From owner-cvs-ports@FreeBSD.ORG  Tue Jun 19 12:34:00 2007
Return-Path: <owner-cvs-ports@FreeBSD.ORG>
X-Original-To: cvs-ports@FreeBSD.org
Delivered-To: cvs-ports@FreeBSD.org
Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52])
	by hub.freebsd.org (Postfix) with ESMTP id AE3FA16A400;
	Tue, 19 Jun 2007 12:34:00 +0000 (UTC) (envelope-from lbr@FreeBSD.org)
Received: from repoman.freebsd.org (repoman.freebsd.org [69.147.83.41])
	by mx1.freebsd.org (Postfix) with ESMTP id 9FB7513C4C7;
	Tue, 19 Jun 2007 12:34:00 +0000 (UTC) (envelope-from lbr@FreeBSD.org)
Received: from repoman.freebsd.org (localhost [127.0.0.1])
	by repoman.freebsd.org (8.13.8/8.13.8) with ESMTP id l5JCY0Yq036566;
	Tue, 19 Jun 2007 12:34:00 GMT (envelope-from lbr@repoman.freebsd.org)
Received: (from lbr@localhost)
	by repoman.freebsd.org (8.13.8/8.13.8/Submit) id l5JCY0ms036560;
	Tue, 19 Jun 2007 12:34:00 GMT (envelope-from lbr)
Message-Id: <200706191234.l5JCY0ms036560@repoman.freebsd.org>
From: Lars Balker Rasmussen <lbr@FreeBSD.org>
Date: Tue, 19 Jun 2007 12:34:00 +0000 (UTC)
To: ports-committers@FreeBSD.org, cvs-ports@FreeBSD.org, cvs-all@FreeBSD.org
X-FreeBSD-CVS-Branch: HEAD
Cc: 
Subject: cvs commit: ports/www Makefile
 ports/www/p5-Catalyst-Plugin-FormCanary
 Makefile distinfo pkg-descr pkg-plist
X-BeenThere: cvs-ports@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: CVS commit messages for the ports tree <cvs-ports.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/cvs-ports>,
	<mailto:cvs-ports-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/cvs-ports>
List-Post: <mailto:cvs-ports@freebsd.org>
List-Help: <mailto:cvs-ports-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/cvs-ports>,
	<mailto:cvs-ports-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 19 Jun 2007 12:34:00 -0000

lbr         2007-06-19 12:34:00 UTC

  FreeBSD ports repository

  Modified files:
    www                  Makefile 
  Added files:
    www/p5-Catalyst-Plugin-FormCanary Makefile distinfo pkg-descr 
                                      pkg-plist 
  Log:
  FormCanary will examine your outgoing HTML and add a canary value to
  each form.  When the form is submitted, the value of the canary is com-
  pared against one saved in the session at page generation time.  If the
  canary that's sent doesn't match the one in the session (or there is no
  canary at all), the request is halted.
  
  There is no way to get params into your application without a correct
  canary.  This is good for preventing "cross-site request attacks".
  
  This module is compatible with FormBuilder.  Just drop it into your use
  line and have secure submit-once-only forms.  Yay.
  
  Inspired by:
  http://www.25hoursaday.com/weblog/2007/06/05/WhatRubyOnRailsCanLearnFromASPNET.a
  spx
  
  Revision  Changes    Path
  1.1850    +1 -0      ports/www/Makefile
  1.1       +32 -0     ports/www/p5-Catalyst-Plugin-FormCanary/Makefile (new)
  1.1       +3 -0      ports/www/p5-Catalyst-Plugin-FormCanary/distinfo (new)
  1.1       +16 -0     ports/www/p5-Catalyst-Plugin-FormCanary/pkg-descr (new)
  1.1       +7 -0      ports/www/p5-Catalyst-Plugin-FormCanary/pkg-plist (new)