aboutsummaryrefslogtreecommitdiffstats
path: root/actionpack/lib/action_dispatch
Commit message (Collapse)AuthorAgeFilesLines
* use a list to represent the supported verbs for a route objectAaron Patterson2011-03-142-11/+13
|
* stop splatting arguments so that we can understand wtf is going onAaron Patterson2011-03-141-2/+3
|
* RegexpWithNamedGroups is only used for path_info, so only apply to path infoAaron Patterson2011-03-141-1/+2
|
* Just define methods directly on the class rather than use the moduleAaron Patterson2011-03-111-14/+5
| | | | | | indirection. clever--
* do not automatically add format to routes that end in a slashAaron Patterson2011-03-111-1/+1
|
* Filter sensitive query string parameters in the log [#6244 state:committed]Prem Sichanugrist & Xavier Noria2011-03-111-4/+17
| | | | | | This provides more safety to applications that put secret information in the query string, such as API keys or SSO tokens. Signed-off-by: Xavier Noria <fxn@hashref.com>
* Filter params that return nil for to_param and allow through false valuesAndrew White2011-03-091-1/+1
|
* stop being clever and just call methods on the Route objectAaron Patterson2011-03-082-1/+4
|
* Improve testing of cookies in functional tests:Andrew White2011-03-062-2/+7
| | | | | | | | | - cookies can be set using string or symbol keys - cookies are preserved across calls to get, post, etc. - cookie names and values are escaped - cookies can be cleared using @request.cookies.clear [#6272 state:resolved]
* Raise ArgumentError if route name is invalid [#6517 state:resolved]Andrew White2011-03-061-0/+2
|
* Action Pack typos.R.T. Lechow2011-03-051-2/+2
|
* make sure string keys are always looked up from the class cacheAaron Patterson2011-03-021-2/+3
|
* use newer class cache apiAaron Patterson2011-03-021-1/+1
|
* yo dawg, directly use the class cache rather than the cache of the cacheAaron Patterson2011-03-011-1/+2
|
* refactor Reference to a ClassCache object, fix lazy lookup in Middleware so ↵Aaron Patterson2011-03-012-5/+13
| | | | that anonymous classes are supported
* initialize ivarsAaron Patterson2011-03-011-1/+1
|
* Enumerable gives us include?, so remove include?Aaron Patterson2011-03-011-4/+0
|
* prefer composition over inheritance with AD::MSAaron Patterson2011-03-011-8/+37
|
* Revert "compute ext in initialize, and use an attr_reader"Aaron Patterson2011-02-281-5/+7
| | | | | | | | This reverts commit 2dbb73bdda3b81947fd112486ac4285fb1a6e3a9. Conflicts: actionpack/lib/action_dispatch/middleware/static.rb
* no need to pass a regex to Regexp.compileAaron Patterson2011-02-281-4/+4
|
* compute ext in initialize, and use an attr_readerAaron Patterson2011-02-281-7/+5
|
* Fix named route helper for routes nested inside deeply nested resourcesAndrew White2011-02-141-1/+1
| | | | [#6416 state:resolved]
* Add notes on how to override the default :id constraint [#5994 state:resolved]Andrew White2011-02-141-1/+8
|
* Remove incorrect assert_recognizes exampleAndrew White2011-02-131-3/+0
|
* Fix assert_recognizes with block constraints [#5805 state:resolved]Andrew White2011-02-133-6/+13
|
* Add missing deprecation requireCarlos Antonio da Silva2011-02-111-0/+1
| | | | Signed-off-by: Santiago Pastorino <santiago@wyeworks.com>
* Change the CSRF whitelisting to only apply to get requestsMichael Koziarski2011-02-081-1/+2
| | | | | | | | Unfortunately the previous method of browser detection and XHR whitelisting is unable to prevent requests issued from some Flash animations and Java applets. To ease the work required to include the CSRF token in ajax requests rails now supports providing the token in a custom http header: X-CSRF-Token: ... This fixes CVE-2011-0447
* Use Mime::Type references.José Valim2011-02-081-1/+5
|
* Merge branch 'master' of git://github.com/lifo/docrailsXavier Noria2011-02-051-17/+39
|\
| * improve routing docs, mostly for #matchGabriel Horner2011-02-051-12/+34
| |
| * keep options titles consistent to "Options"Gabriel Horner2011-02-031-5/+5
| |
* | fixed bug with nested resources within shallow scopegerman2011-02-041-1/+1
| | | | | | | | | | | | [#6372 state:committed] Signed-off-by: Santiago Pastorino <santiago@wyeworks.com>
* | Protocol-relative URL support.Stephen Celis2011-02-021-2/+5
|/ | | | | | [#5774 state:committed] Signed-off-by: Santiago Pastorino <santiago@wyeworks.com>
* Merge branch 'master' of git://github.com/lifo/docrailsXavier Noria2011-02-023-94/+194
|\
| * explain different ways to use match()Jonathan Dance + Gabriel Horner2011-01-291-9/+16
| |
| * organize and expand on options for routing methodsJonathan Dance + Gabriel Horner2011-01-291-81/+161
| |
| * corrected the location of status code symbolsmisfo2011-01-291-1/+1
| |
| * add cross-references and documentation for scopeJonathan Dance + Gabriel Horner2011-01-281-0/+12
| |
| * fix cross-references in HttpHelper methodsJonathan Dance + Gabriel Horner2011-01-281-4/+4
| |
| * clarify what the "they" that are is and what the "are" in question isMatt Jankowski2011-01-271-1/+2
| |
* | Use run_callbacks; the generated _run_<name>_callbacks method is not a ↵John Firebaugh2011-01-312-5/+5
| | | | | | | | | | | | public interface. Signed-off-by: Santiago Pastorino <santiago@wyeworks.com>
* | Add tld_length option when using domain :all in cookiesbrainopia2011-01-211-9/+9
| | | | | | | | Signed-off-by: José Valim <jose.valim@gmail.com>
* | Support list of possible domains for cookiesbrainopia2011-01-211-0/+3
|/ | | | Signed-off-by: José Valim <jose.valim@gmail.com>
* removing more unused variablesAaron Patterson2011-01-171-1/+1
|
* use raise to create exceptions and to set the backtraceAaron Patterson2011-01-122-2/+2
|
* reraising should be in the rescue blockAaron Patterson2011-01-121-1/+1
|
* Refactor to handle the X-Cascade without having to raise an exceptionKrekoten' Marjan2011-01-091-12/+12
|
* render :template is faster than render :fileSantiago Pastorino2011-01-012-5/+4
|
* This is not needed anymoreSantiago Pastorino2011-01-011-3/+0
|
* Don't deprecate to_prepare.José Valim2010-12-231-4/+4
|