aboutsummaryrefslogtreecommitdiffstats
path: root/actionpack/lib/action_controller/metal
Commit message (Collapse)AuthorAgeFilesLines
...
| * | More using <tt>x</tt> instead of +x+ when the latter renders improperly.Mark Rushakoff2012-04-271-1/+1
| | |
* | | no need to dup options in send_dataSergey Nartimov2012-04-301-1/+1
| | | | | | | | | | | | options aren't modified inside send_file_headers!
* | | allow send_file/send_data to skip disposition header, closes #2973Sergey Nartimov2012-04-301-17/+11
| | |
* | | Add note about using 303 See Other for XHR requests other than GET/POSTAndrew White2012-04-301-0/+10
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | IE since version 6 and recently Chrome and Firefox have started following 302 redirects from XHR requests other than GET/POST using the original request method. This can lead to DELETE requests being redirected amongst other things. Although it doesn't directly affect the Rails framework since it doesn't return a 302 redirect to any non-GET/POST request a note has been added to raise awareness of the issue. Some references: Original article from @technoweenie: http://techno-weenie.net/2011/8/19/ie9-deletes-stuff/ Hacker News discussion of the article: http://news.ycombinator.com/item?id=2903493 WebKit bug report: https://bugs.webkit.org/show_bug.cgi?id=46183 Firefox bug report and changeset: https://bugzilla.mozilla.org/show_bug.cgi?id=598304 https://hg.mozilla.org/mozilla-central/rev/9525d7e2d20d Chrome bug report: http://code.google.com/p/chromium/issues/detail?id=56373 HTTPbis bug report and changeset: http://trac.tools.ietf.org/wg/httpbis/trac/ticket/160 http://trac.tools.ietf.org/wg/httpbis/trac/changeset/1428 Roy T. Fielding's history of the issue: http://ftp.ics.uci.edu/pub/ietf/http/hypermail/1997q3/0611.html Automated browser tests for the issue: http://www.mnot.net/javascript/xmlhttprequest/ Fixes #4144
* | | Avoid calling content type multiple timesJosé Valim2012-04-291-4/+6
| | |
* | | Merge pull request #2321 from omjokine/masterJosé Valim2012-04-291-1/+4
|\ \ \ | |/ / |/| | JSONP should use mimetype application/javascript
| * | Merge remote-tracking branch 'upstream/master'Olli Jokinen2011-12-0115-73/+83
| |\ \
| * | | Change mimetype to Mime::JS if JSONP is usedOlli Jokinen2011-07-281-1/+4
| | | |
* | | | Use <tt>Foo::Bar</tt> instead of +Foo::Bar+Mark Rushakof2012-04-272-4/+4
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | The latter doesn't render as code in HTML output. Regex used in Rubymine to locate the latter form: (\+)(:*\w+:(?::|\w)+)(\+)
* | | | #send_file leans on Rack::Sendfile to X-Accel-Redirect the file's path, so ↵Jeremy Kemper2012-04-121-1/+21
| | | | | | | | | | | | | | | | opening the file to set the response body is wasteful. Set a FileBody wrapper instead that responds to to_path and streams the file if needed.
* | | | Remove unnecessary in HTML 5 type attribute with default valueAndrey A.I. Sitnik2012-04-051-1/+1
| | | |
* | | | Merge pull request #5716 from jurriaan/tr-gsub-cleanupSantiago Pastorino2012-04-043-3/+3
|\ \ \ \ | | | | | | | | | | Updated/changed unneeded tr/gsubs
| * | | | Updated/changed useless tr/gsubsJurriaan Pruis2012-04-033-3/+3
| | | | |
* | | | | Fix AC responder exampleAlexey Vakhov2012-04-041-1/+1
| | | | |
* | | | | Remove non-obligatory params in AC respond_to examplesAlexey Vakhov2012-04-031-2/+2
|/ / / /
* | | | Merge branch 'master' of github.com:lifo/docrailsVijay Dev2012-04-011-1/+0
|\ \ \ \
| * | | | CSRF messages are no longer controlled by 422.html because ↵Tony Primerano2012-03-281-1/+0
| | | | | | | | | | | | | | | | | | | | InvalidAuthenticityToken is not raised
* | | | | Remove obsolete reader from AC::MethodNotAllowed exception classAlexey Vakhov2012-03-311-2/+0
| | | | |
* | | | | Remove AC::RenderError class second declarationAlexey Vakhov2012-03-311-3/+0
|/ / / /
* | | | respond_with description: changed 'response' to 'format'Mark Thomson2012-03-181-1/+1
| | | |
* | | | Revised comments for respond_withMark Thomson2012-03-181-17/+18
| | | |
* | | | Merge remote-tracking branch 'origin/master'Mark Thomson2012-03-175-6/+27
|\ \ \ \
| * | | | strip null bytes from Location header as wellBrian Lopez2012-03-151-1/+1
| | | | | | | | | | | | | | | | | | | | add tests for stripping \r\n chars since that's already happening
| * | | | Simplify helpers handling. Ensure Metal can run AC hooks.José Valim2012-03-151-0/+1
| | | | |
| * | | | Add ActionController::HTTPSantiago Pastorino2012-03-141-1/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | More info http://edgeguides.rubyonrails.org/api_app.html [Carlos Antonio da Silva & Santiago Pastorino]
| * | | | Merge branch 'master' of github.com:lifo/docrailsVijay Dev2012-03-131-1/+24
| |\ \ \ \
| * | | | | Updated description of #retrieve_collector_from_mimesMark Thomson2012-03-131-2/+6
| | | | | |
| * | | | | configure how unverified request will be handledSergey Nartimov2012-03-091-2/+18
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | can be configured using `:with` option in `protect_from_forgery` method or `request_forgery_protection_method` config option possible values: - :reset_session (default) - :exception new applications are generated with: protect_from_forgery :with => :exception
* | | | | | Revised description for responds_withMark Thomson2012-03-171-19/+115
| |/ / / / |/| | | |
* | | | | Added documentation for the ActionController::MimeResponds::Collector class.Mark Thomson2012-03-131-1/+24
|/ / / /
* | | | Set the rendered_format on respond_to.José Valim2012-03-071-0/+1
| | | |
* | | | Remove unused ActionController::SessionManagementSantiago Pastorino2012-03-061-9/+0
| | | |
* | | | Avoid ImplicitRender just call render directlySantiago Pastorino2012-03-061-3/+1
| | | |
* | | | Clean up module docs [ci skip]Vijay Dev2012-03-071-21/+21
| | | | | | | | | | | | | | | | Removed some useless docstrings and no-doc'ed some.
* | | | Always passing a respond block from to responderPrem Sichanugrist2012-03-052-12/+13
| | | | | | | | | | | | | | | | | | | | | | | | | | | | We should let the responder to decide what to do with the given overridden response block, and not short circuit it. Fixes #5280
* | | | remove usages of AS::OrderedHashVishnu Atrai2012-03-031-1/+1
| | | |
* | | | Merge branch 'master' of github.com:lifo/docrailsVijay Dev2012-03-031-1/+1
|\ \ \ \
| * | | | Removed max-stale from the setting the cache-headers in the response as ↵Anuj Dutta2012-03-021-1/+1
| | | | | | | | | | | | | | | | | | | | max-stale is a cache request header.
* | | | | Can't cache url_options on a controller levelPiotr Sarnacki2012-03-021-11/+12
| | | | | | | | | | | | | | | | | | | | | | | | | It fails if routes from to railties are called in one context, for example: blog.posts_path and main_app.users_path
* | | | | Optimize path helpers.José Valim2012-03-021-16/+14
| | | | |
* | | | | fix api doc [ci skip]Vijay Dev2012-03-011-1/+1
|/ / / /
* | | | Document the :host option for force_sslAndrew White2012-02-231-0/+1
| | | |
* | | | Update documentation for force_ssl - closes #5023.Andrew White2012-02-231-1/+14
| | | |
* | | | SSL should not be disabled by default in any environment.Pat Allan2012-02-231-1/+1
| | | |
* | | | Merge pull request #5130 from dlee/revised_patch_verbXavier Noria2012-02-222-8/+9
|\ \ \ \ | | | | | | | | | | Add config.default_method_for_update to support PATCH
| * | | | Add config.default_method_for_update to support PATCHDavid Lee2012-02-222-8/+9
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | PATCH is the correct HTML verb to map to the #update action. The semantics for PATCH allows for partial updates, whereas PUT requires a complete replacement. Changes: * adds config.default_method_for_update you can set to :patch * optionally use PATCH instead of PUT in resource routes and forms * adds the #patch verb to routes to detect PATCH requests * adds #patch? to Request * changes documentation and comments to indicate support for PATCH This change maintains complete backwards compatibility by keeping :put as the default for config.default_method_for_update.
* | | | | format lookup for partials is derived from the format in which the template ↵Santiago Pastorino2012-02-222-2/+2
|/ / / / | | | | | | | | | | | | | | | | | | | | is being rendered Closes #5025 part 2
* | | | search private / protected methods in trunk rubyAaron Patterson2012-02-201-1/+1
| | | |
* | | | Merge pull request #3479 from arvida/ensure-date-header-on-expires-inJosé Valim2012-02-181-0/+3
|\ \ \ \ | | | | | | | | | | Ensure Date header on expires_in
| * | | | Ensuring a HTTP Date header when setting Cache-Control's max-age with ↵arvida2011-10-311-0/+3
| | | | | | | | | | | | | | | | | | | | #expires_in
generated by cgit v1.2.3 (git 2.25.1) at 2025-11-02 20:38:28 +0000