GitHub User: Lukom
Site: http://lukom.org/
-
watch on iTunes
-
follow on Twitter
-
follow on Facebook
-
subscribe to RSS feed
watch on iTunes
follow on Twitter
follow on Facebook
subscribe to RSS feed
Nice episode, but I would recommend to set Http-only setting for auth-cookies so if site somehow have xss hole attacker cannot steal cookies through javascript.
Cool, very helpful topic. I like the trick:
var new_id = new Date().getTime();
Just for comparison (the same markup with rails content_tag helper):
content_tag :div, nil, :class => 'error_messages' do
content = content_tag(:h2, "... errors occurred")
content << content_tag(:p, "There were problems...:")
content << content_tag(:ul) do
object.errors.to_a.map do |msg|
content_tag :li, msg
end.join.html_safe
end
end