aboutsummaryrefslogtreecommitdiff
path: root/src
AgeCommit message (Collapse)Author
2022-07-30remove left over fileHEADmasterMartin Fischer
2022-07-27remove security moduleMartin Fischer
2021-12-23upgrade hmac and sha2Martin Fischer
2021-12-23format with cargo fmtMartin Fischer
2021-04-18support borrowing for URL query deserializationMartin Fischer
2021-04-18add html_escape methodv0.4.1Martin Fischer
2021-04-10drop dependency on async-traitMartin Fischer
Also has the benefit that the futures are now Sync.
2021-04-10drop dependency on cookie & time cratesMartin Fischer
2021-04-09make security module optionalMartin Fischer
2021-04-09make decode_expiring_claim return sliceMartin Fischer
2021-04-09test expiring claim encode/decode & fix bugMartin Fischer
2021-04-09make hyper dependency optionalMartin Fischer
2021-01-29add test for enforce_content_typeMartin Fischer
2021-01-29remove CSRF tokens (SameSite support is good enough)Martin Fischer
2021-01-29add documentationMartin Fischer
2021-01-26add request::Flash (inspired by Rocket)v0.3.4Martin Fischer
bump version to 0.3.4
2021-01-26move SputnikParts::csrf_token to CsrfToken::from_requestMartin Fischer
2021-01-26response: improve cookie & content-type methodsMartin Fischer
* add SputnikBuilder::set_cookie * make delete_cookie an independent method * add SputnikHeaders::content_type
2021-01-26introduce SputnikParts::response_headersMartin Fischer
2021-01-26make csrf_token safe to be called multiple timesMartin Fischer
2021-01-26fix wrong insertion/appending of headersMartin Fischer
2021-01-25reintroduce CsrfToken typev0.3.3Martin Fischer
Raw HTML is potentially dangerous so it's better to provide an encapsulating type instead of relying on naked strings. bump version to 0.3.3
2021-01-25introduce optional SputnikBody::into_json()Martin Fischer
bump version to 0.3.2
2021-01-25simplify CSRF APIMartin Fischer
This commit gets rid of the CsrfToken type, simplifying submission handling: // before let csrf_token = req.csrf_token(&mut response); let msg: FormData = body.into_form_csrf(&csrf_token).await?; // after let msg: FormData = body.into_form_csrf(req).await?; As well as HTML input retrieval: // before req.csrf_token(&mut response).html_input(); // after req.csrf_html_input(&mut response); This commit also merges the CsrfError type into CsrfProtectedFormError. bump version to 0.3.1
2021-01-24define & impl traits instead of wrapping typesMartin Fischer
bump version to 0.3.0
2021-01-22completely ditch Sputnik's general Error typeMartin Fischer
Users also want to short-circuit error types from other crates but they cannot define a From conversion between two foreign types. Sputnik's error type also didn't allow for proper error logging. bump version to 0.2.3
2021-01-20introduce Error::Simple and Error::ResponseMartin Fischer
bump version to 0.2.2
2021-01-19request: improve error handling with thiserrorv0.2.1Martin Fischer
bump version to 0.2.1
2021-01-19fix broken link in documentationMartin Fischer
2021-01-18split Request wrapper into Parts & Bodyv0.2.0Martin Fischer
Originally the into_ functions actually consumed the request but I changed that to make request information like URI and method still accessible after the request has been read. Not consuming the Request however allows e.g. into_form() to be called twice, which results in a panic since the body can only be read once. This commit splits the Request wrapper into two wrappers Parts & Body, allowing the borrow checker to guarantee that the body is only consumed once, while keeping the other request information accessible after the body has been consumed. Version bumped to 0.2.0.
2021-01-17publishv0.1.0Martin Fischer