CONFIG at 0fc1a185a418061c06597f032f9a5e551719c1a4 from wycats's merb-core

0fc1a18
all branches
all tags
- v0.9.8
- v0.9.7
- v0.9.6
- v0.9.5
- v0.9.4
- v0.9.3
- v0.9.2
- v0.9.1
- v0.9.0

wycats / merb-core

Run the following if you haven't already:

gem sources -a http://gems.github.com

Install the gem(s):

sudo gem install wycats-merb-core

Description:	Merb Core: All you need. None you don't.
Homepage:	http://www.merbivore.com
Clone URL:	git://github.com/wycats/merb-core.git Give this clone URL to anyone. `git clone git://github.com/wycats/merb-core.git`

Merge branch 'master' of git@github.com:wycats/merb-core

wycats (author)

Tue Mar 04 18:27:53 -0800 2008

commit 0fc1a185a418061c06597f032f9a5e551719c1a4
tree 74e85ec6a354d0d5a091b6b86be81f3649b12440
parent e442ea7787b119a127633ad9c28d57ee2a32505f parent f891d8dbec205bc81eb1bf733f9079025b03a362

merb-core / CONFIG

100644 11 lines (11 sloc) 0.68 kb

raw history

==== Configuration options
:session_id_cookie_only<Boolean>::
  If true, sessions may be passed only through cookies. If false, they may also
  be passed through the session_id_key query param. This might be necessary for
  flash uploaders, which do not pass cookies with file uploads. This can be
  used in conjunction with :query_string_whitelist.
:query_string_whitelist<Array[String]>::
  A list of "controller/action" URLs that should allow session IDs to be passed
  through the query string even if :session_id_cookie_only is set to true. We
  recommend using session.regenerate after any controller making use of this
  in case someone is trying a session fixation attack.