Tag Archives: csrf

Getting jQuery, Rails, and Authenticity Tokens to play nice

By Tony | Published: December 6, 2009

For anyone that uses the jQuery AJAX library to send POST requests to their Rails application, you have probably found that the built in Rails CSRF protection does not play nice with your jQuery POST requests. By the way, if you don’t know what CSRF is, check out my Ruby on Rails security presentation. [...]

Posted in Software | Also tagged Ajax, authenticity-tokens, jquery, rubyonrails | Leave a comment

Defending Against Attacks With Rails

By Tony | Published: August 4, 2009

A couple weeks ago I presented on Rails security at a local Ruby On Rails meetup. I finally got around to posting the slides online. The presentation covers topics including authentication, hashing, salting, key stretching, white listing, session hijacking, replay attacks, session fixation, cross-site request forgery, cross site scripting, sql injections, other injections, and some [...]

Posted in Software | Also tagged attacks, cookies, fixation, hashing, injections, rails, rubyonrails, salting, security, sessions, xss | 1 Comment

Say Hello!
Read About
ActionScript3 adobe flex Ajax apache band bash csrf custom Facebook API flash flex GeSHi highlight javascript jquery linux marketing Music myspace MySQL Photoshop php plugin profile rails remote remotely rounded rounded corners ruby rubyonrails Ruby On Rails scripts Software statistics syntax syntax-highlight time_select validation widget wordpress work wp-syntax XHTML/CSS XML
Facebook Me
Tony Amoyal's Profile

Tag Archives: csrf

Getting jQuery, Rails, and Authenticity Tokens to play nice

Defending Against Attacks With Rails

Read About

Facebook Me