Permalink
Commits on Apr 10, 2014
  1. Merge pull request #30 from rnhurt/master

    Xylakant committed Apr 10, 2014
    updated README.md
  2. updated README.md

    rnhurt committed Apr 10, 2014
    Added some information around installation and requiring specific strategies.  Not knowing this caused me a day of poking around trying to figure out why my project wasn't working.  :(
Commits on Apr 8, 2013
  1. Merge pull request #26 from tdegrunt/master

    Xylakant committed Apr 8, 2013
    Day of the month should be zero-padded, not blank-padded
  2. don't install yardoc on travis

    Xylakant committed Apr 8, 2013
    rdiscount install seems to break under some circumstances and we don't need that to run the tests.
  3. Merge pull request #23 from budnik/master

    Xylakant committed Apr 8, 2013
    Typo in test.
Commits on Apr 6, 2013
  1. Updated tests

    tdegrunt committed Apr 6, 2013
Commits on Oct 22, 2012
  1. Fixed typo

    budnik committed Oct 22, 2012
Commits on Oct 9, 2012
  1. Merge pull request #22 from fxposter/master

    Xylakant committed Oct 9, 2012
    Pass method and headers properly in Faraday middleware
Commits on Oct 8, 2012
  1. Bump to 0.6.3

    Xylakant committed Oct 8, 2012
    * Update gemspec
    * Update changelog
  2. Merge pull request #20 from gregory-m/remove-addressable

    Xylakant committed Oct 8, 2012
    Removed addressable gem
  3. Fixed Singer to work with Faraday

    gregory-m committed Oct 8, 2012
    Also added Faraday integration test to avoid similar errors in the future.
Commits on Oct 6, 2012
  1. Removed addressable gem

    gregory-m committed Oct 6, 2012
Commits on Jul 9, 2012
  1. Wrap and roll release 0.6.2

    Xylakant committed Jul 9, 2012
    * Prevent timing sidechannel attacks, see #16
    * Fix missing default timestamp, thanks to @darrinholst. (see PR #17)
  2. Change method for comparing the computed and presented signature to p…

    Xylakant committed Jul 9, 2012
    …revent sidechannel attacks
    
    Use a less efficient method for comparing the computed and the presented signature that compares
    all characters in pretty much all cases. This prevents timing sidechannel attacks that would allow
    the attacker to efficiently guess the signature with less than brute-force effort.
    
    Fixes #16
  3. Implement the default ttl value.

    darrinholst committed with Xylakant Jun 14, 2012
    The documentation says that the default ttl is 900 seconds, however
    there was nothing in there that did that. This sets the default to 900
    seconds if a ttl was not passed in the config.
Commits on May 21, 2012
  1. Fixed up documentation

    Xylakant committed May 21, 2012
    replaced outdated usage of {scheme} by the correct {auth_scheme} in the
    readme file
  2. Updated API doc

    Xylakant committed May 21, 2012
    Clarify that the extra_auth_params key will be ignored for header-based
    auth.
  3. Fixed a minor typo

    Xylakant committed May 21, 2012
Commits on Apr 13, 2012
  1. Version bump to 0.6.1

    skade committed Apr 13, 2012
  2. reorganize tests so that they're no dependent on the order in which a…

    Xylakant committed Apr 13, 2012
    …dressable serializes the query parameters
    
    this should fix tests failing on travis which do not fail on my local build
  3. Merge pull request #15 from Asquera/feature/ignore-parameters

    Xylakant committed Apr 13, 2012
    Add option to ignore parameters for signing.
  4. Merge branch 'master' into feature/ignore-parameters

    Xylakant committed Apr 13, 2012
    Conflicts:
    	lib/hmac/signer.rb
Commits on Apr 12, 2012
  1. Short-circuit validate_url_signature if auth_params are missing

    skade committed Apr 12, 2012
    It crashed before...
Commits on Feb 2, 2012
  1. Change Changelog

    skade committed Feb 2, 2012
  2. Add "ignore_params" option

    skade committed Feb 2, 2012
Commits on Feb 1, 2012
  1. Move defaults to a constant

    skade committed Feb 1, 2012