Skip to content

HTTPS clone URL

Subversion checkout URL

You can clone with HTTPS or Subversion.

Download ZIP
Commits on Apr 24, 2013
  1. Santiago Pastorino
  2. Santiago Pastorino
  3. Santiago Pastorino

    Update .travis.yml

    spastorino authored
Commits on Apr 22, 2013
  1. Santiago Pastorino

    prevent crash when cookie doesn't contain "--"

    spastorino authored
    This backports 881ce76 so that rack
    won't crash when there isn't a "--" in the rack_session cookie
    
    Fixes #523
  2. Santiago Pastorino
Commits on Feb 8, 2013
  1. James Tucker

    Bump version number

    raggi authored
  2. James Tucker
Commits on Feb 7, 2013
  1. James Tucker

    Use secure_compare for hmac comparison

    raggi authored
     * Closes CVE-2013-0263
  2. James Tucker

    Add secure_compare to Rack::Utils

    raggi authored
    Conflicts:
    	test/spec_utils.rb
Commits on Jan 13, 2013
  1. James Tucker

    Bump version

    raggi authored
  2. James Tucker
  3. James Tucker
  4. James Tucker

    Squash warnings in spec_auth

    raggi authored
  5. James Tucker

    Reimplement auth scheme fix

    raggi authored
     * Add Rack::Auth.add_scheme to enable folks to fix anything that breaks
     * Add common auth schemes, MS ones, AWS ones, etc are missing, as unlikely
     * Checked Rails - they don't use our authorization code
     * Checked Warden - uses rails
     * Checked Omniauth - uses rails
     * Checked doorkeeper - users rails
     * Checked rack-authentication - does it's own thing
     * Checked warden-oauth - doesn't do headers
     * Checked devise - uses rails
     * Checked oauth2-rack - header creation only
     * Checked rack-oauth2-server - does it's own thing
     * Probably missed a bunch, but that'll have to do
Commits on Jan 7, 2013
  1. James Tucker
  2. James Tucker

    Bump to 1.3.8

    raggi authored
  3. James Tucker

    multipart/parser: avoid unbounded #gets method

    Eric Wong authored raggi committed
    Malicious clients may send excessively long lines
    to trigger out-of-memory errors in a Rack web server.
  4. James Tucker

    Bump to 1.3.7

    raggi authored
Commits on Jan 6, 2013
  1. James Tucker

    Update README based on master

    raggi authored
Commits on Jan 4, 2013
  1. Sokolov Yura James Tucker

    Fix parsing multiple ranges

    funny-falcon authored raggi committed
    Fix parsing miltiple ranges in HTTP_RANGE header according to w3 rfc2616 (according to last example in sec14.35.1 http://www.w3.org/Protocols/rfc2616/rfc2616-sec14.html#sec14.35.1 ) (according to BNF rules in http://www.w3.org/Protocols/rfc2616/rfc2616-sec2.html#sec2.1 )
  2. James Tucker
  3. James Tucker

    Refactor spec_cascade and spec_head

    raggi authored
     * StringIO is a better choice than a struct here.
  4. James Tucker

    Rack::Response now conforms to body.close SPEC

    raggi authored
     * Previously 204, 205 and 304 bodies were not closed correctly.
  5. James Tucker

    Rack::Head now conforms to body.close SPEC

    raggi authored
    Conflicts:
    	test/spec_head.rb
  6. James Tucker
  7. James Tucker

    Clarify the body.close spec section

    raggi authored
     * This item is frequently missed, including in core.
     * This is not a change in semantic requirement, and does not update the SPEC
       version.
  8. James Tucker
  9. Zachary Scott James Tucker

    Rack::BodyProxy#each, fixes rack/rack#434

    zzak authored raggi committed
  10. James Tucker
  11. James Tucker
  12. Zachary Scott James Tucker

    rescue Errno::ESRCH for windows, fixes #391

    zzak authored raggi committed
  13. Christian Neukirchen James Tucker

    Add redrawn logos by Zachary Scott

    chneukirchen authored raggi committed
    Date: Mon, 22 Oct 2012 10:29:22 -0400
    Message-ID: <CAH6G9XNkVkUWh9JPT9HuHzJ4KmRNoPSr8ov3q0rgzH3b=u3cGw@mail.gmail.com>
    
    On Mon, Oct 22, 2012 at 10:17 AM, Christian Neukirchen
    <chneukirchen@gmail.com> wrote:
    > Is it ok to put the other files as MIT license into contrib/?
    > (Perhaps add a copyright message to the .svg)
    
    Whatever you want, they're all yours.
    Thanks!
  14. Konstantin Haase James Tucker

    Update years in license

    rkh authored raggi committed
  15. ITO Nobuaki James Tucker

    Use backport of URI module even on ruby 1.9.2-p320.

    dayflower authored raggi committed
  16. ITO Nobuaki James Tucker

    Added missing dependence on 'timeout' in test/spec_utils.

    dayflower authored raggi committed
Something went wrong with that request. Please try again.