aboutsummaryrefslogtreecommitdiffstats
path: root/actionpack/test/controller
Commit message (Collapse)AuthorAgeFilesLines
...
* Change the CSRF whitelisting to only apply to get requestsMichael Koziarski2011-02-081-136/+75
| | | | | | | | Unfortunately the previous method of browser detection and XHR whitelisting is unable to prevent requests issued from some Flash animations and Java applets. To ease the work required to include the CSRF token in ajax requests rails now supports providing the token in a custom http header: X-CSRF-Token: ... This fixes CVE-2011-0447
* Use Mime::Type references.José Valim2011-02-081-0/+9
|
* Ensure render is case sensitive even on systems with case-insensitive ↵José Valim2011-02-081-0/+10
| | | | | | filesystems. This fixes CVE-2011-0449
* cleaning up some warnings on 1.9.3Aaron Patterson2011-02-075-20/+19
|
* put authenticity_token option in parity w/ remoteDan Pickett2011-02-061-2/+2
| | | | | | [#6228 state:committed] Signed-off-by: Santiago Pastorino <santiago@wyeworks.com>
* Allow page_cache_directory to be set as a PathnameAndre Arko2011-02-061-0/+11
| | | | | | For example, page_cache_directory = Rails.root.join("public/cache") Signed-off-by: Santiago Pastorino <santiago@wyeworks.com>
* Added tests for form_for and an authenticity_token option. Added docs for ↵Timothy N. Tsvetkov2011-02-051-0/+18
| | | | | | | | for_for and authenticity_token option. Added section to form helpers guide about forms for external resources and new authenticity_token option for form_tag and form_for helpers. [#6228 state:committed] Signed-off-by: Santiago Pastorino <santiago@wyeworks.com>
* Protocol-relative URL support.Stephen Celis2011-02-021-1/+14
| | | | | | [#5774 state:committed] Signed-off-by: Santiago Pastorino <santiago@wyeworks.com>
* render_to_string must ensure that response_bodyNeeraj Singh2011-01-251-0/+10
| | | | | | | | is nil [ #5875 state:resolved] Signed-off-by: José Valim <jose.valim@gmail.com>
* A patch so that http status codes are still included in logs even during an ↵Doug Fales2011-01-251-0/+15
| | | | | | exception [#6333 state:resolved] Signed-off-by: José Valim <jose.valim@gmail.com>
* use spec compliant YAMLAaron Patterson2011-01-211-1/+1
|
* removing usesless variable assignmentsAaron Patterson2011-01-181-2/+0
|
* Issue one Cache#read command instead of two in the case of a fragment cache hitChristos Trochalakis2011-01-181-4/+4
|
* fixing wrong testAaron Patterson2011-01-171-1/+1
|
* authenticity_token option for form_tag [#2988 state:resolved]Jakub Kuźma2011-01-091-0/+18
|
* Speed up template inheritance and remove template inheritance optionwycats2010-12-261-12/+0
|
* A bunch of cleanup on the inherited template patchwycats2010-12-261-1/+1
|
* all tests passartemave2010-12-261-4/+4
|
* #948 make template inheritance optionalartemave2010-12-261-0/+11
|
* #948 template_inheritanceartemave2010-12-262-2/+66
|
* Ensure that while caching a page rails takes intoNeeraj Singh2010-12-091-0/+16
| | | | | | | | account the resolved mime type for the request [#6110 state:resolved] Signed-off-by: José Valim <jose.valim@gmail.com>
* Merge remote branch 'joshk/redirect_routing'José Valim2010-12-031-284/+297
|\ | | | | | | | | | | | | | | Conflicts: actionpack/CHANGELOG actionpack/lib/action_controller/metal/mime_responds.rb Signed-off-by: José Valim <jose.valim@gmail.com>
| * The redirect routing method now allows for a hash of options which only ↵Josh Kalderimis2010-11-301-284/+297
| | | | | | | | changes the relevant parts of the url, or an object which responds to call can be supplied so common redirect rules can be easily reused. This commit includes a change where url generation from parts has been moved to AD::Http::URL as a class method.
* | Fix tests on 1.9.2.José Valim2010-11-281-7/+9
|/
* If a user wants json output then try best to render json output. In such ↵Neeraj Singh2010-11-241-0/+18
| | | | | | | | cases prefer kind_of(String) over respond_to?(to_str) [#5841 state:resolved] Signed-off-by: José Valim <jose.valim@gmail.com>
* clean up test by using unregister methodNeeraj Singh2010-11-251-12/+6
|
* Remove the not needed setup and teardownNeeraj Singh2010-11-251-3/+0
|
* :subdomain, :domain and :tld_length options can now be used in url_for, ↵Josh Kalderimis2010-11-231-1/+22
| | | | | | allowing for easy manipulation of the host during link generation. Signed-off-by: José Valim <jose.valim@gmail.com>
* adding a test for the runner module [#6027 state:resolved]Aaron Patterson2010-11-221-0/+22
|
* move the mime registration code to setup so thatNeeraj Singh2010-11-221-2/+19
| | | | | | | | | | | | | | | it could be cleaned up on teardown. Currently the test code test/controller/mime_responds_test.rb impacts test/dispatch/mime_type_test.rb. dispatch/mime_type_test.rb runs independently fine but when run as part of rake breaks because of new mime types registered in controller/mime_responds_test.rb Signed-off-by: José Valim <jose.valim@gmail.com>
* do not assume that there is no space betweenNeeraj Singh2010-11-221-0/+4
| | | | | | leading */* and comma Signed-off-by: José Valim <jose.valim@gmail.com>
* failing test for #6022Neeraj Singh2010-11-221-0/+34
| | | | Signed-off-by: José Valim <jose.valim@gmail.com>
* current code ignores http header "Accept" if itNeeraj Singh2010-11-221-0/+6
| | | | | | | | | | | has ....,*/* . It is possible to a device to send request such that */* appear at the beginning of the "Accept" header. This patch ensures that "Accept" header is ignored for such cases too. Signed-off-by: José Valim <jose.valim@gmail.com>
* realigns a series of hash arrowsXavier Noria2010-11-211-10/+10
|
* Revert "Quick fix for not escaping []s (not ideal)"Santiago Pastorino2010-11-181-3/+3
| | | | | | | | | According to http://www.ietf.org/rfc/rfc2616.txt and http://tools.ietf.org/rfc/rfc3986.txt [ and ] are reserved characters and should be escaped using "%" HEX HEX This reverts commit 856d2fd874d72dd9f83204affff4edfef3308361 and 1ee9b40b18a0bed5bb10a0785f7e2730bac983f6..
* fix warning during test executionNeeraj Singh2010-11-171-1/+1
| | | | | | [#5997 state:resolved] Signed-off-by: Santiago Pastorino <santiago@wyeworks.com>
* Anchors should be allowed on constraints that are not on path segmentsCarl Lerche2010-11-161-0/+8
|
* make sure we are only doing sanity checking against regular expressionsAaron Patterson2010-11-151-0/+8
|
* Make after_filter halt when before_filter renders or redirects [#5648 ↵Marcelo Giorgi2010-11-111-2/+79
| | | | | | state:resolved] Signed-off-by: José Valim <jose.valim@gmail.com>
* Added support for Erubis <%== tagJan Maurits Faber2010-11-081-0/+10
| | | | | | | <%== x %> is syntactic sugar for <%= raw(x) %> Signed-off-by: Michael Koziarski <michael@koziarski.com> [#5918 status:committed]
* Fix problems trying to functional test AC::Metal controllersSantiago Pastorino2010-11-061-0/+7
| | | | [#5393 state:committed]
* Correctly handle the case of an API response that returns a hash by treating ↵Chris Eppstein2010-11-061-0/+16
| | | | a single hash argument as the resource instead of as options.
* Reset assert_template instance variables between requests [#5832 state:resolved]Andrew White2010-10-181-0/+8
|
* in regexps, the dot in a character class is not a metacharacterXavier Noria2010-10-151-1/+1
|
* Remove :cache => true on lookup templates initialization.José Valim2010-10-141-10/+1
|
* render :once should consider the current controller prefix.José Valim2010-10-141-7/+30
|
* Return a valid empty JSON on successful PUT and DELETE requests. [#5199 ↵Szymon Nowak2010-10-121-0/+19
| | | | | | state:resolved] Signed-off-by: José Valim <jose.valim@gmail.com>
* Use identifiers for template equality.José Valim2010-10-101-9/+8
|
* Add support to render :once.José Valim2010-10-101-0/+73
| | | | This will be used internally by sprockets to ensure requires are executed just once.
* Fix a few bugs when trying to use Head standalonewycats2010-10-101-0/+15
|
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-08 04:53:43 +0000