jonathanong
commented
10 years ago Thanks!
Closed pechitook closed 10 years ago
jonathanong
commented
10 years ago Thanks!
jonathanong
commented
10 years ago errr actually the checkmark means yes and the x means no. is that confusing? should i change it?
pocesar
commented
10 years ago leaving it blank is less confusing (plus easier to spot differences IMHO)
jonathanong
commented
10 years ago hmmm wanted there to be a difference between supported and i don't know. i'll just remove the x's for now.
pechitook
commented
10 years ago Yes, sorry about that! Thanks for pointing it out and fixing :)
2014-03-18 0:11 GMT-03:00 Jonathan Ong notifications@github.com:
hmmm wanted there to be a difference between supported and i don't know. i'll just remove the x's for now.
Reply to this email directly or view it on GitHubhttps://github.com/jonathanong/node-frameworks/pull/2#issuecomment-37895794 .
pechitook
commented
10 years ago Also, Meteor provides a very neat CSRF protection: it doesn't use cookies to handle user authentication. It uses DDP to send data on each request, and the user is authenticated on the initial page load only. There is no need to send a token every time data is asked to the server, so an CSRF attack is very well protected by default.
See this great talk by @estark37 https://www.youtube.com/watch?v=79uMp-S23MAfor more detailed info about Meteor's security.
2014-03-18 1:11 GMT-03:00 Pablo Chiappetti pchiappetti@gmail.com:
Yes, sorry about that! Thanks for pointing it out and fixing :)
2014-03-18 0:11 GMT-03:00 Jonathan Ong notifications@github.com:
hmmm wanted there to be a difference between supported and i don't know.
i'll just remove the x's for now.
Reply to this email directly or view it on GitHubhttps://github.com/jonathanong/node-frameworks/pull/2#issuecomment-37895794 .
Meteor does by default compress the response to the client, and it uses also by default Handlebars as the main templating system. It also provides simple authentication.