Permalink
Commits on Mar 23, 2014
  1. Rack::SSL 1.4.1

    committed Mar 23, 2014
  2. Merge branch '1.3.x'

    Conflicts:
    	lib/rack/ssl.rb
    	rack-ssl.gemspec
    committed Mar 23, 2014
  3. Rack::SSL 1.3.4

    committed Mar 23, 2014
  4. Merge pull request #34 from josh/skip-uri-validation

    Skip URI parsing Request#url
    committed Mar 23, 2014
Commits on Mar 21, 2014
  1. Skip URI parsing Request#url

    URI may fail to parse some legit URL paths
    committed Mar 21, 2014
Commits on Mar 17, 2014
  1. Rack::SSL 1.4.0

    committed Mar 17, 2014
  2. Merge pull request #29 from karmi/patch-1

    Added more installation/usage instructions into the README
    committed Mar 17, 2014
  3. Merge pull request #31 from gomore/master

    Handle bad URIs gracefully
    committed Mar 17, 2014
Commits on Mar 14, 2014
  1. Update test 404 -> 400

    chopmo committed Mar 14, 2014
  2. Include Content-Type in 400 response

    To stay compatible with old Rack versions.
    chopmo committed Mar 14, 2014
  3. Merge pull request #27 from gbuesing/hstsfix

    As per spec, don't include STS header in non-https responses
    committed Mar 14, 2014
  4. Merge pull request #23 from jordimassaguerpla/master

    add license information to the gemspec
    committed Mar 14, 2014
Commits on Mar 13, 2014
Commits on Aug 24, 2013
Commits on Jul 9, 2013
  1. Handle bad URIs gracefully.

    Some adapters (i.e. jruby-rack) will pass through bad URIs, then display
    the resulting exception. This creates an attack vector for XSS attacks.
    xaviershay committed Jul 9, 2013
Commits on Jun 24, 2013
Commits on Feb 6, 2013
  1. add license information to gemspec

    this way we can use it with rubygems.org API
    jordimassaguerpla committed Feb 6, 2013
Commits on Jan 29, 2013
  1. Rack::SSL 1.3.3

    committed Jan 29, 2013
  2. Merge pull request #21 from rkh/redirect-307

    use status 307 for anything but GET or HEAD
    committed Jan 29, 2013
Commits on Sep 26, 2012
  1. Revert "Merge pull request #7 from bartt/master"

    This reverts commit 6a6c15d, reversing
    changes made to 239e2d4.
    committed Sep 26, 2012
Commits on Jun 10, 2011
  1. Merge pull request #7 from bartt/master

    Also allow the SSL port to be specified
    committed Jun 10, 2011
Commits on Jun 3, 2011
  1. - Add :port to options

    Bart Teeuwisse committed Jun 3, 2011
Commits on Mar 24, 2011
  1. Rack::SSL 1.3.2

    committed Mar 24, 2011
  2. Rack::SSL 1.3.1

    committed Mar 24, 2011
  3. Remove deps.rip

    committed Mar 24, 2011
Commits on Mar 23, 2011
  1. Split out the test.

    eric committed Mar 23, 2011
Commits on Feb 16, 2011
  1. Rack::SSL 1.3.0

    committed Feb 16, 2011
  2. Add gemspec

    committed Feb 16, 2011
  3. Merge pull request #2 from qrush/rack-ssl

    ---
    
    So a bug with my last patch was if you accessed a subdomain on http, you got redirected with that subdomain + the subdomain you specified...for example
    
    `http://ssl.example.com => https://ssl.ssl.example.com`
    
    I tried to keep the subdomain option to handle this, but parsing this kind of stuff is hard. Eventually I found https://github.com/pauldix/domainatrix but I dont think this library needs a dependency on it, so I just switched the `:subdomain` option to `:host`.
    committed Feb 16, 2011
  4. Change subdomain to host option

    qrush committed Feb 16, 2011
Commits on Jan 12, 2011
  1. Rack::SSL 1.2.0

    committed Jan 12, 2011