aboutsummaryrefslogtreecommitdiffstats
path: root/actionpack/lib/action_controller/cgi_ext
Commit message (Collapse)AuthorAgeFilesLines
* Fix bufferDavid Heinemeier Hansson2007-09-221-0/+1
| | | | git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@7534 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Added support for HTTP Only cookies (works in IE6+ and FF 2.0.5+) as an ↵David Heinemeier Hansson2007-09-211-36/+22
| | | | | | improvement for XSS attacks (closes #8895) [lifo/Spakman] git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@7525 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Parse url-encoded and multipart requests ourselves instead of delegating to CGI.Jeremy Kemper2007-05-182-289/+7
| | | | git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@6764 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Simplify CgiRequest#query_parametersJeremy Kemper2007-05-151-5/+5
| | | | git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@6743 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Move request parameter parsing from CGI to AbstractRequest.Jeremy Kemper2007-05-151-14/+0
| | | | git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@6742 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Introduce the request.body stream. Lazy-read to parse parameters rather than ↵Jeremy Kemper2007-05-153-22/+31
| | | | | | always setting RAW_POST_DATA. Reduces the memory footprint of large binary PUT requests. git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@6740 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Shine some sunlight on the CGI extensions. Remove unused CGI#session.Jeremy Kemper2007-05-157-287/+266
| | | | git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@6733 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Non-executable source files.Jeremy Kemper2007-05-142-0/+0
| | | | git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@6732 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Fixed that parameters from XML should also be presented in a hash with ↵David Heinemeier Hansson2007-04-161-1/+1
| | | | | | indifferent access [DHH] Hash#with_indifferent_access now also converts hashes kept in arrays to indifferent access (makes it easier to treat HTML and XML parameters the same) [DHH] git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@6532 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Removed ill faded xml_node class from codebase. Use XmlSimple insteadTobias Lütke2007-04-091-5/+1
| | | | git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@6511 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Fix PStore typo. Closes #7900.Jeremy Kemper2007-03-231-2/+2
| | | | git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@6455 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Never return nil from CGI#read_query for compatibility with plain CGI query ↵Jeremy Kemper2007-03-181-1/+1
| | | | | | params parser. Closes #7581. git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@6446 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Performance: patch cgi/session/pstore to require digest/md5 once rather than ↵Jeremy Kemper2007-03-161-0/+30
| | | | | | per #initialize. Closes #7583. git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@6431 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Add a #dbman attr_reader for CGI::Session and make ↵Rick Olson2007-03-061-0/+1
| | | | | | | | CGI::Session::CookieStore#generate_digest public so it's easy to generate digests using the cookie store's secret. [Rick] git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@6342 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Factor out unique id generator. Expose cgi to session store.Jeremy Kemper2007-02-191-13/+25
| | | | git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@6174 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Performance: patch cgi/session to require digest/md5 once rather than per ↵Jeremy Kemper2007-02-101-0/+30
| | | | | | #create_new_id. git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@6143 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Change the query parser to map empty GET params to "" rather than nil. ↵Nicholas Seckar2007-01-281-1/+1
| | | | | | Closes #5694. git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@6081 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Use a consistent load path to avoid double requires. Fix some scattered Ruby ↵Jeremy Kemper2007-01-281-0/+3
| | | | | | warnings. git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@6057 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Nodoc the irrelevant (from 1.2)David Heinemeier Hansson2007-01-261-1/+1
| | | | git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@6044 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Fix parsing of array[] CGI parameters so extra empty values aren't included. ↵Jeremy Kemper2007-01-121-6/+7
| | | | | | Closes #6252. git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@5904 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Fix that redirects should set "Location" header, not "location", and remove ↵David Heinemeier Hansson2006-11-261-7/+0
| | | | | | dead CGI.redirect git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@5634 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Multipart form values may have a content type without being treated as ↵Jeremy Kemper2006-11-091-32/+39
| | | | | | uploaded files if they do not provide a filename. Closes #6401. git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@5473 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* GET parameter keys can be escaped too [DHH]David Heinemeier Hansson2006-10-171-1/+1
| | | | git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@5318 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Hash.create_from_xml has been renamed to Hash.from_xml, alias will exist ↵David Heinemeier Hansson2006-09-201-1/+1
| | | | | | until Rails 2.0 [DHH] git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@5149 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Skip params with empty names, such as the &=Save query string from <input ↵Jeremy Kemper2006-09-121-1/+2
| | | | | | type=submit/>. Closes #2569. git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@5094 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Update descriptive messages for exceptions thrown by cgi_methods. Closes #6103.Jeremy Kemper2006-09-081-3/+5
| | | | git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@5070 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Add descriptive messages to the exceptions thrown by cgi_methods. Closes #6091.Nicholas Seckar2006-09-071-2/+8
| | | | git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@5066 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Tighten rescue clauses. Closes #5985.Jeremy Kemper2006-08-311-1/+1
| | | | git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@4885 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Switch to using FormEncodedPairParser for parsing request parameters.Nicholas Seckar2006-08-301-111/+56
| | | | git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@4866 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* FormEncodedStringParser needs a tad more work before it can handle POST data ↵David Heinemeier Hansson2006-08-281-70/+91
| | | | | | (like file handling), so were backing out for a bit git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@4833 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Actually, indifferent access mattered in the bowels (hashes hidden in arrays)David Heinemeier Hansson2006-08-261-1/+1
| | | | git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@4823 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Result is made indifferent on the way outDavid Heinemeier Hansson2006-08-261-1/+1
| | | | git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@4822 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Changed the POST parameter processing to use the new QueryStringParser and ↵David Heinemeier Hansson2006-08-261-1/+1
| | | | | | make the result a indifferent hash [DHH] git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@4821 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* The white space inquisition is coming for you!David Heinemeier Hansson2006-08-041-3/+1
| | | | git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@4661 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Fix broken query parameter testsNicholas Seckar2006-08-041-43/+113
| | | | git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@4660 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* r4487@asus: jeremy | 2006-04-29 12:21:39 -0700Jeremy Kemper2006-07-081-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Check whether @flash is defined? for warnings-safety. r4488@asus: jeremy | 2006-04-29 12:23:15 -0700 Check whether @flash is defined? for warnings-safety. Obviates nil? check. r4489@asus: jeremy | 2006-04-29 12:45:18 -0700 Check whether @session is defined? for warnings-safety. r4490@asus: jeremy | 2006-04-29 12:50:41 -0700 Check whether @rendering_runtime is defined? for warnings-safety. r4491@asus: jeremy | 2006-04-29 12:55:01 -0700 Check whether @_cycles is defined? for warnings-safety. r4492@asus: jeremy | 2006-04-29 12:59:19 -0700 Check whether instance variables are defined? for warnings-safety. r4493@asus: jeremy | 2006-04-29 13:14:09 -0700 Add nil @template to PrototypeHelperTest to suppress unitialized instance variable warning. r4494@asus: jeremy | 2006-04-29 13:31:34 -0700 Check whether @auto_index defined? for warnings-safety. r4495@asus: jeremy | 2006-04-29 13:32:24 -0700 Wrap content_columns redefinitions with silence_warnings. r4496@asus: jeremy | 2006-04-29 13:35:28 -0700 Wrap more redefinitions with silence_warnings. r4829@asus: jeremy | 2006-07-08 10:59:20 -0700 abstract unit, fix warnings r4830@asus: jeremy | 2006-07-08 11:06:12 -0700 Use parens to silence warning. r4831@asus: jeremy | 2006-07-08 11:06:48 -0700 Use parens to silence warning. git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@4595 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* r4748@asus: jeremy | 2006-06-29 22:40:35 -0700Jeremy Kemper2006-06-301-1/+1
| | | | | | | Loosen urlencoded content type check. git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@4524 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Fixed proper form-encoded parameter parsing for requests with "Content-Type: ↵David Heinemeier Hansson2006-06-301-1/+1
| | | | | | application/x-www-form-urlencoded; charset=utf-8" (note the presence of a charset directive) [DHH] git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@4522 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Fix CGI extensions when they expect string but get nil in Windows. Closes ↵Marcel Molina2006-06-281-1/+1
| | | | | | #5276 [mislav@nippur.irb.hr] git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@4499 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Added Hash.create_from_xml(string) which will create a hash from a XML ↵David Heinemeier Hansson2006-06-161-134/+74
| | | | | | string and even typecast if possible [DHH] git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@4453 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Rewind readable CGI params so others may reread them (such as CGI::Session ↵Jeremy Kemper2006-06-021-1/+3
| | | | | | when passing the session id in a multipart form). Closes #210. git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@4410 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Cope with missing content type and length headers. Parse parameters from ↵Jeremy Kemper2006-06-011-21/+42
| | | | | | multipart and urlencoded request bodies only. Accept multipart PUT parameters. Closes #5235. git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@4388 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* performance enhancement for previous patch [skaes]Michael Koziarski2006-05-161-1/+1
| | | | git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@4344 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Fix NoMethodError when parsing params like &&. [Adam Greenfield]. Closes #4955Michael Koziarski2006-05-161-0/+1
| | | | git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@4343 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Make sure xml_simple requests don't blow up if an empty request body is recievedJamis Buck2006-03-181-5/+6
| | | | git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@3936 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* XML-formatted requests are typecast according to "type" attributes for ↵Jamis Buck2006-03-181-1/+43
| | | | | | :xml_simple git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@3915 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Be sure to look at array elements when dasherizing keys of a formatted requestJamis Buck2006-03-171-9/+11
| | | | git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@3904 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Underscore dasherized keys in formatted requestsJamis Buck2006-03-151-1/+13
| | | | git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@3878 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* use "mime_type" instead of "format"Jamis Buck2006-03-151-1/+1
| | | | git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@3874 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Mime types are separated by a comma, not semicolon, in the Accept header. ↵David Heinemeier Hansson2006-03-121-2/+2
| | | | | | Also switch all internal configuration of mime types away from strings and over to Mime::Type [DHH] git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@3847 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
generated by cgit v1.2.3 (git 2.25.1) at 2024-07-07 05:06:22 +0000