rack-attack

mirror of https://github.com/samsonjs/rack-attack.git synced 2026-03-26 09:35:49 +00:00

Author	SHA1	Message	Date
Aaron Suggs	b0bf74f9d9	Fix test assertion	2015-01-27 16:18:55 -05:00
Carsten Zimmermann	1095f85242	Change response body to 'Forbidden'	2014-02-06 23:29:44 +01:00
Carsten Zimmermann	97a43f7e66	Return 403 Forbidden instead of 401 401 Unauthorized suggests that the requests can be retried with appropriate credentials. 403 explicitly states that the request should not be repeated. See #41	2014-02-06 21:32:51 +01:00
Alex Volkovitsky & Sachin Maharjan	f348643c24	Fix spec expectations	2013-06-28 13:59:31 -07:00
Aaron Suggs	80367e1e4a	Add Rack::Attack.track. track will fire notifications, but not alter request processing	2013-01-10 19:02:49 -05:00
Aaron Suggs	e7aa5f4abe	Use rotating cache keys for throttle (instead of expiring) Throttles use a cache key with a timestamp (Time.now.to_i/period), so a new cache key is used for each period. No longer set an explicit expiry on each cache key (though it may inherit a default expiry from the cache store). Also, set env['rack.attack.throttle_data'] with info about incremented (but not necessarily exceeded) throttles.	2012-08-08 14:59:42 -04:00
Aaron Suggs	8e59e84e00	Response header values must be strings	2012-08-02 12:15:16 -04:00
Aaron Suggs	ccdc1f993a	Change instrumentation API for simpler notifications	2012-07-30 15:44:22 -04:00
Aaron Suggs	61a046a203	Cleanup instrumentation interface	2012-07-30 09:34:30 -04:00
Aaron Suggs	c90a0182eb	Allow custom responses based on env	2012-07-28 19:51:24 -04:00
Aaron Suggs	dc2e402812	Initial working version	2012-07-27 17:40:11 -04:00
Aaron Suggs	e166e87fb9	Add throttle support	2012-07-27 17:22:49 -04:00
Aaron Suggs	9284a08cc3	Whitelists support	2012-07-26 17:29:09 -04:00
Aaron Suggs	7fab5df499	WIP	2012-07-24 19:59:46 -04:00
Aaron Suggs	140ea86b7c	Initial commit	2012-07-24 19:40:55 -04:00

15 commits