Hello,
My name is Pulkit Bhatia, a Computer Science engineer from India. I am really interested to work on Refactor Rails' Cookie Implementation and Improve Signing with Expiry and Purpose project for GSoC 17.
I went through wiki and also through current Cookie implementation code and have some queries.
- For adding expiry, do we want something like cookies.expires(:key,Time object ..) something like cookies.delete or do we want to improve/add expiry for improved signing process that we will implement?
- For adding purpose feature w.r.t. to AEAD, will we try to seal the cookie value with the purpose value so that opening process will fail if try to use that cookie for other purpose?
I am currently exploring more on AEAD and Rails code. Some direction regarding my queries would be a great help.
Thanks and Regards,
Pulkit