Skip to content

HTTPS clone URL

Subversion checkout URL

You can clone with HTTPS or Subversion.

Download ZIP
Commits on Mar 18, 2015
  1. @jroper

    Refactored the way Play access config

    jroper authored
    * Introduced PlayConfig helper which is more suited to idiomatic use of
    Typesafe config
    * Migrated a number of config options from old paths to new paths
    * Removed "modules" from configuration keys
    * Moved more settings to reference.conf
    * Introduced idiom of using "null" rather than blank or no setting for
      default values.
Commits on Oct 28, 2014
  1. @jroper

    Implemented HttpRequestHandler abstraction

    jroper authored
    * Pulled onRequest, routeRequest, filter etc methods out of GlobalSettings,
    and put them into a HttpRequestHandler abstraction.
    * Introduced HttpConfiguration abstraction to abstract out http
      configuration
    * Rewrote Scala documentation on intercepting requests
    * Didn't rewrite Java documentation on intercepting requests - felt a
      bit like yak shaving
Commits on Sep 10, 2014
  1. @jroper

    Made Crypto an injectable component

    jroper authored
    Since this isn't a major component (the Play documentation doesn't
    mention it) I didn't worry about breaking the Java API (the methods are
    no longer static).
    
    Also introduced a SimpleInjector implementation, that is map based, and
    put Crypto in that for the default compile time dependency injection
    components - since this is now the method that Crypto is looked up by,
    for example when validating the session.
Commits on Apr 17, 2014
  1. @jroper
Commits on Apr 2, 2014
  1. @jroper

    Updated the way Play uses application.secret

    jroper authored
    Fixes #1775.
    
    * Play now generates an application secret that is stable to the place
      where the application is running from in dev and test mode.
    * Play will fail to load if application secret is not set or changeme in
      production.
    * Created new SBT tasks for generating and updating the application
      secret.
    * Wrote new docs on the application secret, how configure it, and best
      practices.
    * Updated production documentation to refer to activator.
Commits on Sep 24, 2013
  1. @jroper
Commits on Aug 27, 2013
  1. @jroper

    CSRF improvements

    jroper authored
    * Refactored CSRF handling
    * Allowed better script/ajax integration
    * Allowed per action CSRF handling
    * Fixed BREACH vulnerability
    * Added documentation for CSRF
    * Made action builders more composable
Commits on Jul 22, 2013
  1. @jroper

    Crypto improvemets

    jroper authored
    * Added comprehensive docs on the algorithms used by the Crypto library,
      and consequences of using those algorithms.
    * Made the JSSE provider and AES encryption transformation algorithm
      configurable.
Commits on Sep 27, 2012
  1. @jroper
Something went wrong with that request. Please try again.