Displaying 20 results from an estimated 50000 matches similar to: "where does rails pull the session id from the cookie and connect the request with the session?"
2006 Feb 11
2
Session ID in a cookie?
I''ve been looking around for how to store the session ID in a cookie.
The "Agile Web Development with Rails" books seems to indicate that this
is done by default with Rails. But I don''t see a cookie being set in my
browser. (yeah, they''re enabled)
I poked through the RForum code to find something referencing "cookies"
but nothing came up.
Does
2008 Aug 21
0
session cookie missing
I am running RAILS 1.2.6 with apache balancing between a cluster of
mongrel processes. It appears that intermittently the server is not
receiving the session cookie from the browser for certain users.
Wondering what situations could cause this... I know one is if the
user has cookies turned off. Are there other situations where this
could arise? The net effect is that users experiencing this
2012 Oct 30
0
Can't set a secure session cookie
I''m trying to set the session cookie secure flag to true. I added the
following to my environments/production.rb
ActionController::Base.session_options[:secure] = true
In the production mode I don''t see the set-cookie header in the server
response (I''m using the Tamper Data Firefox tool to view the traffic). I
tried removing all cookies, manually setting the domain
2006 Mar 30
0
Making the session cookie persistent
Searching gmane, I''ve found many discussions on the subject, but never a
definitive answer. How can I make the session cookie (i.e., the cookie where
rails keeps the session ID) persistent?
-- Pazu
2007 Oct 05
8
Cookie session handling?
Hi,
I and a few folks on #camping thought it would be nice to have either
cookie based or file based session handling. This would eliminate the
need for creating a sessions table in the database (or a sequence),
which feels too heavy for a lightweight framework like Camping anyway.
Plus, we can more easily avoid nasty adapter errors. :)
The general consensus was to create a separate
2006 Mar 03
2
Accessing cookie and session objects
Is it possible to directly access session and cookie objects from within
a Model? When I try to read the session object in my User Model I get
the following error:
NameError (undefined local variable or method `session'' for User:Class):
I could pass attributes taken from the session into my method in the
User Model, but this seems to go against DRY.
-Lindsay
--
Posted via
2007 Mar 30
0
Storing an order object in a cookie based session
I have a simple e-commerce store and am running into a problem with the
edge rails cookie based sessions.
What I am trying to do is make the customer fill in their info, and
click "Review my Order". The order object is contructed, and stored in
the session (if it passes validation). The is sent to another page
where they can confirm all their info and press the "finalize
2008 May 27
1
session question - unique identifier in cookie store?
Hi,
I recently switched to the cookie session store for my rails app, and I am
wondering how I can access some kind of unique identifier for each session
between requests. It used to be (when I was using active record store) that
the session id was set and that string didn''t change between requests. Now,
of course, the session id does change between requests because that is where
the
2007 Mar 01
4
Cookie based session management problems
Edge has a change in default behaviour where sessions are stored as
cookies instead of in the file system. This was a pleasant surprise when
I synced up, fired up my app, and nothing worked. Ah, life on the edge.
I''m sure I''m just missing something, but I can''t get sessions to survive
the first redirect. I added the following code to environment.rb, based
on
2007 Aug 17
1
Cookie Sessions in Merb?
I like the cookie sessions that Rails edge has - they make sense,
they''re fast, easy.
For those that don''t know: the default session mechanism is to give
developers a Hash called session. To store this object between
requests it Marshals the session object and sends the object itself
(now as a bitstream) back to clients to store in their cookie file. To
prevent users from
2005 Mar 05
4
''Session id'' hacking?
> Because you mentioned "cookie-hacking": it is very easy to
> take over a rails-session if you know the value of the
> session-cookie. It is not possible to prevent that easily,
> you can just make it harder by encrypting the whole session
> (right from the beginning when the user enters the site,
> and the cookie is created) by using https.
https will encrypted
2006 Apr 18
1
''depot''app, trouble with session / cookies
Many of you probably know the ''depot'' app from the ''Agile Rails
development'' book.
When the view changes from ''Store'' to ''display_cart,'' a session
containing the shopping-cart (:cart) is supposed maintain the ''cart''
between calls, but when the display_cart stub view shows up, I have
always ZERO elements
2013 Jul 14
2
Rails 4: Session Expiry?
I''ve been Googling this question for the past few hours, and I think it''s
time I simply ask this question myself.
I just made the switch from Rails 3.2 to Rails 4. I''m trying to make sure
I''m as up-to-speed as possible on security issues, and I''m concerned about
sessions right now. It looks like Rails 4 has moved away from supporting
really
2008 Sep 14
0
How to get session's cookie string
Hi,everyone!
I have a problem:
After using session[:foo]=foo change my session, I want to know what
the new "session_key" cookie value would be before I response. I tried
session.to_s and session.encode but didn''t work.
Thanks in advance:-)
--~--~---------~--~----~------------~-------~--~----~
You received this message because you are subscribed to the Google Groups "Ruby
2012 Sep 19
1
scraping with session cookies
Hi, I am starting coding in r and one of the things that i want to do is to
scrape some data from the web.
The problem that I am having is that I cannot get passed the disclaimer
page (which produces a session cookie). I have been able to collect some
ideas and combine them in the code below but I dont get passed the
disclaimer page.
I am trying to agree the disclaimer with the postForm and write
2012 Mar 08
0
Safari Version 5.1.3 (7534.53.10) Browser problem --- removing cookie on OS X Lion 10.7.3 (11D50b) when still valid
Hi All,
Hope this note helps the newbies to Rails
As I''m new to Rails, I''d like to share how I tracked down Safari''s
dropping of my cookie.
My Applebug no: 11003492 registered 7 March/2012
My development platform:
MacPro running rails 3.1.1 on OS X Lion 10.7.3 (11D50b)
Problem:
Firefox worked as programmed but switching to Safari my
current_user_token kept in the
2007 Feb 05
2
adding a cookie
hi there,
I''m not sure if it is better to use the ml or the forum so I ended to
post on both ...
I''m trying to login into a page that is using javascript to set a cookie:
<script language="JavaScript"> {text "\n" " \n" " \n" " document.cookie
= ''vhp_js=v995105608h85339294p;path=/;domain=.venere.com;expire=0'';
2007 Mar 30
7
Some additional attacks on Cookie Session
Aside from the replay attacks discussed, there are some other attack
vectors on the cookie_session store.
I appreciate (and admire!) Jeremy''s good humor on all of this:
> Planting the seed here led to quick ripening and plenty of pesticide.
> Thanks for the fish, all.
>
> jeremy
Anyway, here''s what we came up with:
1. Brute Force
SHA512 can be computed _very_ fast.
2006 Jan 03
0
how to send cookie value from rails app to browser - newbie
Hi
I am writing a multilingual app, now from sasa''s ruby
gettext<http://manuals.rubyonrails.com/read/chapter/105>instructions,
i have made it so far that it works if i manually type alsong
with the url ?lang=en or ?lang=fr , but i don''t know how to have rails do
that automatically , i tried to read some material on cookies and sessions ,
but could not understand it
2018 Dec 18
1
[PATCH] virtio-ccw: diag 500 may return a negative cookie
If something goes wrong in the kvm io bus handling, the virtio-ccw
diagnose may return a negative error value in the cookie gpr.
Document this.
Signed-off-by: Cornelia Huck <cohuck at redhat.com>
---
Even if the virtio spec is the correct place to specify what diag 500
subcode 3 does, we also should mention here that the cookie may be
an error.
---