Peter Jones 2a986200b9 Bug: Earlier Check for Session in Forgery Protection ...

The session is used by the form_authenticity_token method before it is
tested to be valid.  This patch moves a few lines around so that the
session is validated first.

Without this patch, if you try to use forgery protection with sessions
turned off, you get this exception message:

  undefined method `session_id' for {}:Hash

The patch includes a test that can be used to see this behavior before
the request_forgery_protection.rb file is patched to fix it.

2008-05-11 13:27:34 -05:00

actionmailer

Merge docrails:

2008-05-09 10:40:50 +01:00

actionpack

Bug: Earlier Check for Session in Forgery Protection

2008-05-11 13:27:34 -05:00

activemodel

Merge docrails:

2008-05-09 10:40:50 +01:00

activerecord

Merge docrails:

2008-05-09 10:40:50 +01:00

activeresource

Merge docrails:

2008-05-09 10:40:50 +01:00

activesupport

Merge docrails:

2008-05-09 10:40:50 +01:00

railties

Fix generate_app_doc task (Jaroslaw) [#70 state:resolved]

2008-05-11 13:20:53 -05:00

.gitignore

preventing generated documentation from being picked up by git. [#37 state:resolved]

2008-04-23 20:27:23 +12:00

cleanlogs.sh

Ignore debug logs and ensure ActiveResource's log is cleaned up.

2008-04-16 13:17:03 -05:00

pushgems.rb

Testing commits

2008-04-10 22:09:13 -05:00

Rakefile

Toplevel test task uses the same rake it was invoked with

2007-12-18 21:12:45 +00:00

release.rb

Removed query cache rescue as it could cause code to be run twice (closes #10408) [DHH]

2007-12-07 13:34:06 +00:00

Description

No description provided

85 MiB

Languages

Ruby 97.9%

CSS 1.5%

HTML 0.5%