aboutsummaryrefslogtreecommitdiffstats
path: root/actionpack/lib
Commit message (Collapse)AuthorAgeFilesLines
...
* | Remove misleading reference to polymorphic_url.José Valim2011-02-111-2/+0
| |
* | Removed Array#safe_join in AS core_ext and moved it to a view helper with ↵Josh Kalderimis2011-02-103-20/+40
| | | | | | | | | | | | the same same. This also changes how safe_join works, if items or the separator are not html_safe they are html_escape'd, a html_safe string is always returned. Signed-off-by: José Valim <jose.valim@gmail.com>
* | Revert "Removed Array#safe_join in AS core_ext and moved it to a view helper ↵José Valim2011-02-103-42/+20
| | | | | | | | | | | | | | | | with the same same." Applied the wrong version. This reverts commit 98c0c5db50a7679b3d58769ac22cb0a27a62c930.
* | Removed Array#safe_join in AS core_ext and moved it to a view helper with ↵Josh Kalderimis2011-02-103-20/+42
| | | | | | | | the same same.
* | reduce string append funcallsAaron Patterson2011-02-081-3/+3
| |
* | Change the CSRF whitelisting to only apply to get requestsMichael Koziarski2011-02-082-11/+11
| | | | | | | | | | | | | | | | Unfortunately the previous method of browser detection and XHR whitelisting is unable to prevent requests issued from some Flash animations and Java applets. To ease the work required to include the CSRF token in ajax requests rails now supports providing the token in a custom http header: X-CSRF-Token: ... This fixes CVE-2011-0447
* | Use Mime::Type references.José Valim2011-02-084-5/+9
| |
* | Ensure render is case sensitive even on systems with case-insensitive ↵José Valim2011-02-081-3/+12
| | | | | | | | | | | | filesystems. This fixes CVE-2011-0449
* | Be sure to javascript_escape the email address to prevent apostrophes ↵Michael Koziarski2011-02-081-5/+6
| | | | | | | | | | | | inadvertently causing javascript errors. This fixes CVE-2011-0446
* | fields_for with inline blocks and nested attributes already persisted does ↵Santiago Pastorino2011-02-081-10/+7
| | | | | | | | | | | | not render properly [#6381 state:committed]
* | put authenticity_token option in parity w/ remoteDan Pickett2011-02-061-4/+5
| | | | | | | | | | | | [#6228 state:committed] Signed-off-by: Santiago Pastorino <santiago@wyeworks.com>
* | Allow page_cache_directory to be set as a PathnameAndre Arko2011-02-061-1/+1
| | | | | | | | | | | | For example, page_cache_directory = Rails.root.join("public/cache") Signed-off-by: Santiago Pastorino <santiago@wyeworks.com>
* | Added tests for form_for and an authenticity_token option. Added docs for ↵Timothy N. Tsvetkov2011-02-051-0/+18
|/ | | | | | | | for_for and authenticity_token option. Added section to form helpers guide about forms for external resources and new authenticity_token option for form_tag and form_for helpers. [#6228 state:committed] Signed-off-by: Santiago Pastorino <santiago@wyeworks.com>
* Merge branch 'master' of git://github.com/lifo/docrailsXavier Noria2011-02-051-17/+39
|\
| * improve routing docs, mostly for #matchGabriel Horner2011-02-051-12/+34
| |
| * keep options titles consistent to "Options"Gabriel Horner2011-02-031-5/+5
| |
* | fixed bug with nested resources within shallow scopegerman2011-02-041-1/+1
| | | | | | | | | | | | [#6372 state:committed] Signed-off-by: Santiago Pastorino <santiago@wyeworks.com>
* | removing generation of id in submit helperFranco Brusatti2011-02-031-1/+1
| | | | | | | | | | | | [#6369 state:committed] Signed-off-by: Santiago Pastorino <santiago@wyeworks.com>
* | revises a metal exampleXavier Noria2011-02-021-4/+4
| |
* | copy-edits 2446b13Xavier Noria2011-02-021-14/+13
| |
* | Protocol-relative URL support.Stephen Celis2011-02-021-2/+5
|/ | | | | | [#5774 state:committed] Signed-off-by: Santiago Pastorino <santiago@wyeworks.com>
* Merge branch 'master' of git://github.com/lifo/docrailsXavier Noria2011-02-024-99/+249
|\
| * Provide documentation for ActionController::MetalBernerd Schaefer2011-02-021-5/+55
| |
| * explain different ways to use match()Jonathan Dance + Gabriel Horner2011-01-291-9/+16
| |
| * organize and expand on options for routing methodsJonathan Dance + Gabriel Horner2011-01-291-81/+161
| |
| * corrected the location of status code symbolsmisfo2011-01-291-1/+1
| |
| * add cross-references and documentation for scopeJonathan Dance + Gabriel Horner2011-01-281-0/+12
| |
| * fix cross-references in HttpHelper methodsJonathan Dance + Gabriel Horner2011-01-281-4/+4
| |
| * clarify what the "they" that are is and what the "are" in question isMatt Jankowski2011-01-271-1/+2
| |
* | Allow customization of form class for button_toAndrei Bocan2011-02-011-3/+13
| | | | | | | | Signed-off-by: Santiago Pastorino <santiago@wyeworks.com>
* | auto_link: avoid recognizing full width chars as a part of URI schemeAkira Matsuda2011-02-011-1/+1
| | | | | | | | | | | | | | | | fixes regression by http://github.com/rails/rails/commit/133ada6ab0f0cb7bef2bd40dbc18f2d5bc6b964e [#5503 state:committed] Signed-off-by: Santiago Pastorino <santiago@wyeworks.com>
* | Accept String value for render_partial :as optionAkira Matsuda2011-02-012-3/+3
| | | | | | | | | | | | [#6222 state:committed] Signed-off-by: Santiago Pastorino <santiago@wyeworks.com>
* | Use run_callbacks; the generated _run_<name>_callbacks method is not a ↵John Firebaugh2011-01-312-5/+5
| | | | | | | | | | | | public interface. Signed-off-by: Santiago Pastorino <santiago@wyeworks.com>
* | render_to_string must ensure that response_bodyNeeraj Singh2011-01-251-1/+1
| | | | | | | | | | | | | | | | is nil [ #5875 state:resolved] Signed-off-by: José Valim <jose.valim@gmail.com>
* | If I want to set respond_body to nil then itNeeraj Singh2011-01-251-1/+1
| | | | | | | | | | | | | | should be nil and not [nil]. If anything other than nil then wrap it in array Signed-off-by: José Valim <jose.valim@gmail.com>
* | A patch so that http status codes are still included in logs even during an ↵Doug Fales2011-01-251-1/+5
| | | | | | | | | | | | exception [#6333 state:resolved] Signed-off-by: José Valim <jose.valim@gmail.com>
* | Add tld_length option when using domain :all in cookiesbrainopia2011-01-211-9/+9
| | | | | | | | Signed-off-by: José Valim <jose.valim@gmail.com>
* | Support list of possible domains for cookiesbrainopia2011-01-211-0/+3
|/ | | | Signed-off-by: José Valim <jose.valim@gmail.com>
* Solve SystemStackError when changing locale inside ActionMailer [#5329 ↵José Valim2011-01-192-6/+7
| | | | state:resolved]
* Merge branch 'template_error' into mergeAaron Patterson2011-01-181-4/+1
|\ | | | | | | | | | | * template_error: Ensure original exception message is present in both Template::Error#message and Template::Error#inspect. ActiveSupport::Deprecation.silence no longer needed.
| * Ensure original exception message is present in both Template::Error#message ↵John Firebaugh2010-10-291-4/+1
| | | | | | | | | | | | and Template::Error#inspect. Previously, #inspect would produce #<ActionView::Template::Error: ActionView::Template::Error>, which is not very useful.
| * ActiveSupport::Deprecation.silence no longer needed.John Firebaugh2010-10-291-1/+1
| |
* | Issue one Cache#read command instead of two in the case of a fragment cache hitChristos Trochalakis2011-01-181-2/+2
| |
* | minitest added @__io__, so we should ignore it tooAaron Patterson2011-01-171-0/+1
| |
* | removing more unused variablesAaron Patterson2011-01-171-1/+1
| |
* | button_tag should escape it contentSantiago Pastorino2011-01-121-1/+1
| |
* | use raise to create exceptions and to set the backtraceAaron Patterson2011-01-122-2/+2
| |
* | reraising should be in the rescue blockAaron Patterson2011-01-121-1/+1
| |
* | Reuse the view_context from the controller, this make the test environment ↵Santiago Pastorino2011-01-121-4/+1
| | | | | | | | more similar to the code applications uses
* | Allow view in AV::TestCase to access it's controller helpers methodsSantiago Pastorino2011-01-121-0/+1
| |
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-07 23:47:15 +0000