提交 · cb3181e81e3a0e9d03450c7065fcc226e2e1731c · 张重言 / rails

08 1月, 2013 1 次提交
- S
  Avoid Rack security warning no secret provided · cb3181e8
  由 Santiago Pastorino 提交于 1月 08, 2013
```
This avoids "SECURITY WARNING: No secret option provided to Rack::Session::Cookie."
```
  cb3181e8
03 8月, 2012 1 次提交
- X
  
  load active_support/core_ext/object/blank in active_support/rails · 8f58d6e5
  由 Xavier Noria 提交于 8月 02, 2012
  
  8f58d6e5
05 5月, 2012 1 次提交
- A
  
  session creation methods to a module · 26e7678a
  由 Aaron Patterson 提交于 5月 04, 2012
  
  26e7678a
04 5月, 2012 1 次提交
- A
  
  bread AD::Request::Session to it's own file, consolidate HASH OF DOOM lookups · c4f02295
  由 Aaron Patterson 提交于 5月 03, 2012
  
  c4f02295
03 5月, 2012 10 次提交
- A
  
  extract options finding to a method · 9aa5bb4b
  由 Aaron Patterson 提交于 5月 02, 2012
  
  9aa5bb4b
- A
  
  testing session store behavior · 5b360dbb
  由 Aaron Patterson 提交于 5月 02, 2012
  
  5b360dbb
- A
  
  initialize instance variables · dc2352c5
  由 Aaron Patterson 提交于 5月 02, 2012
  
  dc2352c5
- A
  
  converted session hash to delegation · 1ef527f9
  由 Aaron Patterson 提交于 5月 02, 2012
  
  1ef527f9
- A
  
  session hash imported · 385afd47
  由 Aaron Patterson 提交于 5月 02, 2012
  
  385afd47
- A
  
  oops, forgot some semicolons · c2807fb0
  由 Aaron Patterson 提交于 5月 02, 2012
  
  c2807fb0
- A
  
  remove unused ivar · 8d33be7d
  由 Aaron Patterson 提交于 5月 02, 2012
  
  8d33be7d
- A
  
  use hash fetches to populate the :id value · 6c628831
  由 Aaron Patterson 提交于 5月 02, 2012
  
  6c628831
- A
  
  imported options, switched to object composition · 08307383
  由 Aaron Patterson 提交于 5月 02, 2012
  
  08307383
- A
  * move exception message to exception constructor · 976e7e44
  由 Aaron Patterson 提交于 5月 02, 2012
```
* save original exception
* keep original backtrace
```
  976e7e44
30 4月, 2012 1 次提交
- B
  
  Support cookie jar options for all cookie stores · 41219386
  由 brainopia 提交于 4月 30, 2012
  
  41219386
25 12月, 2011 1 次提交
- S
  
  remove checks for encodings availability · 1e9e88fc
  由 Sergey Nartimov 提交于 12月 25, 2011
  
  1e9e88fc
16 12月, 2011 1 次提交
- J
  
  Get rid of the close checks since we cannot reliably close the session anyway. · d1425725
  由 José Valim 提交于 12月 16, 2011
  
  d1425725
29 8月, 2011 1 次提交
- D
  Split long string into multiple shorter ones · a7202439
  由 Daniel Schierbeck 提交于 8月 29, 2011
```
This makes the code more readable.
```
  a7202439
25 5月, 2011 1 次提交
- J
  
  removed deprecated methods, and related tests, from ActionPack · d182b6ee
  由 Josh Kalderimis 提交于 5月 24, 2011
  
  d182b6ee
24 5月, 2011 1 次提交

Replace references to ActiveSupport::SecureRandom with just SecureRandom, and... · d411c85a

由 Jon Leighton 提交于 5月 23, 2011

Replace references to ActiveSupport::SecureRandom with just SecureRandom, and require 'securerandom' from the stdlib when active support is required.

d411c85a

15 4月, 2011 1 次提交
- A
  
  generated session ids should be encoded as UTF-8 · 199c0bb3
  由 Aaron Patterson 提交于 4月 14, 2011
  
  199c0bb3
04 10月, 2010 2 次提交
- J
  
  Initialize sid should just skip instance variables. · 3986fcb9
  由 José Valim 提交于 10月 04, 2010
  
  3986fcb9
- J
  
  Rely on Rack::Session stores API for more compatibility across the Ruby world. · 50215f95
  由 José Valim 提交于 9月 20, 2010
  
  50215f95
30 9月, 2010 1 次提交
- N
  
  no need to check for nil? · 692f5184
  由 Neeraj Singh 提交于 9月 30, 2010
  
  692f5184
29 9月, 2010 1 次提交
- E
  
  Remove more warnings on AP. · 523f9809
  由 Emilio Tagua 提交于 9月 28, 2010
  
  523f9809
14 9月, 2010 1 次提交
- W
  
  Only send secure cookies over SSL. · 9cd094b8
  由 W. Andrew Loe III 提交于 9月 13, 2010
  
  9cd094b8
29 7月, 2010 1 次提交

Revert "Avoid uneeded queries in session stores if sid is not given." · 0f0bdaea

由 José Valim 提交于 7月 29, 2010

First step to merge Rails and Rack session stores. Rack always expects to receive the SID since it may have different behavior if the SID is nil.

This reverts commit e210895b.

0f0bdaea

18 7月, 2010 2 次提交
- J
  
  Set session options id to nil is respected and cancels lazy loading. · 291adcd5
  由 José Valim 提交于 7月 18, 2010
  
  291adcd5
- J
  
  Avoid uneeded queries in session stores if sid is not given. · e210895b
  由 José Valim 提交于 7月 18, 2010
  
  e210895b
02 7月, 2010 1 次提交
- A
  porting session.clear fix to master branch. [#5030 state:resolved] · f8720a04
  由 Aaron Patterson 提交于 7月 01, 2010
```
Signed-off-by: NJeremy Kemper <jeremy@bitsweat.net>
```
  f8720a04
28 6月, 2010 1 次提交

Fixed that an ArgumentError is thrown when request.session_options[:id] is... · ebee77a2

由 Michael Lovitt 提交于 6月 27, 2010

Fixed that an ArgumentError is thrown when request.session_options[:id] is read in the following scenario: when the cookie store is used, and the session contains a serialized object of an unloaded class, and no session data accesses have occurred yet. Pushed the stale_session_check responsibility out of the SessionHash and down into the session store, closer to where the deserialization actually occurs. Added some test coverage for this case and others related to deserialization of unloaded types.

[#4938]
Signed-off-by: NJosé Valim <jose.valim@gmail.com>

ebee77a2

26 6月, 2010 1 次提交
- J
  
  Do not mark the session as loaded if an error happened while doing it. · 01472b52
  由 José Valim 提交于 6月 25, 2010
  
  01472b52
25 6月, 2010 3 次提交

Calling exists? in the session store, without checking for stale sessions, was... · 21c99e93

由 José Valim 提交于 6月 25, 2010

Calling exists? in the session store, without checking for stale sessions, was causing the cookie store to panic because we need to unpack the whole session to get its key. This commit fixes this issue and also caches exists calls for performance improvements.

21c99e93

Make sure that Rails doesn't resent session_id cookie over and over again if... · 617e9465

由 Prem Sichanugrist 提交于 6月 25, 2010

Make sure that Rails doesn't resent session_id cookie over and over again if it's already there [#2485 state:resolved]

This apply to only Active Record store and Memcached store, as they both store only the session_id, which will be unchanged, in the cookie.
Signed-off-by: NJosé Valim <jose.valim@gmail.com>

617e9465

Avoid deserializing cookies too early, which causes session objects to not be... · d69ebb84

由 José Valim 提交于 6月 24, 2010

Avoid deserializing cookies too early, which causes session objects to not be available yet. Unfortunately, could not reproduce this in a test case.

d69ebb84

24 6月, 2010 1 次提交
- M
  Sessions should not be created until written to and session data should be destroyed on reset. · 49f52c3d
  由 Michael Lovitt 提交于 6月 22, 2010
```
[#4938]
Signed-off-by: NJeremy Kemper <jeremy@bitsweat.net>
```
  49f52c3d
11 6月, 2010 4 次提交
- R
  
  Took out the domain option logic to cookies.rb. · f9913266
  由 Rizwan Reza 提交于 6月 11, 2010
  
  f9913266
- R
  
  Moved Domain regexp to a constant and added comments. · 5609149d
  由 Rizwan Reza 提交于 6月 11, 2010
  
  5609149d
- R
  
  The previous commit didn't work with complex domains, which is now fixed. · edbb78d6
  由 Rizwan Reza 提交于 6月 11, 2010
  
  edbb78d6
- R
  Add support for multi-subdomain session by setting cookie host in session... · 44830ead
  由 Rizwan Reza 提交于 6月 11, 2010
```
Add support for multi-subdomain session by setting cookie host in session cookie so you can share session between www.example.com, example.com and user.example.com. [#4818 state:resolved]

This reverts commit 330a8907.
```
  44830ead