aboutsummaryrefslogtreecommitdiffstats
Commit message (Collapse)AuthorAgeFilesLines
...
* | | | ActionController::Parameters#deep_dup (#26567)Pavel Evstigneev2016-10-112-0/+29
|/ / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * ActionController::Parameters#deep_dup * Tests for ActionController::Parameters#deep_dup * Fix test for ActionController::Parameters#deep_dup * More tests for ActionController::Parameters#deep_dup [Rafael Mendonça França + Pavel Evstigneev]
* | | Permit same-origin connections by defaultMatthew Draper2016-10-115-8/+21
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | WebSocket always defers the decision to the server, because it didn't have to deal with legacy compatibility... but the same-origin policy is still a reasonable default. Origin checks do not protect against a directly connecting attacker -- they can lie about their host, but can also lie about their origin. Origin checks protect against a connection from 3rd-party controlled script in a context where a victim browser's cookies will be passed along. And if an attacker has breached that protection, they've already compromised the HTTP session, so treating the WebSocket connection in the same way seems reasonable. In case this logic proves incorrect (or anyone just wants to be more paranoid), we retain a config option to disable it.
* | | Merge pull request #26568 from skateman/cable-sameorigin-as-hostMatthew Draper2016-10-114-1/+18
|\ \ \ | | | | | | | | | | | | Optionally allow ActionCable requests from the same host as origin
| * | | Optionally allow ActionCable requests from the same host as originDávid Halász2016-09-214-1/+18
| | | | | | | | | | | | | | | | | | | | | | | | | | | | When the `allow_same_origin_as_host` is set to `true`, the request forgery protection permits `HTTP_ORIGIN` values starting with the corresponding `proto://` prefix followed by `HTTP_HOST`. This way it is not required to specify the list of allowed URLs.
* | | | Merge pull request #26208 from nanaya/pg-insensitive-textMatthew Draper2016-10-113-2/+37
|\ \ \ \ | | | | | | | | | | | | | | | Fix case insensitive check for text column in pg
| * | | | Fix case insensitive check for text column in pgnanaya2016-09-012-0/+30
| | | | | | | | | | | | | | | | | | | | There's no 'text to text' casting in the cast table so the feature detection fails.
| * | | | Use proper castingnanaya2016-09-011-2/+2
| | | | |
* | | | | Merge pull request #26756 from kamipo/extract_format_colspecRafael França2016-10-102-12/+10
|\ \ \ \ \ | | | | | | | | | | | | Extract `format_colspec` to format column spec
| * | | | | Extract `format_colspec` to format column specRyuta Kamizono2016-10-112-12/+10
| | | | | |
* | | | | | Merge pull request #26531 from y-yagi/remove_unused_benchmarkRafael França2016-10-101-2/+0
|\ \ \ \ \ \ | | | | | | | | | | | | | | remove unused require `benchmark`
| * | | | | | remove unused require `benchmark`yuuji.yaginuma2016-09-171-2/+0
| | | | | | | | | | | | | | | | | | | | | | | | | | | | `Benchmark` was removed at 4215e9a
* | | | | | | Merge pull request #26577 from dharamgollapudi/add_licenseRafael França2016-10-101-0/+20
|\ \ \ \ \ \ \ | |_|/ / / / / |/| | | | | | Add top level license
| * | | | | | Rename `LICENSE` to `MIT-LICENSE` for consistency with sub projectsDharam Gollapudi2016-09-231-0/+0
| | | | | | |
| * | | | | | Add top level licenseDharam Gollapudi2016-09-211-0/+20
| | |_|/ / / | |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | - Add top level license file so that github auto detects the license type - and displays it in the repository overview section - More info at https://github.com/blog/2252-license-now-displayed-on-repository-overview
* | | | | | Merge pull request #26755 from rafaelfranca/deprecationsRafael França2016-10-1012-300/+25
|\ \ \ \ \ \ | | | | | | | | | | | | | | Remove deprecations in Active Model, Action View and Active Job
| * | | | | | Removed deprecated :tokenizer in the length validatorRafael Mendonça França2016-10-104-74/+5
| | | | | | |
| * | | | | | Removed deprecated methods in ActiveModel::ErrorsRafael Mendonça França2016-10-103-179/+6
| | | | | | | | | | | | | | | | | | | | | | | | | | | | `#get`, `#set`, `[]=`, `add_on_empty` and `add_on_blank`.
| * | | | | | Removed deprecated support to passing the adapter class to .queue_adapterRafael Mendonça França2016-10-103-23/+4
| | | | | | |
| * | | | | | Removed deprecated #original_exception in ActiveJob::DeserializationErrorRafael Mendonça França2016-10-102-13/+5
| | | | | | |
| * | | | | | Removed deprecated `#original_exception` in `ActionView::Template::Error`.Rafael Mendonça França2016-10-102-11/+5
| | | | | | |
* | | | | | | Merge pull request #26753 from kamipo/fix_table_comment_dumpingRafael França2016-10-103-2/+5
|\ \ \ \ \ \ \ | | | | | | | | | | | | | | | | Fix table comment dumping
| * | | | | | | Fix table comment dumpingRyuta Kamizono2016-10-113-2/+5
|/ / / / / / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Follow up to #26735. If `table_options` returns `{ comment: nil }`, `create_table` line is broken. Example: ```ruby create_table "accounts", force: :cascade, do |t| ```
* | | | | | | Merge pull request #26747 from kamipo/name_is_not_column_optionRafael França2016-10-103-12/+8
|\ \ \ \ \ \ \ | | | | | | | | | | | | | | | | `name` is not a column option
| * | | | | | | `name` is not a column optionRyuta Kamizono2016-10-103-12/+8
| |/ / / / / / | | | | | | | | | | | | | | | | | | | | | `migration_keys` includes `name` but `name` is not a column option.
* | | | | | | Merge pull request #26750 from bogdanvlviv/docKasper Timm Hansen2016-10-101-6/+6
|\ \ \ \ \ \ \ | |/ / / / / / |/| | | | | | Add missing @, fix indents. [ci skip]
| * | | | | | Add missing @, fix indents. [ci skip]bogdanvlviv2016-10-101-6/+6
|/ / / / / /
* | | | | | Merge pull request #26578 from jeremy/undeprecate-plural-positional-argRafael França2016-10-102-14/+3
|\ \ \ \ \ \ | | | | | | | | | | | | | | Undeprecate plural positional argument
| * | | | | | Undeprecate plural positional argumentJeremy Daer2016-09-212-14/+3
| |/ / / / / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | ```ruby pluralize people.count, 'person', 'people' ``` reads more naturally than ```ruby pluralize people.count, 'person', plural: 'people' ``` so let's not deprecate it. We could label both, but that's a mouthful: ```ruby pluralize people.count, singular: 'person', plural: 'people' ``` (The `plural:` kwarg shipped in 5.0.0, so we're keeping it.)
* | | | | | Merge pull request #26746 from rails/deprecationsRafael França2016-10-1056-1430/+298
|\ \ \ \ \ \ | | | | | | | | | | | | | | Remove all deprecations from Action Pack
| * | | | | | Remove deprecated support to non-keyword arguments in ↵Rafael Mendonça França2016-10-104-98/+19
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | `ActionDispatch::IntegrationTest`, `#process`, `#get`, `#post`, `#patch`, `#put`, `#delete`, and `#head`.
| * | | | | | Remove deprecated `ActionDispatch::IntegrationTest#*_via_redirect`.Rafael Mendonça França2016-10-103-142/+4
| | | | | | |
| * | | | | | Remove deprecated `ActionDispatch::IntegrationTest#xml_http_request`Rafael Mendonça França2016-10-103-134/+8
| | | | | | |
| * | | | | | Remove deprecated support for passing `:path` and route path as stings in ↵Rafael Mendonça França2016-10-103-17/+7
| | | | | | | | | | | | | | | | | | | | | | | | | | | | `ActionDispatch::Routing::Mapper#match`
| * | | | | | Remove deprecated support passing path as `nil` in ↵Rafael Mendonça França2016-10-103-8/+6
| | | | | | | | | | | | | | | | | | | | | | | | | | | | `ActionDispatch::Routing::Mapper#match`
| * | | | | | Remove deprecated `cache_control` argument from ↵Rafael Mendonça França2016-10-103-18/+5
| | | | | | | | | | | | | | | | | | | | | | | | | | | | `ActionDispatch::Static#initialize`
| * | | | | | Remove deprecated support to passing strings to the middleware stackRafael Mendonça França2016-10-104-60/+8
| | | | | | |
| * | | | | | Remove deprecated code in ssl middlewareRafael Mendonça França2016-10-104-62/+23
| | | | | | |
| * | | | | | Remove deprecated code in ActionDispatch::Session::SessionRestoreErrorRafael Mendonça França2016-10-102-11/+10
| | | | | | |
| * | | | | | Deprecated ActionDispatch::ParamsParser::ParamsParserRafael Mendonça França2016-10-109-53/+51
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | ActionDispatch::ParamsParser class was removed in favor of ActionDispatch::Http::Parameters so it is better to move the error constant to the new class.
| * | | | | | Remove deprecated ActionDispatch::ParamsParserRafael Mendonça França2016-10-102-12/+5
| | | | | | |
| * | | | | | Remove deprecated code in ActionDispatch::ParamsParser::ParseErrorRafael Mendonça França2016-10-102-17/+10
| | | | | | |
| * | | | | | Remove deprecated access to mime types through constantsRafael Mendonça França2016-10-103-38/+4
| | | | | | |
| * | | | | | Remove deprecated support to non-keyword arguments #processRafael Mendonça França2016-10-103-181/+21
| | | | | | |
| * | | | | | Remove deprecated `xml_http_request` and `xhr` methodsRafael Mendonça França2016-10-103-30/+4
| | | | | | |
| * | | | | | Remove deprecated methods in ActionController::ParametersRafael Mendonça França2016-10-103-27/+5
| | | | | | |
| * | | | | | Remove deprecated comparing support with `ActionController::Parameters`Rafael Mendonça França2016-10-103-17/+5
| | | | | | |
| * | | | | | Remove deprecated support to :text in renderRafael Mendonça França2016-10-1021-293/+84
| | | | | | |
| * | | | | | Remove deprecated support to :nothing in renderRafael Mendonça França2016-10-093-15/+4
| | | | | | |
| * | | | | | Remove deprecated support to `:back` in `redirect_to`Rafael Mendonça França2016-10-093-50/+4
| | | | | | |
| * | | | | | Remove deprecated support for status option in headRafael Mendonça França2016-10-093-28/+5
| | | | | | |
generated by cgit v1.2.3 (git 2.25.1) at 2025-03-23 10:38:52 +0000