aboutsummaryrefslogtreecommitdiffstats
path: root/actionpack/lib/action_controller
Commit message (Collapse)AuthorAgeFilesLines
* port over some of the csrf_killer README docsRick Olson2007-09-241-0/+13
| | | | git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@7614 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Beefed up docs a bitDavid Heinemeier Hansson2007-09-241-17/+27
| | | | git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@7612 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Optimized named routes respect AbstractRequest.relative_url_root. Closes #9612.Jeremy Kemper2007-09-231-0/+2
| | | | git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@7605 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Dont need all of test/unit (closes #6673) [zenspider/josh]David Heinemeier Hansson2007-09-231-1/+0
| | | | git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@7602 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Remove , and ; (comma and semicolon) from routing separators again. ↵Jeremy Kemper2007-09-231-2/+2
| | | | | | References #8558. git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@7599 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Fixed cache_page to use the request url instead of the routing options when ↵David Heinemeier Hansson2007-09-231-8/+11
| | | | | | picking a save path (closes #8614) [josh] git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@7598 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Introduce ActionController::Base.rescue_from to declare exception-handling ↵Jeremy Kemper2007-09-231-2/+51
| | | | | | methods. Cleaner style than the case-heavy rescue_action_in_public. Closes #9449. git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@7597 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Rename some RequestForgeryProtection methods. The class method is now ↵Rick Olson2007-09-232-21/+32
| | | | | | #protect_from_forgery, and the default parameter is now 'authenticity_token'. [Rick] git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@7596 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Merge csrf_killer plugin into rails. Adds RequestForgeryProtection model ↵Rick Olson2007-09-233-1/+81
| | | | | | that verifies session-specific _tokens for non-GET requests. [Rick] git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@7592 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Roll back #7578, tests failedDavid Heinemeier Hansson2007-09-221-2/+3
| | | | git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@7580 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Improve the error message for assert_redirected_to (closes #7337) [sandofsky]David Heinemeier Hansson2007-09-221-3/+2
| | | | git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@7578 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Disable the routing optimisation code when dealing with foo_url helpers. ↵Michael Koziarski2007-09-221-3/+5
| | | | | | Add test to actionmailer to expose the problem they introduced. References #9450 [Koz] git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@7572 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Remove use of & logic operator. Closes #8114.Nicholas Seckar2007-09-221-1/+1
| | | | git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@7571 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Doc fix (closes #9123) [tzaharia]David Heinemeier Hansson2007-09-221-1/+2
| | | | git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@7559 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Fix bufferDavid Heinemeier Hansson2007-09-221-0/+1
| | | | git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@7534 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* [html-scanner] Fix parsing of empty tags. Closes #7641. [anthony.bailey]Michael Koziarski2007-09-211-0/+3
| | | | git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@7528 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Prevent clashing named routes when using uncountable resources. Closes #9598Michael Koziarski2007-09-211-2/+12
| | | | git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@7526 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Added support for HTTP Only cookies (works in IE6+ and FF 2.0.5+) as an ↵David Heinemeier Hansson2007-09-212-37/+25
| | | | | | improvement for XSS attacks (closes #8895) [lifo/Spakman] git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@7525 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Don't warn when a path segment precedes a required segment. Closes #9615.Nicholas Seckar2007-09-211-1/+5
| | | | git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@7523 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Added that render :json will automatically call .to_json unless its being ↵David Heinemeier Hansson2007-09-202-2/+9
| | | | | | passed a string [DHH] Added Mime::Type.register_alias for dealing with different formats using the same mime type [DHH] git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@7520 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Fixed that default layouts did not take the format into account #9564 [lifofifo]David Heinemeier Hansson2007-09-181-1/+3
| | | | git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@7514 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Added security notice to Request#remote_ip underlining the fact that its ↵David Heinemeier Hansson2007-09-171-0/+8
| | | | | | value can be spoofed (and that you should use Request#remote_addr if thats a concern for your application) [Adrian Holovaty] git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@7502 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Disable optimisation code for UrlWriter as request.host doesn't make sense ↵Michael Koziarski2007-09-173-9/+39
| | | | | | | | | there. Don't try to use the .to_query method when the route has no dynamic segments. git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@7501 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Speed up and simplify query caching.Jeremy Kemper2007-09-171-6/+6
| | | | git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@7498 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Fixed optimized route segment escaping. Closes #9562.Jeremy Kemper2007-09-152-30/+28
| | | | git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@7487 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* root_path returns '/' not ''. Closes #9563.Jeremy Kemper2007-09-151-6/+5
| | | | git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@7482 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Fixed that setting request.format would also affect respond_to blocks [DHH]David Heinemeier Hansson2007-09-151-3/+17
| | | | git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@7479 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Add option to force binary mode on tempfile used for fixture_file_upload. ↵Jeremy Kemper2007-09-141-3/+11
| | | | | | Closes #6380. git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@7478 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Missed Reloadable bits and piecesJeremy Kemper2007-09-141-4/+0
| | | | git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@7475 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Deprecation: removed Reloadable.Jeremy Kemper2007-09-141-2/+1
| | | | git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@7473 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Purge empty filesJeremy Kemper2007-09-118-0/+0
| | | | git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@7465 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Remove empty macrosJeremy Kemper2007-09-112-0/+0
| | | | git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@7463 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Moved ActionController::Macros::AutoComplete into the auto_complete plugin ↵David Heinemeier Hansson2007-09-111-53/+0
| | | | | | on the official Rails svn #9512 [lifofifo] git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@7450 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Fixed that resource namespaces wouldnt stick to all nested resources (closes ↵David Heinemeier Hansson2007-09-101-5/+4
| | | | | | #9399) [pixeltrix] git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@7447 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Moved ActionController::Macros::InPlaceEditing into the in_place_editor ↵David Heinemeier Hansson2007-09-101-33/+0
| | | | | | plugin on the official Rails svn (closes #9513) [lifofifo] git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@7442 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Random hits from the style naziDavid Heinemeier Hansson2007-09-0917-32/+54
| | | | git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@7438 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Random hits from the style naziDavid Heinemeier Hansson2007-09-094-7/+14
| | | | git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@7437 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Removed deprecated form of calling xml_http_request/xhr without the first ↵David Heinemeier Hansson2007-09-091-9/+0
| | | | | | argument being the http verb [DHH] git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@7436 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Removed deprecated ActionController::Base.cookie (use ↵David Heinemeier Hansson2007-09-091-5/+0
| | | | | | ActionController#Base.cookies[]= instead) git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@7434 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Removed ActionController::Base.scaffold -- it went through the whole idea of ↵David Heinemeier Hansson2007-09-0911-309/+0
| | | | | | scaffolding (card board walls you remove and tweak one by one). Use the scaffold generator instead (it does resources too now!) [DHH] git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@7429 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Removed ActionController::Base#keep_flash (use flash.keep instead)David Heinemeier Hansson2007-09-091-16/+10
| | | | git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@7428 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Removed deprecated ActionController::Base#expire_matched_fragments (just ↵David Heinemeier Hansson2007-09-091-6/+0
| | | | | | call expire_fragment with a regular expression) git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@7427 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Removed the deprecated ActionController#Base.template_root/= methods (use ↵David Heinemeier Hansson2007-09-091-12/+1
| | | | | | ActionController#Base.view_paths/= instead) [DHH] git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@7426 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Optimise named route generation when using positional arguments. Closes ↵Michael Koziarski2007-09-093-8/+135
| | | | | | | | | | | | #9450 [Koz] This change delivers significant performance benefits for the most common usage scenarios for modern rails applications by avoiding the costly trip through url_for. Initial benchmarks indicate this is between 6 and 20 times as fast. git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@7421 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Explicitly require active_record/query_cache before using it.Jeremy Kemper2007-09-081-11/+13
| | | | git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@7419 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Fix layout overriding response status. Closes #9476.Jeremy Kemper2007-09-081-1/+2
| | | | git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@7418 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Fix assert_select for XML documents. Closes #8173. [dasil003]Michael Koziarski2007-09-081-1/+2
| | | | git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@7417 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Add a user_agent to TestRequestMichael Koziarski2007-09-071-1/+2
| | | | git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@7416 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Remove deprecated named routes [pixeltrix]Tobias Lütke2007-09-063-36/+21
| | | | git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@7415 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
* Allow additional parameters to be passed to named route helpers when using ↵Michael Koziarski2007-09-051-1/+8
| | | | | | positional arguments. Closes #8930 [ian.w.white@gmail.com] git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@7411 5ecf4fe2-1ee6-0310-87b1-e25e094e27de