Permalink
Switch branches/tags
Commits on Jul 26, 2011
  1. Fix path normalisation in Dancer::FileUtils

    This solves a potential directory traversal issue allowing static files to be
    served from a level above the public/ dir, which could be dangerous.
    
    Thanks to Vladimir Lettiev aka crux for reporting this regression.
    bigpresh committed Jul 26, 2011
  2. Condense test to just check no file response for bad URLs.

    Just check that we didn't get a file response.
    
    Previous approach was no good as Dancer::Test::_get_file_response() returns
    undef if there was no file to serve up.
    bigpresh committed Jul 26, 2011
  3. New test t/04_static_file/02_dir_traversal.t

    Test a number of paths to ensure that directory traversal attempts do not
    succeed, and result in a 404.
    bigpresh committed Jul 26, 2011
Commits on Jul 23, 2011
  1. fix some undef problems

    ambs committed Jul 23, 2011
  2. update changes

    ambs committed Jul 23, 2011
  3. Added test for application prefixes

    alexrj committed with ambs Jul 22, 2011
Commits on Jul 22, 2011
  1. explain attributes methods

    ambs committed Jul 22, 2011
Commits on Jul 19, 2011
Commits on Jul 15, 2011
  1. Further rebase

    ambs committed Jul 15, 2011
  2. send_file send data

    ambs committed Jul 7, 2011
Commits on Jul 14, 2011
  1. update changes log

    xsawyerx committed Jul 14, 2011
  2. version bump

    xsawyerx committed Jul 14, 2011
Commits on Jul 10, 2011
  1. bump version to next dev

    xsawyerx committed Jul 10, 2011
Commits on Jul 9, 2011
  1. LoadFile can receive the filehandle, making more sense to lock. Makes…

    … it to work under Windows
    ambs committed Jul 9, 2011
  2. ignore mymeta.json

    ambs committed Jul 9, 2011
  3. instead of checking file size, check file contents, this way they get…

    … printed on smoke test reports
    ambs committed Jul 9, 2011
Commits on Jul 8, 2011
  1. Fixes

    ambs committed Jul 8, 2011