Tags

The following entries are tagged with “csrf”:

Flash uploaders, Rails, cookie based sessions and CSRF: Rack Middleware to the rescue!

Posted by Rob Anderton on December 22nd, 2008 @ 09:0465 comments

Tagged with

It is one of life’s strange coincidences that in the week where Rack middleware was brought firmly into the spotlight in Railsland thanks to the introduction of Metal and the continuing transition of Rails to a Rack application that I finally had a need to write some middleware of my own. Up until now I’ve had a rough understanding of how Rack works and how middleware can used to provide customised processing in a web request but I haven’t actually needed to use it for anything.

Read more of this entry

Recent entries

Archives

  1. May 2011
  2. January 2011
  3. August 2010
  4. July 2010
  5. April 2010
  6. January 2010
  7. November 2009
  8. September 2009
  9. August 2009
  10. July 2009
  11. June 2009
  12. May 2009
  13. April 2009
  14. March 2009
  15. February 2009
  16. December 2008
  17. November 2008
  18. September 2008
  19. August 2008
  20. July 2008
  21. June 2008
  22. May 2008
  23. April 2008
  24. March 2008
  25. February 2008
  26. January 2008
  27. December 2007
  28. November 2007

Tags

  1. 37signals
  2. actioncontrollerdispatcher (nameerror)
  3. actionview
  4. active messaging
  5. activerecord
  6. activesupport
  7. actverecord
  8. aes
  9. aggregation
  10. ajax
  11. akismet
  12. amazon
  13. amazon sqs
  14. ami
  15. apache
  16. api
  17. apple
  18. apr
  19. apr-util
  20. async
  21. attachments
  22. attachment_fu
  23. attr_accessible
  24. auto scaling
  25. autotest
  26. availability
  27. aws
  28. backgroundrb
  29. beanstalkd
  30. bindings
  31. bj
  32. block
  33. branding
  34. buckets
  35. bug
  36. bugmash
  37. cache
  38. caching
  39. callbacks
  40. cancer research uk
  41. cdn
  42. centos
  43. charity
  44. cloud
  45. cloudfront
  46. clusters
  47. column information
  48. columns
  49. community
  50. company name
  51. compatibility
  52. compiler
  53. composed_of
  54. config.ru
  55. consultancy
  56. content
  57. content delivery
  58. controller
  59. convert
  60. cookies
  61. csrf
  62. css
  63. data warehouse
  64. database
  65. dates
  66. defensio
  67. deployment
  68. design
  69. development
  70. dhtml
  71. docrails
  72. documentation
  73. donations
  74. drdb
  75. duplicate key
  76. ebs
  77. ec2
  78. elastic
  79. elastic block store
  80. elastic load balancing
  81. encoding
  82. encryption
  83. erb
  84. error
  85. european
  86. events
  87. exalead
  88. ezcrypto
  89. facebook
  90. fckeditor
  91. feedburner
  92. feeds
  93. ffmpeg
  94. filter
  95. fixes
  96. flash
  97. flickr
  98. flickr api
  99. flickr_fu
  100. fuse
  101. geekup
  102. gems
  103. geocode
  104. git
  105. github
  106. god
  107. great south run
  108. greenplum
  109. growl
  110. hacker
  111. haml
  112. haproxy
  113. helper
  114. hmac
  115. holiday
  116. hooks
  117. hosting
  118. howto
  119. hpricot
  120. html
  121. identity
  122. imagemagick
  123. imagescience
  124. infinidb
  125. infiniteftp
  126. infobright
  127. init.d
  128. insert
  129. invalid authenticity token
  130. italy
  131. javascript
  132. jobs
  133. jquery
  134. json
  135. leeds media
  136. limit
  137. linkrenderer
  138. linux
  139. load balancing
  140. logo
  141. mac
  142. markaby
  143. mass-assignment
  144. memcached
  145. mephisto
  146. messageverifier
  147. messaging
  148. middleware
  149. migrate
  150. migration
  151. model
  152. mod_rails
  153. mod_ruby
  154. monetdb
  155. mongrel
  156. mongrel_cluster
  157. monit
  158. monitoring
  159. mootools
  160. mp3
  161. mq
  162. multiple gems
  163. multiselect
  164. mysql
  165. neon
  166. new site
  167. nginx
  168. observer
  169. offset
  170. open source
  171. opensolaris
  172. openssl
  173. optimisation
  174. pagination
  175. paperclip
  176. parameters
  177. params
  178. passenger
  179. patch
  180. performance
  181. permanentredirect
  182. persistence
  183. persistent storage
  184. persistentfs
  185. php
  186. phusion
  187. plugin
  188. plugins
  189. post commit
  190. post-commit
  191. pow
  192. protomultiselect
  193. prototype
  194. query
  195. queues
  196. quotes
  197. race for life
  198. rack
  199. rails
  200. rails development
  201. rails patch
  202. rails plugin
  203. rails-doc
  204. rails3
  205. rake
  206. refresh
  207. renderer
  208. respond_to
  209. rich text editor
  210. rmagick
  211. ruby
  212. ruby on rails
  213. rubyinline
  214. running
  215. rvideo
  216. s3
  217. s3fs. elasticdrive
  218. scaling
  219. schema
  220. schwarzenegger
  221. scm
  222. search based applications
  223. security
  224. services
  225. session
  226. shorthand
  227. signed
  228. snarl
  229. social
  230. solaris
  231. spam filter
  232. sparrow
  233. specify
  234. sponsorship
  235. sql
  236. sqlite3
  237. sql_logging
  238. starling
  239. starter kit
  240. storage
  241. streaming
  242. subversion
  243. sue ryder care
  244. survey
  245. svn
  246. swfupload
  247. swig
  248. sysadmin
  249. tables
  250. tamper
  251. templates
  252. the webfellas
  253. thewebfellas
  254. thin
  255. thumbnail
  256. time zone
  257. tinymce
  258. tip
  259. tips
  260. to-done
  261. training
  262. transcoding
  263. twitter
  264. tzinfo
  265. ui
  266. uk
  267. uk rails
  268. unsigned
  269. update
  270. uploads
  271. url
  272. ux
  273. validation
  274. version
  275. video
  276. view
  277. vmdk
  278. vmware
  279. webfellas
  280. webfellows
  281. wedding
  282. welcome
  283. widgeditor
  284. will_paginate
  285. win32
  286. windows
  287. wysiwyg
  288. xen
  289. xhtml
  290. xvm
  291. youtube
  292. zenoss
  293. zentest
  294. zfs

Flickr snaps