You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Add a cookie session storage mechanism, as an alternative to the in-memory session pool.
Sessions stored on the client include a secure digest of the content to prevent against session forgery. (#4)
Add an hex decoder that decodes hexadecimal representations to their bytes form. HexEncoder does encoding and decoding to/from hex representations. (#47)
Add a flash hash as a way of passing messages through redirection.
Anything in the flash is exposed to the very next request and then cleared out. (#44)
Session pool can now renew a session id whenever the session changes.
This helps prevent from session fixation attacks. (#41)
Changed
SessionIdentifierPolicy now receives the session data to support more complex use cases of session id generation
Fixed
ConditionalGet middleware no longer throws an exception when Modified-Since header has unsupported format
