aboutsummaryrefslogtreecommitdiffstats
path: root/actionpack/lib/action_controller/metal
Commit message (Collapse)AuthorAgeFilesLines
* Prefer find_by over dynamic finders in rdocSam Ruby2013-04-021-2/+2
|
* Fix some typosVipul A M2013-03-241-1/+1
|
* Fix documentation markup [ci skip]Rafael Mendonça França2013-03-231-0/+2
|
* StringIO is not required by default in JRubyArun Agrawal2013-03-221-0/+1
|
* Fix broken ActionController#action_missingJanko Luin2013-03-201-1/+1
| | | | | A recent change introduced the assumption that all controller actions are known beforehand, which is not true when using action_missing.
* Digest auth should not 500 when given a basic header.Brad Dunbar2013-03-181-0/+1
|
* Handle conditional get in live requests - this will prevent error when using ↵Bernard Potocki2013-03-141-0/+4
| | | | stale on live streams(issue #9636)
* Merge pull request #9626 from dasch/dasch/instrument-strong-paramsJosé Valim2013-03-091-1/+2
|\ | | | | Use AS::Notifications to instrument Strong Params
| * Use the instrumentation framework to instrument Strong ParamsDaniel Schierbeck2013-03-071-1/+2
| |
* | ensure response.stream is closedSam Ruby2013-03-091-0/+1
|/
* fix respond_to without blocks not working if one of the blocks is allgrosser2013-02-241-1/+1
|
* This cache is not neededSantiago Pastorino2013-02-211-2/+1
|
* Use composition to figure out the forgery protection strategySantiago Pastorino2013-02-211-9/+27
|
* Rack::Test::UploadedFile is a permitted scalarFabio Kreusch2013-02-211-3/+4
|
* Fix #9168 Initialize NullCookieJar with all options needed for KeyGeneratorAndrey Chernih2013-02-081-1/+1
|
* Missing require hash/keysAkira Matsuda2013-02-011-0/+2
|
* Missing or unneeded require extract_optionsAkira Matsuda2013-02-011-0/+1
|
* Use \A in RegexpsEgor Homakov2013-02-011-1/+1
| | | | | So, if there is redirect_to params[:q] i can send ?q=javascript:asdf()%0A/localpath Or something more nasty, so please use \A
* Merge pull request #9032 from firmhouse/head-breaks-csrfSantiago Pastorino2013-01-281-2/+2
|\ | | | | Make HEAD work / convert to GET once more
| * Added request.head? to forgery protection codeMichiel Sikkes2013-01-221-2/+2
| |
* | Integrate Action Pack with Rack 1.5Carlos Antonio da Silva2013-01-251-3/+4
| | | | | | | | | | | | All ActionPack and Railties tests are passing. Closes #8891. [Carlos Antonio da Silva + Santiago Pastorino]
* | ActionDispatch::Http::UploadedFile is a permitted scalar [Closes #9051]Xavier Noria2013-01-231-2/+5
|/
* Only check for unpermmited parameters ifRafael Mendonça França2013-01-221-1/+1
| | | | action_on_unpermitted_parameters is present
* avoid creating an object in every callXavier Noria2013-01-221-1/+2
| | | | This was a suggestion of @carlosantoniodasilva, thanks!
* Refactor grep call to remove .eachCarlos Antonio da Silva2013-01-201-1/+1
| | | | Grep already yields the matching keys to the given block.
* Use 1.9 hash style in docs/comments [ci skip]Carlos Antonio da Silva2013-01-201-3/+3
|
* Removing warning: shadowing outer local variable Arun Agrawal2013-01-201-3/+3
|
* strong parameters filters permitted scalarsXavier Noria2013-01-201-22/+92
|
* Restore and adapt the implementation reverted atRafael Mendonça França2013-01-191-19/+46
| | | | | | https://github.com/rails/rails/commit/cc1c3c5be061e7572018f734e5239750ab449e3f Now instead of raise, we log by default in development and test
* Added ability to raise or log on unpermitted params.Thomas Drake-Brockman2013-01-201-0/+25
|
* Revert "Merge pull request #8989 from robertomiranda/use-rails-4-find-by"Guillermo Iguaran2013-01-181-2/+2
| | | | | This reverts commit 637a7d9d357a0f3f725b0548282ca8c5e7d4af4a, reversing changes made to 5937bd02dee112646469848d7fe8a8bfcef5b4c1.
* User Rails 4 find_byrobertomiranda2013-01-181-2/+2
|
* strong parameters exception handlingBrian Alexander2013-01-151-6/+0
|
* Revert "log at debug level what line caused the redirect_to"Carlos Antonio da Silva2013-01-151-1/+0
| | | | | | | | This reverts commit 3fa00070047b5d019d39e691598ee2890283d052. Reason: This message is usually not accurate and annoying: Redirected by ~/.rbenv/versions/1.9.3-p327-perf/lib/ruby/1.9.1/logger.rb:371:in `add'`
* Merge branch 'master' of github.com:lifo/docrailsVijay Dev2013-01-094-10/+10
|\ | | | | | | | | Conflicts: guides/source/getting_started.md
| * prefer american spelling of 'behavior'Gosha Arinich2013-01-071-1/+1
| |
| * HTTP 302 means Found, not MovedChase DuBois2013-01-051-1/+1
| |
| * PUT => PATCHAkira Matsuda2013-01-031-1/+1
| |
| * find_or_create_by is deprecated in AR 4Akira Matsuda2013-01-021-3/+3
| |
| * Model.scoped is deprecated in favour of Model.allAkira Matsuda2013-01-021-4/+4
| |
* | Revert "unpermitted params" exception -- it's just not going to work. See ↵David Heinemeier Hansson2013-01-081-49/+4
| | | | | | | | the discussion on https://github.com/rails/strong_parameters/pull/75.
* | Never treat action or controller as unpermitted paramsDavid Heinemeier Hansson2013-01-081-6/+15
| |
* | improve StrongParameters documentation [ci skip]Francesco Rodriguez2013-01-071-8/+7
| |
* | Reduce number of Strings a bitAkira Matsuda2013-01-071-1/+1
| |
* | Namespace HashWithIndifferentAccessAkira Matsuda2013-01-071-1/+1
| |
* | These are already required through AS/railsAkira Matsuda2013-01-062-3/+0
| | | | | | | | | | | | | | * core_ext/object/blank * concern * core_ext/class/attribute * deprecation
* | Wrong copy and paste :bomb:Rafael Mendonça França2013-01-051-1/+1
| | | | | | | | [ci skip]
* | Add documentation to raise_on_unpermitted_parameters optionRafael Mendonça França2013-01-051-2/+17
| | | | | | | | [ci skip]
* | Rename the configuration to raise_on_unpermitted_parametersRafael Mendonça França2013-01-051-9/+9
| | | | | | | | Also changed the exception to UnpermittedParameters
* | Allow developers to enable raising of exception when unexpected params are ↵Thomas Drake-Brockman2013-01-051-0/+22
| | | | | | | | provided.
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-04 10:58:14 +0000