aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
| * | | | | | | | | | | | | use hash defaults to dry up ||= callsAaron Patterson2011-02-111-27/+22
| | | | | | | | | | | | | |
| * | | | | | | | | | | | | refactor fixtures to do less work in the constructorAaron Patterson2011-02-112-11/+24
| | | | | | | | | | | | | |
| * | | | | | | | | | | | | favor composition over inheritence. use AS::OrderedHash rather than omapAaron Patterson2011-02-112-20/+25
| | | | | | | | | | | | | |
| * | | | | | | | | | | | | Fixes an issue when decoding a json string which looks like a date but is ↵Josh Kalderimis2011-02-114-3/+23
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | invalid. This DateTime parse error is now caught and the original string is instead passed back [#6286 state:resolved] Signed-off-by: Santiago Pastorino <santiago@wyeworks.com>
| * | | | | | | | | | | | | Add missing deprecation requireCarlos Antonio da Silva2011-02-111-0/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Signed-off-by: Santiago Pastorino <santiago@wyeworks.com>
| * | | | | | | | | | | | | Remove misleading reference to polymorphic_url.José Valim2011-02-111-2/+0
| | | | | | | | | | | | | |
| * | | | | | | | | | | | | fixing tests on 1.8, using a list of lists because order is importantAaron Patterson2011-02-102-2/+4
| | | | | | | | | | | | | |
| * | | | | | | | | | | | | simplify bind parameter loggingAaron Patterson2011-02-102-4/+2
| | | | | | | | | | | | | |
| * | | | | | | | | | | | | bind parameters are logged to debug logAaron Patterson2011-02-102-6/+48
| | | | | | | | | | | | | |
| * | | | | | | | | | | | | test cases for bind parameter loggingAaron Patterson2011-02-101-0/+56
| | | | | | | | | | | | | |
| * | | | | | | | | | | | | Removed Array#safe_join in AS core_ext and moved it to a view helper with ↵Josh Kalderimis2011-02-107-116/+70
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | the same same. This also changes how safe_join works, if items or the separator are not html_safe they are html_escape'd, a html_safe string is always returned. Signed-off-by: José Valim <jose.valim@gmail.com>
| * | | | | | | | | | | | | Revert "Removed Array#safe_join in AS core_ext and moved it to a view helper ↵José Valim2011-02-107-97/+116
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | with the same same." Applied the wrong version. This reverts commit 98c0c5db50a7679b3d58769ac22cb0a27a62c930.
| * | | | | | | | | | | | | Removed Array#safe_join in AS core_ext and moved it to a view helper with ↵Josh Kalderimis2011-02-107-116/+97
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | the same same.
| * | | | | | | | | | | | | Corrected the html_safe implementation for Array. Moved the html safe ↵Josh Kalderimis2011-02-102-20/+35
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | version of join to its own method (safe_join) as not to degrade the performance of join for unrelated html_safe use. [#6298 state:resolved]
| * | | | | | | | | | | | | Initial html_safe implemention for ArrayPaul Hieromnimon2011-02-102-0/+60
| | | | | | | | | | | | | |
| * | | | | | | | | | | | | log method takes an option list of bind valuesAaron Patterson2011-02-094-8/+10
| | | | | | | | | | | | | |
| * | | | | | | | | | | | | fanout unsubscribe only accepted one argument, so taking *args here is ↵Aaron Patterson2011-02-091-2/+2
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | probably bad
| * | | | | | | | | | | | | just use an attr_accessor so we do not pay ||= on every notification callAaron Patterson2011-02-092-7/+10
| | | | | | | | | | | | | |
| * | | | | | | | | | | | | fixing indentationAaron Patterson2011-02-091-4/+4
| | | | | | | | | | | | | |
| * | | | | | | | | | | | | speed up notification publishing by writing the delegate methodAaron Patterson2011-02-091-1/+4
| | | | | | | | | | | | | |
| * | | | | | | | | | | | | rawr, mysql, mysql2, why do you hate me. :'(Aaron Patterson2011-02-091-2/+4
| | | | | | | | | | | | | |
| * | | | | | | | | | | | | Fixed a bug where ActiveResource::HttpMock would not replace an existing ↵Josh Bassett2011-02-092-5/+39
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | response when passing a block to the respond_to method. Signed-off-by: Santiago Pastorino <santiago@wyeworks.com>
| * | | | | | | | | | | | | Override attributes_protected_by_default when has_secure_password is called.Tsutomu Kuroda2011-02-094-2/+38
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | attr_protected should not be called, because it nullifies the mass assignment protection that has been set by attr_accessible. Signed-off-by: Santiago Pastorino <santiago@wyeworks.com>
| * | | | | | | | | | | | | removed some duplication from LH issue 5505 regarding AR touch and ↵Josh Kalderimis2011-02-092-9/+11
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | optimistic locking [#5505 state:resolved] Signed-off-by: Santiago Pastorino and José Ignacio Costa <santiago+jose@wyeworks.com>
| * | | | | | | | | | | | | The optimistic lock column should be increased when calling touchFranck Verrot2011-02-093-0/+16
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Signed-off-by: Santiago Pastorino and José Ignacio Costa <santiago+jose@wyeworks.com>
| * | | | | | | | | | | | | use parenthesis so limit works on all dbsAaron Patterson2011-02-091-6/+4
| | | | | | | | | | | | | |
| * | | | | | | | | | | | | now that the API guidelines are a guide, it is enough to assert that the ↵Xavier Noria2011-02-091-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | names of Rails components have a space, no need to say it was checked with David in the past
| * | | | | | | | | | | | | removing text-format in favor of a more simple solutionAaron Patterson2011-02-093-13/+19
| | | | | | | | | | | | | |
| * | | | | | | | | | | | | bugfix for serialized_attributes to be class specificRaimonds Simanovskis2011-02-092-1/+8
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | previously serialized_attributes were kept as class attribute of ActiveRecord::Base - if some attribute was defined as serialized in one subclass then it was serialized in all other subclasses as well (if it had the same name)
| * | | | | | | | | | | | | implementing include? on AM::ErrorsAaron Patterson2011-02-092-0/+11
| | | | | | | | | | | | | |
| * | | | | | | | | | | | | text-format requires text-hyphen, which needs ruby 1.8Piotr Sarnacki2011-02-091-3/+1
| | | | | | | | | | | | | |
| * | | | | | | | | | | | | we do not need message to be an arrayAaron Patterson2011-02-091-9/+8
| | | | | | | | | | | | | |
| * | | | | | | | | | | | | Allow limit values to accept an ARel SQL literal.Ken Collins2011-02-092-5/+15
| | | | | | | | | | | | | |
| * | | | | | | | | | | | | use map rather than array concatenationAaron Patterson2011-02-091-9/+4
| | | | | | | | | | | | | |
| * | | | | | | | | | | | | favor composition over inheritenceAaron Patterson2011-02-091-9/+33
| | | | | | | | | | | | | |
| * | | | | | | | | | | | | use 1 call to concat rather than calling << n timesAaron Patterson2011-02-091-4/+4
| | | | | | | | | | | | | |
| * | | | | | | | | | | | | Application's assets should have higher priority than engine's onesPiotr Sarnacki2011-02-091-1/+4
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | [#6388 state:resolved]
| * | | | | | | | | | | | | Failing test for #6388Eric Allam2011-02-091-0/+28
| | | | | | | | | | | | | |
| * | | | | | | | | | | | | Add missing requireSantiago Pastorino and Emilio Tagua2011-02-091-1/+2
| | | | | | | | | | | | | |
| * | | | | | | | | | | | | fix for AS Gzip returning a UTF-8 string in Ruby 1.9 when it is actually ↵Josh Kalderimis2011-02-092-0/+14
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | binary [#6386 state:resolved] Signed-off-by: José Valim <jose.valim@gmail.com>
| * | | | | | | | | | | | | comma limits do not make sense on oracle or pgAaron Patterson2011-02-081-3/+5
| | | | | | | | | | | | | |
| * | | | | | | | | | | | | reduce string append funcallsAaron Patterson2011-02-081-3/+3
| | | | | | | | | | | | | |
| * | | | | | | | | | | | | redcloth does not install on 1.9.3Aaron Patterson2011-02-081-1/+1
| | | | | | | | | | | | | |
| * | | | | | | | | | | | | primary keys should not be cleared on cache clear, fixing oracle testsAaron Patterson2011-02-085-6/+15
| | | | | | | | | | | | | |
| * | | | | | | | | | | | | Make rails.js include the CSRF token in the X-CSRF-Token header with every ↵Michael Koziarski2011-02-081-0/+16
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | ajax request.
| * | | | | | | | | | | | | Change the CSRF whitelisting to only apply to get requestsMichael Koziarski2011-02-083-147/+86
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Unfortunately the previous method of browser detection and XHR whitelisting is unable to prevent requests issued from some Flash animations and Java applets. To ease the work required to include the CSRF token in ajax requests rails now supports providing the token in a custom http header: X-CSRF-Token: ... This fixes CVE-2011-0447
| * | | | | | | | | | | | | limit() should sanitize limit valuesAaron Patterson2011-02-083-16/+50
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This fixes CVE-2011-0448
| * | | | | | | | | | | | | Use Mime::Type references.José Valim2011-02-087-6/+26
| | | | | | | | | | | | | |
| * | | | | | | | | | | | | Ensure render is case sensitive even on systems with case-insensitive ↵José Valim2011-02-082-3/+22
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | filesystems. This fixes CVE-2011-0449
| * | | | | | | | | | | | | Be sure to javascript_escape the email address to prevent apostrophes ↵Michael Koziarski2011-02-082-9/+11
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | inadvertently causing javascript errors. This fixes CVE-2011-0446
generated by cgit v1.2.3 (git 2.25.1) at 2025-07-16 17:49:48 +0000