Neil Matatall
|
bdf08545be
|
Firefox doesn't like default-src
|
2013-02-12 19:33:31 -08:00 |
Neil Matatall
|
029bb1f93c
|
revert some mozilla references
|
2013-02-12 19:09:29 -08:00 |
|
Neil Matatall
|
c7e59d24c0
|
on -> one
|
2013-02-12 19:07:53 -08:00 |
|
Neil Matatall
|
61961f7c83
|
Added history and release notes
|
2013-02-12 18:58:30 -08:00 |
|
Neil Matatall
|
e925c961ed
|
docs and bumps
|
2013-02-12 18:50:19 -08:00 |
|
Neil Matatall
|
bc4aa35c98
|
More flexible configuration
|
2013-02-12 18:46:06 -08:00 |
|
Neil Matatall
|
2103a29206
|
Merge branch 'gh24_use_forward_endpoint'
|
2013-02-12 18:23:38 -08:00 |
|
Neil Matatall
|
23aa9ed1a6
|
Update forward_endpoint use
It actually makes sense now
|
2013-02-12 18:16:21 -08:00 |
|
Neil Matatall
|
b060026ed6
|
Rails 3.0.x support
|
2013-02-12 18:14:09 -08:00 |
|
Neil Matatall
|
8f93c9dd6d
|
Merge pull request #26 from twitter/gh2_auto_require
rename gem for auto-bundler loading
|
2013-02-12 18:11:17 -08:00 |
|
Neil Matatall
|
0345ed47f9
|
rename gem for auto-bundler loading
|
2013-02-12 18:10:51 -08:00 |
|
Neil Matatall
|
77c2748df4
|
Merge pull request #25 from twitter/gh3
Honor settings in application_controller when configure block isn't used...
|
2013-02-12 18:10:01 -08:00 |
|
Neil Matatall
|
720eec6f7b
|
readme
|
2013-02-12 17:41:25 -08:00 |
|
Neil Matatall
|
60bd708089
|
Honor settings in application_controller when configure block isn't used #3
|
2013-02-12 16:21:33 -08:00 |
|
Neil Matatall
|
706db74ff2
|
Merge pull request #14 from twitter/whitelist_data_img_src
Append data: to the img-src directive automatically
|
2013-02-12 15:05:52 -08:00 |
|
Neil Matatall
|
347d0d47a3
|
Merge pull request #22 from dcollazo/gh-15
Replaced references to Firefox with Mozilla
|
2013-02-11 17:59:16 -08:00 |
dcollazo
|
8d6142d112
|
Replaced references to Firefox with Mozilla
|
2013-02-11 15:21:52 -08:00 |
|
Neil Matatall
|
03fa2f75ad
|
Merge pull request #18 from theverything/gh-16-docupdate
Replace w3c references with "webkit" gh-16
|
2013-02-07 20:46:57 -08:00 |
theverything
|
c5da5587e2
|
add w3c back gh-16
|
2013-02-07 20:45:59 -08:00 |
|
theverything
|
ac1186b8ed
|
Remove w3c reference
|
2013-02-07 20:30:39 -08:00 |
|
theverything
|
d2bb3881c8
|
Replace w3c references with "webkit" gh-16
|
2013-02-07 19:53:23 -08:00 |
|
Neil Matatall
|
47da3f253b
|
Prefer initializer over controller config.
|
2013-02-05 16:24:49 -08:00 |
|
Neil Matatall
|
f218c6c296
|
Append data: to the img-src directive automatically
|
2013-02-05 16:19:46 -08:00 |
|
Neil Matatall
|
982d2485f5
|
Merge pull request #13 from jviney/master
CSP endpoint only accepts post requests.
|
2013-02-03 11:46:14 -08:00 |
Jonathan Viney
|
e7cc7fa678
|
CSP endpoint only accepts POST requests. Fixes Rails 4 compatibility.
|
2013-02-03 13:55:25 +13:00 |
|
Neil Matatall
|
2f318b59a4
|
Merge pull request #12 from achiu/add_padrino_example
Add Padrino Example in README
|
2013-02-02 13:09:00 -08:00 |
Arthur Chiu
|
a4bf153fd1
|
add padrino example
|
2013-02-02 00:07:30 -08:00 |
|
Neil Matatall
|
118a66bfe7
|
Merge pull request #11 from twitter/two_headers
Add ability to apply two headers support tuning policies through experimtation
|
2013-02-01 17:11:55 -08:00 |
|
Neil Matatall
|
a296ee1c1d
|
Add sinatra example to README.md
|
2013-01-31 16:10:10 -08:00 |
|
Neil Matatall
|
d1cccc1366
|
Add ability to apply two headers support tuning policies through experimentation
|
2013-01-31 15:42:34 -08:00 |
|
Neil Matatall
|
b70d490810
|
Merge pull request #5 from twitter/bmaland_patches
Better support for sinatra
|
2013-01-26 00:09:11 -08:00 |
|
Neil Matatall
|
f43a46d92d
|
Instead of requiring dependency, only exe if defined
|
2013-01-25 00:18:17 -08:00 |
|
Neil Matatall
|
3f04883d51
|
remove jank, support sinatra better
now that we depend on active_support, we can remove some jank. While we're at it, remove rails-specific code
|
2013-01-25 00:18:09 -08:00 |
Bjørn Arild Mæland
|
4d40200354
|
Add activesupport as a dependency and require AS/dependencies
The gem won't load without it.
|
2013-01-24 23:33:58 -08:00 |
|
Neil Matatall
|
d7588b8eec
|
Update README.md: x-xss-protection on all UAs
|
2013-01-24 23:32:13 -08:00 |
|
Neil Matatall
|
0e4c645d58
|
Update README.md
|
2013-01-24 23:26:05 -08:00 |
|
Neil Matatall
|
ebadff95ad
|
Merge branch 'readme-syntax-highlighting' fixes #4
|
2013-01-24 22:05:01 -08:00 |
|
Neil Matatall
|
d32869995e
|
escape -
|
2013-01-24 21:57:38 -08:00 |
Artur Dryomov
|
ef5e1a8c95
|
Use syntax highlighting in the readme file.
|
2013-01-25 01:27:37 +03:00 |
|
Neil Matatall
|
34f23c81c9
|
Merge branch 'more_cc_cleanup'
|
2013-01-22 16:22:44 -08:00 |
|
Neil Matatall
|
4b4103e199
|
"[skip ci]CodeClimate was hurting my pride, so I made a quick fix"
|
2013-01-22 16:22:29 -08:00 |
|
Neil Matatall
|
850fc81789
|
Merge branch 'cc_refactor'
|
2013-01-22 16:00:34 -08:00 |
|
Neil Matatall
|
efb252cd98
|
CodeClimate was hurting my pride, so I made a quick fix
|
2013-01-22 16:00:25 -08:00 |
|
Neil Matatall
|
ee1dca1dcc
|
[ci skip] Save travis some cycles
|
2013-01-22 15:36:34 -08:00 |
|
Neil Matatall
|
058e58dd17
|
Updated notes on X-XSS-Protection
Not just for IE
|
2013-01-22 15:33:53 -08:00 |
Chris Aniszczyk
|
8816ac4a04
|
Update README.md
|
2013-01-22 15:27:16 -08:00 |
|
Neil Matatall
|
430e7697cd
|
Initial Commit
Signed-off-by: Chris Aniszczyk <zx@twitter.com>
|
2013-01-22 15:21:54 -08:00 |