Default escape_html_entities_in_json to true in new apps

author: José Valim <jose.valim@gmail.com> 2012-05-14 08:03:40 +0200
committer: José Valim <jose.valim@gmail.com> 2012-05-14 08:03:40 +0200
commit: ec68258f19678d47acc6e5684c9dbc18a7382589 (patch)
tree: 9697f1a1ed1c57415d39b033f281fcbb09d6fd25 /railties
parent: 45886843891c6eeba92f8d79ef8ec34738507309 (diff)
download: rails-ec68258f19678d47acc6e5684c9dbc18a7382589.tar.gz
rails-ec68258f19678d47acc6e5684c9dbc18a7382589.tar.bz2
rails-ec68258f19678d47acc6e5684c9dbc18a7382589.zip
1 files changed, 2 insertions, 2 deletions
diff --git a/railties/lib/rails/generators/rails/app/templates/config/application.rb b/railties/lib/rails/generators/rails/app/templates/config/application.rb
index 430d8147b0..bc5eb12939 100644
--- a/railties/lib/rails/generators/rails/app/templates/config/application.rb
+++ b/railties/lib/rails/generators/rails/app/templates/config/application.rb
@@ -49,8 +49,8 @@ module <%= app_const_base %>
     # Configure sensitive parameters which will be filtered from the log file.
     config.filter_parameters += [:password]
 
-    # Enable escaping HTML in JSON. The default is false.
-    # config.active_support.escape_html_entities_in_json = true
+    # Enable escaping HTML in JSON.
+    config.active_support.escape_html_entities_in_json = true
 
     # Use SQL instead of Active Record's schema dumper when creating the database.
     # This is necessary if your schema can't be completely dumped by the schema dumper,
author	José Valim <jose.valim@gmail.com>	2012-05-14 08:03:40 +0200
committer	José Valim <jose.valim@gmail.com>	2012-05-14 08:03:40 +0200
commit	ec68258f19678d47acc6e5684c9dbc18a7382589 (patch)
tree	9697f1a1ed1c57415d39b033f281fcbb09d6fd25 /railties
parent	45886843891c6eeba92f8d79ef8ec34738507309 (diff)
download	rails-ec68258f19678d47acc6e5684c9dbc18a7382589.tar.gz rails-ec68258f19678d47acc6e5684c9dbc18a7382589.tar.bz2 rails-ec68258f19678d47acc6e5684c9dbc18a7382589.zip