Ecosyste.ms: Issues

An open API service for providing issue and pull request metadata for open source projects.

GitHub / tobmatth/rack-ssl-enforcer issues and pull requests

#107 - use 'HTTP_FLY_FORWARDED_PROTO' to determine scheme.

Pull Request - State: open - Opened by jubishop over 3 years ago

#106 - Increase the default HSTS max-age to 2 years

Issue - State: open - Opened by toncid over 4 years ago

#105 - Make middleware thread-safe

Pull Request - State: open - Opened by titanous about 5 years ago - 2 comments

#104 - Does rack-ssl-enforcer have support for ssl client verification?

Issue - State: closed - Opened by watta90 about 5 years ago - 1 comment

#103 - Middleware use vs. insert_before

Issue - State: open - Opened by toncid almost 6 years ago - 1 comment

#102 - Load balancer health check redirected; not making it to the app

Issue - State: closed - Opened by gsisson almost 7 years ago - 5 comments

#100 - README: Typo

Pull Request - State: closed - Opened by olleolleolle about 7 years ago

#99 - Travis: jruby-9.1.13.0

Pull Request - State: closed - Opened by olleolleolle about 7 years ago - 2 comments

#98 - HSTS on Redirects

Pull Request - State: closed - Opened by egyptiankarim over 7 years ago - 5 comments

#97 - Travis: Use jruby-9.1.10.0 in CI matrix

Pull Request - State: closed - Opened by olleolleolle over 7 years ago - 1 comment

#96 - update instructions for configuring nginx behind ELB, add for sinatra

Pull Request - State: closed - Opened by bmishkin over 7 years ago - 1 comment

#95 - Is there a changelog?

Issue - State: closed - Opened by joelpresence almost 8 years ago - 2 comments

#94 - Travis: use JRuby 9.1.7.0

Pull Request - State: closed - Opened by olleolleolle almost 8 years ago - 4 comments

#93 - README: Use shiny SVG badge

Pull Request - State: closed - Opened by olleolleolle almost 8 years ago - 1 comment

#92 - HSTS Implementation

Issue - State: closed - Opened by 23ranjan about 8 years ago - 1 comment

#91 - Does not set session cookie as secure

Issue - State: closed - Opened by vipulvkp about 8 years ago - 6 comments

#90 - Specify to insert SslEnforcer before the Cookies middleware in Rails

Pull Request - State: closed - Opened by DimaSamodurov about 8 years ago - 1 comment

#89 - HSTS and secure cookies w/o redirect?

Issue - State: closed - Opened by n3bulous over 8 years ago - 2 comments

#88 - use_redirect always forcing redirect, even for HTTPS

Issue - State: open - Opened by aripollak over 8 years ago - 2 comments

#87 - Add example for HSTS preload option on README

Pull Request - State: closed - Opened by camelmasa almost 9 years ago

#86 - Adding MIT license to the gemspec.

Pull Request - State: closed - Opened by reiz about 9 years ago - 1 comment

#85 - ERR_CONNECTION_REFUSED

Issue - State: closed - Opened by Antonio-usa2015 about 9 years ago - 2 comments

#84 - Add HSTS preload option

Pull Request - State: closed - Opened by gorism over 9 years ago

#83 - added Nginx behind Load Balancer section to readme

Pull Request - State: closed - Opened by gnitnuj over 9 years ago

#82 - Infinite redirects behind AWS ELB

Issue - State: closed - Opened by gnitnuj over 9 years ago - 5 comments

#81 - Issue with Redirects

Issue - State: closed - Opened by irmiller22 over 9 years ago - 3 comments

#80 - Issue with IE only... strict true not working

Issue - State: closed - Opened by jgrannas over 9 years ago - 3 comments

#79 - POST requests

Issue - State: closed - Opened by florrain over 9 years ago - 5 comments

#78 - How to handle URI::InvalidURIError?

Issue - State: closed - Opened by PikachuEXE almost 10 years ago - 7 comments

#76 - Do not encode already encoded url parameters when redirecting.

Pull Request - State: closed - Opened by oveddan over 10 years ago

#74 - Enable ignore blocks

Pull Request - State: closed - Opened by danielevans over 10 years ago - 1 comment

#73 - Release new version! <3

Issue - State: closed - Opened by rwojsznis over 10 years ago - 2 comments

#72 - Support for ruby 2.0 and Rails 4

Issue - State: closed - Opened by oveddan over 10 years ago - 2 comments

#71 - Fixing issue #70 - Running code before redirect not working

Pull Request - State: closed - Opened by abhasg over 10 years ago - 1 comment

#70 - Running code before redirect not working

Issue - State: closed - Opened by abhasg over 10 years ago - 3 comments

#69 - combine strict and non strict behaviour

Issue - State: closed - Opened by mojovski over 10 years ago - 3 comments

#68 - Is there a way to combine mutiple only, multiple ignore with strict

Issue - State: closed - Opened by akashkamboj over 10 years ago - 6 comments

#67 - URI encode before passing to URI object to deal with pathological URIs

Pull Request - State: closed - Opened by tilthouse over 10 years ago - 1 comment

#66 - Add Ruby 2.1.0 to .travis.yml

Pull Request - State: closed - Opened by salimane almost 11 years ago - 1 comment

#65 - Enforcing won't preserve HTTP methods

Issue - State: closed - Opened by hammady almost 11 years ago - 1 comment

#64 - Rack::SslEnforcer options mess up with 'localhost'

Issue - State: closed - Opened by hammady almost 11 years ago - 11 comments

#63 - Ensure exact match for String rules

Pull Request - State: closed - Opened by rymai about 11 years ago

#62 - Is there a way to combine only_hosts & only?

Issue - State: open - Opened by akashkamboj about 11 years ago - 18 comments

#61 - Allow for custom, default, or no body when redirecting

Pull Request - State: closed - Opened by kcm about 11 years ago - 1 comment

#60 - New rubygems release?

Issue - State: closed - Opened by micahwedemeyer about 11 years ago - 2 comments

#59 - Add user agent support

Pull Request - State: closed - Opened by carmstrong over 11 years ago - 6 comments

#57 - allow proc to be called before redirecting fixes #56

Pull Request - State: closed - Opened by oveddan over 11 years ago - 3 comments

#56 - Allow proc to be called before forcing a redirect

Issue - State: closed - Opened by oveddan over 11 years ago
Labels: new feature

#55 - Keep flash on redirect

Pull Request - State: closed - Opened by encyphered over 11 years ago - 12 comments

#54 - force internationalization

Issue - State: closed - Opened by hyperrjas over 11 years ago - 6 comments

#53 - Method + Path combination constraints

Pull Request - State: open - Opened by wyattisimo over 11 years ago - 12 comments

#52 - Add environment constraints

Pull Request - State: closed - Opened by wyattisimo over 11 years ago - 3 comments

#51 - Add environment constraints

Issue - State: closed - Opened by wyattisimo over 11 years ago

#50 - fix bug that was setting arrays as keys in default_options hash

Pull Request - State: closed - Opened by wyattisimo over 11 years ago - 1 comment

#49 - Add test for nested url ignores.

Pull Request - State: closed - Opened by ktusznio over 11 years ago - 1 comment

#48 - @scheme leak across requests

Issue - State: closed - Opened by robd over 11 years ago - 1 comment

#47 - Vertical pipe characters in the URL cause an URI::InvalidURIError

Issue - State: closed - Opened by gmoore over 11 years ago - 6 comments
Labels: bug

#46 - Regex

Issue - State: closed - Opened by bleonard almost 12 years ago - 6 comments

#45 - Update README.md

Pull Request - State: closed - Opened by potomak almost 12 years ago - 2 comments

#44 - Option for HTTP status code for redirection

Pull Request - State: closed - Opened by ochko almost 12 years ago - 1 comment

#43 - SSL :ignore ignored for routable addresses, but works for static addresses

Issue - State: closed - Opened by mattheworiordan almost 12 years ago - 5 comments

#42 - Added some more documentation for nginx - specifically re. passenger

Pull Request - State: closed - Opened by ktopping about 12 years ago - 2 comments

#41 - fix README typo

Pull Request - State: closed - Opened by juno about 12 years ago - 1 comment

#40 - Ignoring certain paths

Pull Request - State: closed - Opened by kylecrum about 12 years ago - 4 comments

#39 - SSL-only, HTTP-only, and mixed

Issue - State: closed - Opened by flivni about 12 years ago - 9 comments

#38 - SSL-only, HTTP-only, and mixed

Issue - State: closed - Opened by flivni about 12 years ago

#37 - Add sinatra/padrino installation instructions.

Pull Request - State: closed - Opened by danpal about 12 years ago - 1 comment

#36 - :strict option + AJAX requests

Issue - State: closed - Opened by blelump over 12 years ago - 7 comments
Labels: needs feedback

#35 - Working on Heroku?

Issue - State: closed - Opened by iesta over 12 years ago - 3 comments

#34 - Redirect not working

Issue - State: closed - Opened by hallmatt over 12 years ago - 4 comments

#33 - Huge cleaning and refactoring

Pull Request - State: closed - Opened by rymai over 12 years ago - 6 comments

#32 - Rewrite of enforce_ssl? and implementation of new options only_methods and except_methods.

Pull Request - State: closed - Opened by volontarian over 12 years ago - 2 comments

#31 - config.middleware.use Rack::SslEnforcer breaks ajax requests

Issue - State: closed - Opened by costajob almost 13 years ago - 2 comments

#29 - Added documentation on nginx/proxy setups

Pull Request - State: closed - Opened by ariejan about 13 years ago - 1 comment

#27 - Update spex

Pull Request - State: closed - Opened by hassox over 13 years ago

#26 - Proper Nginx Config

Issue - State: closed - Opened by ghost over 13 years ago - 6 comments

#25 - Removing warning

Pull Request - State: closed - Opened by honkster over 13 years ago

#24 - Fix Rails 2.3.x projects for (for real this time)

Pull Request - State: closed - Opened by natacado over 13 years ago - 1 comment

#23 - Custom ports, support for Rails 2.3/Rack 1.1

Pull Request - State: closed - Opened by natacado over 13 years ago

#22 - Make secure cookie flag optional

Pull Request - State: closed - Opened by mig-hub over 13 years ago - 2 comments

#21 - :mixed doesn't allow insecure GET

Issue - State: closed - Opened by eostrom over 13 years ago - 11 comments

#20 - Secure cookie flag forced

Issue - State: closed - Opened by mig-hub over 13 years ago - 2 comments

#19 - Issue18

Pull Request - State: closed - Opened by ginty over 13 years ago - 1 comment

#16 - Disable HSTS when using strict

Pull Request - State: closed - Opened by zanker almost 14 years ago

#14 - Option for mixed enforcement

Pull Request - State: closed - Opened by lardawge almost 14 years ago

#13 - Adding support for filtering by domain

Pull Request - State: closed - Opened by saimonmoore almost 14 years ago - 2 comments

#12 - Adding support for filtering by domain

Pull Request - State: closed - Opened by saimonmoore almost 14 years ago

#11 - Add a test to ensure it's possible to redirect all HTTPS requests to HTTP

Pull Request - State: closed - Opened by rymai almost 14 years ago

#10 - Added :except option

Pull Request - State: closed - Opened by pelle almost 14 years ago - 2 comments

#8 - strict and HSTS are incompatible

Issue - State: closed - Opened by dacort almost 14 years ago - 4 comments

#7 - Keep query string

Pull Request - State: closed - Opened by krekoten almost 14 years ago

#5 - Redirect URL should alway use default port for the scheme.

Pull Request - State: closed - Opened by pda about 14 years ago - 1 comment

#4 - Flagged cookies as secure

Pull Request - State: closed - Opened by thibaudgg about 14 years ago - 1 comment

#3 - Params bugs

Pull Request - State: closed - Opened by thibaudgg about 14 years ago

#2 - Bug fixes & Test refactoring

Pull Request - State: closed - Opened by thibaudgg about 14 years ago

#1 - Untitled

Pull Request - State: closed - Opened by thibaudgg about 14 years ago - 1 comment