| Commit message (Expand) | Author | Age | Files | Lines |
* | [ci skip] Prefer credentials to secrets in docs. | Kasper Timm Hansen | 2017-09-13 | 1 | -24/+21 |
* | Fix created_at [ci skip] | Yauheni Dakuka | 2017-09-13 | 1 | -1/+1 |
* | Grammar fix | Jordan Sitkin | 2017-08-22 | 1 | -1/+1 |
* | Use ssl in guide and comment [ci skip] | Yoshiyuki Hirano | 2017-08-19 | 1 | -3/+3 |
* | Remove period from within links | Jon Moss | 2017-08-16 | 1 | -3/+3 |
* | Update security.md | Yauheni Dakuka | 2017-06-26 | 1 | -1/+1 |
* | Add brakeman to guides/additional resources. Fixes #29383 [ci skip] (#29427) | Vipul A M | 2017-06-12 | 1 | -3/+4 |
* | Merge pull request #28132 from mikeycgto/aead-encrypted-cookies | Kasper Timm Hansen | 2017-05-28 | 1 | -8/+15 |
|\ |
|
| * | AEAD encrypted cookies and sessions | Michael Coyne | 2017-05-22 | 1 | -8/+15 |
* | | Define path with __dir__ | bogdanvlviv | 2017-05-23 | 1 | -1/+1 |
* | | Fix broken external link in security guide. | Mike Gunderloy | 2017-05-21 | 1 | -1/+1 |
|/ |
|
* | Fix link to rails-ujs | Ryunosuke Sato | 2017-03-30 | 1 | -1/+1 |
* | update guide to reflect browser compatibility for HTTP verbs [ci skip] | Rachel Carvalho | 2017-03-23 | 1 | -2/+2 |
* | Update some jquery-ujs references to rails-ujs | Jon Moss | 2017-03-18 | 1 | -7/+6 |
* | Fix typo in the security guide | bogdanvlviv | 2017-03-12 | 1 | -2/+2 |
* | Merge branch 'master' of github.com:rails/docrails | Vijay Dev | 2016-12-16 | 1 | -1/+1 |
|\ |
|
| * | Remove mention of SafeErb gem [ci skip] | Prathamesh Sonpatki | 2016-11-19 | 1 | -1/+1 |
* | | Remove mention of deprecated SafeERB gem from security docs for now, prior se... | Vipul A M | 2016-11-18 | 1 | -1/+1 |
|/ |
|
* | Remove the word "mongrel" from documents | Ryunosuke Sato | 2016-09-07 | 1 | -1/+1 |
* | [ci skip] Broken links in documentation fix | Rasmus Kjellberg | 2016-08-30 | 1 | -1/+1 |
* | When referring to Rails, be consistent in usage of capitalized form, unless i... | Vipul A M | 2016-08-19 | 1 | -1/+1 |
* | rails -> Rails [ci skip] | Santosh Wadghule | 2016-07-12 | 1 | -1/+1 |
* | cometic updates to security guide - fixes #25058 [ci skip] | Mateusz Konieczny | 2016-05-27 | 1 | -1/+1 |
* | Merge pull request #25052 from matkoniecz/2008_is_not_recent | Jon Moss | 2016-05-17 | 1 | -3/+1 |
|\ |
|
| * | update to make it less obvious that this guide is from 2008/2009 | Mateusz Konieczny | 2016-05-17 | 1 | -3/+1 |
* | | Safari 4 supports http only cookie (#25053) | Mateusz Konieczny | 2016-05-17 | 1 | -1/+1 |
* | | Fix security guide capitalization errors | Jon Moss | 2016-05-16 | 1 | -15/+15 |
|/ |
|
* | Update the Rails security guide | Ralin Chimev | 2016-05-16 | 1 | -2/+2 |
* | [ci skip] Parameter filter performs regular expression partial matching | Andrew Babichev | 2016-03-31 | 1 | -0/+2 |
* | Remove reference to unmaintained plugin/gem | Olivier Lacan | 2016-03-23 | 1 | -1/+1 |
* | Change 'a HTTP' to 'an HTTP' [ci skip] | Santosh Wadghule | 2016-03-03 | 1 | -3/+3 |
* | Fixed grammatical errors in rails docs [ci skip] | Matt Michnal | 2016-02-09 | 1 | -2/+2 |
* | [ci skip] Fix grammar | Abhishek Jain | 2016-02-09 | 1 | -1/+1 |
* | use rails secret in rails guides | Ryo Hashimoto | 2016-02-03 | 1 | -1/+1 |
* | ApplicationRecord documentation pass | Genadi Samokovarov | 2015-12-17 | 1 | -1/+1 |
* | Fix a couple of grammatical errors in security.md | Existent Ltd | 2015-12-16 | 1 | -2/+2 |
* | Merge branch 'master' of github.com:rails/docrails | Vijay Dev | 2015-10-31 | 1 | -1/+1 |
|\ |
|
| * | Improved `KeyError` messages on bang version, since commit https://github.com... | amitkumarsuroliya | 2015-10-11 | 1 | -1/+1 |
* | | Improve readability in CSRF section of guide | Andy Lampert | 2015-10-07 | 1 | -4/+3 |
* | | [ci skip] Change 'an URL' to 'a URL' as URL doesn't have a vowel sound | tanmay3011 | 2015-10-06 | 1 | -2/+2 |
* | | Update text on CSS Injection / Myspace | Sean Collins | 2015-10-03 | 1 | -5/+3 |
|/ |
|
* | Clarify CSRF <script> purpose and protection. Note how to deal with your own ... | Jeremy Daer | 2015-09-16 | 1 | -1/+3 |
* | Improved explanation of the <script> tag CSRF behavior | Anshul Agrawal | 2015-09-14 | 1 | -1/+1 |
* | Merge branch 'master' of github.com:rails/rails | Vijay Dev | 2015-08-24 | 1 | -20/+20 |
|\ |
|
| * | Add bold to lists' titles [ci skip] | Alexey Markov | 2015-08-21 | 1 | -6/+6 |
| * | Small fixes [ci skip] | Alexey Markov | 2015-08-20 | 1 | -12/+6 |
| * | Small fixes [ci skip] | Alexey Markov | 2015-08-17 | 1 | -6/+5 |
| * | Tiny documentation fixes [ci skip] | Robin Dupret | 2015-08-11 | 1 | -1/+6 |
| * | [ci skip] Typo fixed | Dhia Eddine Chouchane | 2015-08-06 | 1 | -1/+1 |
| * | Outdated information about session storage updated [ci skip] | Dhia Eddine Chouchane | 2015-08-06 | 1 | -2/+4 |