-161-1/+1
* ReCAPTCHA plug-in link now points to Github repo. Plug-in is no longer availa...sthollmann2013-03-271-1/+1
* Remove mass-assignment line from guide summaryAndrew Wilcox2013-01-251-1/+0
* PUT => PATCH or PUTAkira Matsuda2013-01-021-1/+1
* Updated security guide to reference secret_key_base instead of secret_token, ...Gary S. Weaver2012-12-211-3/+3
* Updated security guide with information about secret_token.rb and to suggest ...Gary S. Weaver2012-12-211-7/+11
* remove Mass Assignment reference from Security Guide [ci skip]Francesco Rodriguez2012-12-101-1/+0
* Security Guide: removing Mass Assignment.Steve Klabnik2012-12-081-135/+0
* update guides to use _action callbacks [ci skip]Francesco Rodriguez2012-12-071-1/+1
* Normalize on 'After reading this guide, you will know:'Steve Klabnik2012-11-291-1/+3
* Add periods to the bullet points in guides.Steve Klabnik2012-11-291-7/+7
* use em-dashes instead of two minuses in guidesburningTyger2012-11-101-2/+2
* migrating guides to new hash syntaxAvnerCohen2012-10-101-13/+13