This page is not created by, affiliated with, or supported by Slack Technologies, Inc.
2017-03-12
Channels
- # arachne (1)
- # beginners (26)
- # cljs-dev (53)
- # cljsrn (1)
- # clojure (140)
- # clojure-italy (13)
- # clojure-russia (14)
- # clojure-spec (5)
- # clojure-uk (6)
- # clojurescript (52)
- # datascript (4)
- # datomic (11)
- # dirac (11)
- # emacs (12)
- # hoplon (9)
- # jobs (4)
- # lein-figwheel (1)
- # off-topic (29)
- # om (10)
- # om-next (1)
- # pedestal (3)
- # protorepl (1)
- # re-frame (16)
- # ring (12)
- # rum (27)
- # slack-help (12)
- # spacemacs (27)
- # unrepl (19)
- # untangled (26)
- # yada (8)
I am trying to get a ring server running but am getting this error that I can’t decode: > Exception in thread "main" java.lang.NoClassDefFoundError: org/eclipse/jetty/http/HttpParser$ProxyHandler, compiling:(ring/adapter/jetty.clj:27:11)
Looking at the stack, it seems to occur before any of my application’s code actually runs… Not sure what I’m doing wrong.
guys, I am developing a project with ring. And I have a silly question; Is ring safe ? Is there any protection to should I take ?
@scknkkrer what do you mean by safe?
I think the answer might be that it’s as safe as the protections that you configure.
You can build as server with little or no security or with a lot using ring.
Take a look at ring-defaults
which includes some pre-batched protections for different kinds of services, e.g. “secure-site-defaults”: https://github.com/ring-clojure/ring-defaults
I’m certainly not a ring expert, but it’s my understanding that the idea behind these “defaults” is to make it easy to follow best practices when it comes to setting up sensible features, including security protections, for different kind of services.
So you can’t go wrong, I don’t think, by starting there, even if your service could ultimately require more specialized configuration.
If you don’t use these tools, and just build the bare-minimum server, I think it’s fair to say that your server will not be secure.