Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Documentation enhancements #1137

Closed
19 tasks
dariocravero opened this issue Mar 18, 2013 · 8 comments
Closed
19 tasks

Documentation enhancements #1137

dariocravero opened this issue Mar 18, 2013 · 8 comments
Labels
documentation enhancement
Milestone
1.0.0

Comments

@dariocravero
Copy link

List of features to document

Components

  • Explain .components.
  • How to change ORM,
  • How to change renderer,
  • How to change styles processor,
  • How to change scripts,
  • How to change database adapter?

...

Testing

  • How to set the current account (or the session in general) while testing controllers#1198.

Let's build this list up! :)
@dariocravero dariocravero mentioned this issue Mar 18, 2013
Closed
@nesquena
Copy link
Member

Awesome, thanks definitely want to help get those fleshed out soon.

@dariocravero
Copy link
Author

And we will! 👯

@Ortuna
Copy link
Member

Ortuna commented Mar 18, 2013

Does this go in padrino-docs ?

@dariocravero
Copy link
Author

It does for now @Ortuna. Until we decide whether we move it to the main repo or not.

@skade
Copy link
Contributor

skade commented Mar 18, 2013

We should especially decide on what system to use. I like middleman alot and would like to get the idea of using something like qed for documentation testing further.

@dariocravero dariocravero mentioned this issue Mar 20, 2013
Closed
@nesquena nesquena mentioned this issue Mar 26, 2013
Closed
This was referenced Mar 28, 2013
Closed
Closed
@nesquena
Copy link
Member

nesquena commented Apr 9, 2013

Notes for CSRF section from @skade

CSRF attacks are a severe problem and the safety measures should never be turned off by default.

You need to pass a parameter called "authenticity_token" with the value "session[:csrf]" on every post request. If you work sessionless for parts of your app (e.g. for an API), you should add:

set :allow_disabled_csrf, true

And disable CSRF on a route-by-route basis:

get :foo, :csrf_protection => false do

end

Do only turn of CSRF protection completely if your app works completely sessionless. In that case, you should use another way of validating requests.

@ujifgc ujifgc mentioned this issue Oct 27, 2014
Closed
@nesquena
Copy link
Member

@wikimatze This represents a list of some of the most obvious missing or incomplete documentation. Any help in augmenting the guides with these would be much appreciated.

@ujifgc ujifgc mentioned this issue May 4, 2016
Open
19 tasks
@ujifgc
Copy link
Member

ujifgc commented May 4, 2016

This issue was moved to padrino/padrino-docs#98

@ujifgc ujifgc closed this as completed May 4, 2016
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
documentation enhancement
Projects
None yet
Milestone
1.0.0
Development

No branches or pull requests
5 participants
@nesquena @skade @ujifgc @Ortuna @dariocravero