deac/instiki
1
0
Fork 0
Code Issues Pull requests Releases Wiki Activity
instiki/app/controllers
History
Jacques Distler ab7f429a10 Security: Enforce POSTs 
Spammers can bypass form_spam_protect plugin by using GET instead of POST.

Fix this, by ensuring that unsafe operations are POSTs, rather than GETs.
2007-10-07 17:59:20 +00:00
..
admin_controller.rb Security: Enforce POSTs 2007-10-07 17:59:20 +00:00
application.rb Removed deprecation errors for rails 1.2.3. Corrected test case failures as a result of updated features and functionality 2007-05-07 22:46:00 +00:00
cache_sweeping_helper.rb expire page cache for diff 2006-09-07 02:56:55 +00:00
file_controller.rb Security: Enforce POSTs 2007-10-07 17:59:20 +00:00
revision_sweeper.rb Category lists and WikiReferences restrict to current Web. 2007-09-28 03:57:52 +00:00
web_sweeper.rb Blow away page caches when web settings are changed 2006-04-02 06:17:05 +00:00
wiki_controller.rb Security: Enforce POSTs 2007-10-07 17:59:20 +00:00