 Peter Woo
|
e4a5110dfc
Verify origin header when we can't do verify_authenticity_token
|
7 éve |
|
Peter Woo
|
33bc6a8840
Configure headers using rails_response_headers gem
|
7 éve |
|
Peter Woo
|
83258e28d4
Put all cache config in a YML file
|
7 éve |
|
Peter Woo
|
ffa40d94e4
Revert "Don't cache protected forms"
|
7 éve |
|
Peter Woo
|
a7136c68be
Don't cache protected forms
|
7 éve |
 K. Stewart
|
5615278f6b
Rubocop compliance
|
7 éve |
|
Peter Woo
|
368b87539f
Save url for redirect after admins enter strong password
|
8 éve |
|
Peter Woo
|
fb22714546
Do ahoy visit tracking via image tag embedded in page
|
8 éve |
|
Peter Woo
|
bf3c9c5bcb
Dont inclue Cookie in Vary header
|
8 éve |
|
Peter Woo
|
6890afc2c9
Set Vary: Accept-Encoding, Accept-Language, Cookie
|
8 éve |
 TheNotary
|
dbfd2c07f0
added 'private' to cache disablement headers
|
9 éve |
 TheNotary
|
e8800150f8
Merge pull request #62 from TheNotary/tried-documenting-cors
|
9 éve |
|
TheNotary
|
88f07023e9
documented cors method
|
9 éve |
|
TheNotary
|
b930a9b32e
[security] When users are promoted admin, a password check is imposed on them.
|
9 éve |
|
TheNotary
|
c72d06d7bb
[security] dashboard page now sends headers telling browser not to cache it
|
9 éve |
 William Budington
|
9debd9854a
Moving sanitize_filename to helper
|
9 éve |
|
TheNotary
|
bf08b52afb
created friendly file name for CSV exports of petitions
|
9 éve |
|
William Budington
|
9b210830a7
Initial commit: open sourcing
|
9 éve |
