repo.or.cz
/
csrf-magic.git
/
search
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
log
|
graphiclog1
|
graphiclog2
|
commit
|
commitdiff
|
tree
|
refs
|
edit
|
fork
first
·
prev
·
next
Defend against CSS iframe overlay attacks using a frame-breaker.
2008-08-07
Ed
w
ar
d
Z
.
Ya
n
g
Def
e
nd against CSS iframe o
v
erlay attac
k
s usi
n
g a fram
e
.
.
.
Signed-off-by: Edward Z. Yang <
edwardzyang@thewritingpot.com
>
commit
|
commitdiff
|
tree
2008-08-07
Edward
Z
.
Y
a
ng
Add a two hour expiration
o
n
all token
s
.
Signed-off-by: Edward Z. Yang <
edwardzyang@thewritingpot.com
>
commit
|
commitdiff
|
tree
2008-08-07
Edwar
d
Z
.
Y
a
ng
Update README with
Tip
s
/Tricks
.
Signed-off-by: Edward Z. Yang <
edwardzyang@thewritingpot.com
>
commit
|
commitdiff
|
tree
2008-08-07
Edward Z
.
Yang
A
dd na
t
ive support for
'cookie' t
o
kens
.
Als
o
, more
.
.
.
Signed-off-by: Edward Z. Yang <
edwardzyang@thewritingpot.com
>
commit
|
commitdiff
|
tree
2008-08-06
E
d
w
ard Z
.
Ya
n
g
Make IP based tokens work by s
e
nd
i
ng them if the user
.
.
.
Signed-off-by: Edward Z. Yang <
edwardzyang@thewritingpot.com
>
commit
|
commitdiff
|
tree
2008-08-05
Edward Z
.
Yang
A
d
d
version in
f
ormation
.
Signed-off-by: Edward Z. Yang <
edwardzyang@thewritingpot.com
>
commit
|
commitdiff
|
tree
2008-08-05
Edwa
r
d Z
.
Yang
R
emove use
l
ess backgro
u
nd i
n
fo; it'
s
now o
n
t
h
e website
.
Signed-off-by: Edward Z. Yang <
edwardzyang@thewritingpot.com
>
commit
|
commitdiff
|
tree
2008-08-01
E
dward
Z
.
Yang
Fix all
.
php first-ti
m
e
failure
,
imp
r
ove HTML detection
.
.
.
Signed-off-by: Edward Z. Yang <
edwardzyang@thewritingpot.com
>
commit
|
commitdiff
|
tree
2008-08-01
Edward
Z
.
Y
ang
Imp
l
ement dynamic form rew
r
iti
n
g; check headers for
.
.
.
Signed-off-by: Edward Z. Yang <
edwardzyang@thewritingpot.com
>
commit
|
commitdiff
|
tree
2008-08-01
Edward Z
.
Y
a
ng
Implement se
c
ret a
u
to-generation
.
Onl
y
works if this
.
.
.
Signed-off-by: Edward Z. Yang <
edwardzyang@thewritingpot.com
>
commit
|
commitdiff
|
tree
2008-08-01
E
d
w
ard Z
.
Y
an
g
Switc
h
to us
e
{} form
i
n
JS, a
l
so *actual
l
y* implem
e
n
t
.
.
.
Signed-off-by: Edward Z. Yang <
edwardzyang@thewritingpot.com
>
commit
|
commitdiff
|
tree
2008-08-01
Edward Z
.
Yang
Add mo
r
e co
n
figuration options
t
o
PHP
file
,
update
.
.
.
Signed-off-by: Edward Z. Yang <
edwardzyang@thewritingpot.com
>
commit
|
commitdiff
|
tree
2008-07-31
Edward
Z
.
Yang
Further impr
o
ve d
o
cum
e
nt
a
tion
w
ith kno
w
n bu
g
s and todo
.
.
.
Signed-off-by: Edward Z. Yang <
edwardzyang@thewritingpot.com
>
commit
|
commitdiff
|
tree
2008-07-31
Edward Z
.
Ya
n
g
Implemen
t
D
o
jo and
E
xt
JS sup
p
ort
.
Improve
documenta
t
ion
.
Signed-off-by: Edward Z. Yang <
edwardzyang@thewritingpot.com
>
commit
|
commitdiff
|
tree
2008-07-31
Edward Z
.
Yang
Simplify lo
a
ding code by using CsrfMagic
wrapper object
.
Signed-off-by: Edward Z. Yang <
edwardzyang@thewritingpot.com
>
commit
|
commitdiff
|
tree
2008-07-31
Edward Z
.
Yang
Slig
h
t whit
e
space modi
f
ica
t
ion
.
Signed-off-by: Edward Z. Yang <
edwardzyang@thewritingpot.com
>
commit
|
commitdiff
|
tree
2008-07-30
E
dwa
r
d Z
.
Yang
Implement YUI
a
nd swap-in Csrf
M
agi
c
wrap
p
er for X
M
LHttpReque
.
.
.
Signed-off-by: Edward Z. Yang <
edwardzyang@thewritingpot.com
>
commit
|
commitdiff
|
tree
2008-07-30
Edward
Z
.
Yang
Im
p
l
e
ment MooTools,
a
lso im
p
rove
p
r
e
v
ious test code
.
Signed-off-by: Edward Z. Yang <
edwardzyang@thewritingpot.com
>
commit
|
commitdiff
|
tree
2008-07-30
Edward Z
.
Ya
n
g
I
m
p
l
ement P
r
ototype,
r
emove jQuery l
i
b
r
ary, and improve
.
.
.
Signed-off-by: Edward Z. Yang <
edwardzyang@thewritingpot.com
>
commit
|
commitdiff
|
tree
2008-07-30
Edward Z
.
Yang
Initial
c
ommit, implem
e
nts b
a
sic f
o
r
m rewriting,
t
okens
.
.
.
Signed-off-by: Edward Z. Yang <
edwardzyang@thewritingpot.com
>
commit
|
commitdiff
|
tree
