rails.git - Mirror of official rails repo with custom fixes.

	Commit message (Collapse)	Author	Age	Files	Lines
*	Add note about using 303 See Other for XHR requests other than GET/POST	Andrew White	2012-04-30	1	-0/+10
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	IE since version 6 and recently Chrome and Firefox have started following 302 redirects from XHR requests other than GET/POST using the original request method. This can lead to DELETE requests being redirected amongst other things. Although it doesn't directly affect the Rails framework since it doesn't return a 302 redirect to any non-GET/POST request a note has been added to raise awareness of the issue. Some references: Original article from @technoweenie: http://techno-weenie.net/2011/8/19/ie9-deletes-stuff/ Hacker News discussion of the article: http://news.ycombinator.com/item?id=2903493 WebKit bug report: https://bugs.webkit.org/show_bug.cgi?id=46183 Firefox bug report and changeset: https://bugzilla.mozilla.org/show_bug.cgi?id=598304 https://hg.mozilla.org/mozilla-central/rev/9525d7e2d20d Chrome bug report: http://code.google.com/p/chromium/issues/detail?id=56373 HTTPbis bug report and changeset: http://trac.tools.ietf.org/wg/httpbis/trac/ticket/160 http://trac.tools.ietf.org/wg/httpbis/trac/changeset/1428 Roy T. Fielding's history of the issue: http://ftp.ics.uci.edu/pub/ietf/http/hypermail/1997q3/0611.html Automated browser tests for the issue: http://www.mnot.net/javascript/xmlhttprequest/ Fixes #4144
*	Avoid calling content type multiple times	José Valim	2012-04-29	1	-4/+6
\|
*	Merge pull request #2321 from omjokine/master	José Valim	2012-04-29	1	-1/+4
\|\ \| \| \| \|	JSONP should use mimetype application/javascript
\| *	Merge remote-tracking branch 'upstream/master'	Olli Jokinen	2011-12-01	15	-73/+83
\| \|\
\| * \|	Change mimetype to Mime::JS if JSONP is used	Olli Jokinen	2011-07-28	1	-1/+4
\| \| \|
* \| \|	Use <tt>Foo::Bar</tt> instead of +Foo::Bar+	Mark Rushakof	2012-04-27	2	-4/+4
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	The latter doesn't render as code in HTML output. Regex used in Rubymine to locate the latter form: (\+)(:*\w+:(?::\|\w)+)(\+)
* \| \|	#send_file leans on Rack::Sendfile to X-Accel-Redirect the file's path, so ↵	Jeremy Kemper	2012-04-12	1	-1/+21
\| \| \| \| \| \| \| \| \| \| \| \|	opening the file to set the response body is wasteful. Set a FileBody wrapper instead that responds to to_path and streams the file if needed.
* \| \|	Remove unnecessary in HTML 5 type attribute with default value	Andrey A.I. Sitnik	2012-04-05	1	-1/+1
\| \| \|
* \| \|	Merge pull request #5716 from jurriaan/tr-gsub-cleanup	Santiago Pastorino	2012-04-04	3	-3/+3
\|\ \ \ \| \| \| \| \| \| \| \|	Updated/changed unneeded tr/gsubs
\| * \| \|	Updated/changed useless tr/gsubs	Jurriaan Pruis	2012-04-03	3	-3/+3
\| \| \| \|
* \| \| \|	Fix AC responder example	Alexey Vakhov	2012-04-04	1	-1/+1
\| \| \| \|
* \| \| \|	Remove non-obligatory params in AC respond_to examples	Alexey Vakhov	2012-04-03	1	-2/+2
\|/ / /
* \| \|	Merge branch 'master' of github.com:lifo/docrails	Vijay Dev	2012-04-01	1	-1/+0
\|\ \ \
\| * \| \|	CSRF messages are no longer controlled by 422.html because ↵	Tony Primerano	2012-03-28	1	-1/+0
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	InvalidAuthenticityToken is not raised
* \| \| \|	Remove obsolete reader from AC::MethodNotAllowed exception class	Alexey Vakhov	2012-03-31	1	-2/+0
\| \| \| \|
* \| \| \|	Remove AC::RenderError class second declaration	Alexey Vakhov	2012-03-31	1	-3/+0
\|/ / /
* \| \|	respond_with description: changed 'response' to 'format'	Mark Thomson	2012-03-18	1	-1/+1
\| \| \|
* \| \|	Revised comments for respond_with	Mark Thomson	2012-03-18	1	-17/+18
\| \| \|
* \| \|	Merge remote-tracking branch 'origin/master'	Mark Thomson	2012-03-17	5	-6/+27
\|\ \ \
\| * \| \|	strip null bytes from Location header as well	Brian Lopez	2012-03-15	1	-1/+1
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	add tests for stripping \r\n chars since that's already happening
\| * \| \|	Simplify helpers handling. Ensure Metal can run AC hooks.	José Valim	2012-03-15	1	-0/+1
\| \| \| \|
\| * \| \|	Add ActionController::HTTP	Santiago Pastorino	2012-03-14	1	-1/+1
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	More info http://edgeguides.rubyonrails.org/api_app.html [Carlos Antonio da Silva & Santiago Pastorino]
\| * \| \|	Merge branch 'master' of github.com:lifo/docrails	Vijay Dev	2012-03-13	1	-1/+24
\| \|\ \ \
\| * \| \| \|	Updated description of #retrieve_collector_from_mimes	Mark Thomson	2012-03-13	1	-2/+6
\| \| \| \| \|
\| * \| \| \|	configure how unverified request will be handled	Sergey Nartimov	2012-03-09	1	-2/+18
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	can be configured using `:with` option in `protect_from_forgery` method or `request_forgery_protection_method` config option possible values: - :reset_session (default) - :exception new applications are generated with: protect_from_forgery :with => :exception
* \| \| \| \|	Revised description for responds_with	Mark Thomson	2012-03-17	1	-19/+115
\| \|/ / / \|/\| \| \|
* \| \| \|	Added documentation for the ActionController::MimeResponds::Collector class.	Mark Thomson	2012-03-13	1	-1/+24
\|/ / /
* \| \|	Set the rendered_format on respond_to.	José Valim	2012-03-07	1	-0/+1
\| \| \|
* \| \|	Remove unused ActionController::SessionManagement	Santiago Pastorino	2012-03-06	1	-9/+0
\| \| \|
* \| \|	Avoid ImplicitRender just call render directly	Santiago Pastorino	2012-03-06	1	-3/+1
\| \| \|
* \| \|	Clean up module docs [ci skip]	Vijay Dev	2012-03-07	1	-21/+21
\| \| \| \| \| \| \| \| \| \| \| \|	Removed some useless docstrings and no-doc'ed some.
* \| \|	Always passing a respond block from to responder	Prem Sichanugrist	2012-03-05	2	-12/+13
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	We should let the responder to decide what to do with the given overridden response block, and not short circuit it. Fixes #5280
* \| \|	remove usages of AS::OrderedHash	Vishnu Atrai	2012-03-03	1	-1/+1
\| \| \|
* \| \|	Merge branch 'master' of github.com:lifo/docrails	Vijay Dev	2012-03-03	1	-1/+1
\|\ \ \
\| * \| \|	Removed max-stale from the setting the cache-headers in the response as ↵	Anuj Dutta	2012-03-02	1	-1/+1
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	max-stale is a cache request header.
* \| \| \|	Can't cache url_options on a controller level	Piotr Sarnacki	2012-03-02	1	-11/+12
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	It fails if routes from to railties are called in one context, for example: blog.posts_path and main_app.users_path
* \| \| \|	Optimize path helpers.	José Valim	2012-03-02	1	-16/+14
\| \| \| \|
* \| \| \|	fix api doc [ci skip]	Vijay Dev	2012-03-01	1	-1/+1
\|/ / /
* \| \|	Document the :host option for force_ssl	Andrew White	2012-02-23	1	-0/+1
\| \| \|
* \| \|	Update documentation for force_ssl - closes #5023.	Andrew White	2012-02-23	1	-1/+14
\| \| \|
* \| \|	SSL should not be disabled by default in any environment.	Pat Allan	2012-02-23	1	-1/+1
\| \| \|
* \| \|	Merge pull request #5130 from dlee/revised_patch_verb	Xavier Noria	2012-02-22	2	-8/+9
\|\ \ \ \| \| \| \| \| \| \| \|	Add config.default_method_for_update to support PATCH
\| * \| \|	Add config.default_method_for_update to support PATCH	David Lee	2012-02-22	2	-8/+9
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	PATCH is the correct HTML verb to map to the #update action. The semantics for PATCH allows for partial updates, whereas PUT requires a complete replacement. Changes: * adds config.default_method_for_update you can set to :patch * optionally use PATCH instead of PUT in resource routes and forms * adds the #patch verb to routes to detect PATCH requests * adds #patch? to Request * changes documentation and comments to indicate support for PATCH This change maintains complete backwards compatibility by keeping :put as the default for config.default_method_for_update.
* \| \| \|	format lookup for partials is derived from the format in which the template ↵	Santiago Pastorino	2012-02-22	2	-2/+2
\|/ / / \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	is being rendered Closes #5025 part 2
* \| \|	search private / protected methods in trunk ruby	Aaron Patterson	2012-02-20	1	-1/+1
\| \| \|
* \| \|	Merge pull request #3479 from arvida/ensure-date-header-on-expires-in	José Valim	2012-02-18	1	-0/+3
\|\ \ \ \| \| \| \| \| \| \| \|	Ensure Date header on expires_in
\| * \| \|	Ensuring a HTTP Date header when setting Cache-Control's max-age with ↵	arvida	2011-10-31	1	-0/+3
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	#expires_in
* \| \| \|	let expires_in accept a must_revalidate flag	Xavier Noria	2012-02-17	1	-2/+6
\| \| \| \|
* \| \| \|	Fixed force_ssl redirects to include original query params	Ryan McGeary	2012-02-07	1	-0/+1
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	`ActionController.force_ssl` redirects http URLs to their https equivalent; however, when a URL contains a query string, the resulting redirect lacked the original query string. Conflicts: actionpack/lib/action_controller/metal/force_ssl.rb
* \| \| \|	Clean up a bit default_response handling and cache format negotiation.	José Valim	2012-02-04	2	-19/+17
\| \| \| \|