Age | Commit message (Collapse) | Author | |
---|---|---|---|
2021-04-18 | support borrowing for URL query deserialization | Martin Fischer | |
2021-04-18 | add html_escape methodv0.4.1 | Martin Fischer | |
2021-04-10 | drop dependency on async-trait | Martin Fischer | |
Also has the benefit that the futures are now Sync. | |||
2021-04-10 | drop dependency on cookie & time crates | Martin Fischer | |
2021-04-09 | make security module optional | Martin Fischer | |
2021-04-09 | make decode_expiring_claim return slice | Martin Fischer | |
2021-04-09 | test expiring claim encode/decode & fix bug | Martin Fischer | |
2021-04-09 | make hyper dependency optional | Martin Fischer | |
2021-01-29 | add test for enforce_content_type | Martin Fischer | |
2021-01-29 | remove CSRF tokens (SameSite support is good enough) | Martin Fischer | |
2021-01-29 | add documentation | Martin Fischer | |
2021-01-26 | add request::Flash (inspired by Rocket)v0.3.4 | Martin Fischer | |
bump version to 0.3.4 | |||
2021-01-26 | move SputnikParts::csrf_token to CsrfToken::from_request | Martin Fischer | |
2021-01-26 | response: improve cookie & content-type methods | Martin Fischer | |
* add SputnikBuilder::set_cookie * make delete_cookie an independent method * add SputnikHeaders::content_type | |||
2021-01-26 | introduce SputnikParts::response_headers | Martin Fischer | |
2021-01-26 | make csrf_token safe to be called multiple times | Martin Fischer | |
2021-01-26 | fix wrong insertion/appending of headers | Martin Fischer | |
2021-01-25 | reintroduce CsrfToken typev0.3.3 | Martin Fischer | |
Raw HTML is potentially dangerous so it's better to provide an encapsulating type instead of relying on naked strings. bump version to 0.3.3 | |||
2021-01-25 | introduce optional SputnikBody::into_json() | Martin Fischer | |
bump version to 0.3.2 | |||
2021-01-25 | simplify CSRF API | Martin Fischer | |
This commit gets rid of the CsrfToken type, simplifying submission handling: // before let csrf_token = req.csrf_token(&mut response); let msg: FormData = body.into_form_csrf(&csrf_token).await?; // after let msg: FormData = body.into_form_csrf(req).await?; As well as HTML input retrieval: // before req.csrf_token(&mut response).html_input(); // after req.csrf_html_input(&mut response); This commit also merges the CsrfError type into CsrfProtectedFormError. bump version to 0.3.1 | |||
2021-01-24 | define & impl traits instead of wrapping types | Martin Fischer | |
bump version to 0.3.0 | |||
2021-01-22 | completely ditch Sputnik's general Error type | Martin Fischer | |
Users also want to short-circuit error types from other crates but they cannot define a From conversion between two foreign types. Sputnik's error type also didn't allow for proper error logging. bump version to 0.2.3 | |||
2021-01-20 | introduce Error::Simple and Error::Response | Martin Fischer | |
bump version to 0.2.2 | |||
2021-01-19 | request: improve error handling with thiserrorv0.2.1 | Martin Fischer | |
bump version to 0.2.1 | |||
2021-01-19 | fix broken link in documentation | Martin Fischer | |
2021-01-18 | split Request wrapper into Parts & Bodyv0.2.0 | Martin Fischer | |
Originally the into_ functions actually consumed the request but I changed that to make request information like URI and method still accessible after the request has been read. Not consuming the Request however allows e.g. into_form() to be called twice, which results in a panic since the body can only be read once. This commit splits the Request wrapper into two wrappers Parts & Body, allowing the borrow checker to guarantee that the body is only consumed once, while keeping the other request information accessible after the body has been consumed. Version bumped to 0.2.0. | |||
2021-01-17 | publishv0.1.0 | Martin Fischer | |