Mercurial > urweb
view tests/reqheader.ur @ 1512:dcc8abbc6dfd
Change cookie signature comparison to resist timing attacks (based on code suggested by Robin Green and Austin Seipp)
| author | Adam Chlipala <adam@chlipala.net> |
|---|---|
| date | Tue, 19 Jul 2011 09:18:50 -0400 |
| parents | 360cbc202756 |
| children |
line wrap: on
line source
fun main () : transaction page = ua <- requestHeader "User-Agent"; case ua of None => return <xml>Not found</xml> | Some s => return <xml>User-Agent: {[s]}</xml>