| Commit message (Expand) | Author | Age | Files | Lines |
|---|
| ... | |
| * | | | Merge branch '5-0-beta-sec' | Aaron Patterson | 2016-01-25 | 1 | -0/+31 |
| |\ \ \ |
|
| | * | | | allow :file to be outside rails root, but anything else must be inside the ra... | Aaron Patterson | 2016-01-22 | 1 | -0/+31 |
| | |/ / |
|
| * | | | Merge pull request #23167 from maclover7/fix-21032 | Rafael França | 2016-01-21 | 1 | -0/+6 |
| |\ \ \ |
|
| | * | | | Fix `ActionController::Parameters#==` bug | Jon Moss | 2016-01-21 | 1 | -0/+6 |
| * | | | | - Fix warning introduced in https://github.com/vipulnsward/rails/commit/77acc... | Vipul A M | 2016-01-22 | 1 | -1/+3 |
| * | | | | Re-add ActionController::ApiRendering | Jon Moss | 2016-01-20 | 1 | -0/+20 |
| |/ / / |
|
| * | | | Merge pull request #17573 from zerothabhishek/master | Godfrey Chan | 2016-01-20 | 2 | -2/+2 |
| |\ \ \ |
|
| | * | | | Response etags to always be weak: Prefixed W/ to value returned by ActionDisp... | abhishek | 2016-01-20 | 2 | -2/+2 |
| * | | | | Revert "Remove literal? check to fix issue with prefixed optionals" | eileencodes | 2016-01-20 | 1 | -12/+0 |
| |/ / / |
|
| * | | | Add methods to StrongParameters | schneems | 2016-01-19 | 1 | -1/+8 |
| * | | | [close #23084] Deprecated StrongParameters | schneems | 2016-01-19 | 1 | -0/+6 |
| * | | | Remove literal? check to fix issue with prefixed optionals | eileencodes | 2016-01-16 | 1 | -0/+12 |
| * | | | Merge pull request #22985 from akshay-vishnoi/fix-typo | Rafael França | 2016-01-16 | 1 | -1/+1 |
| |\ \ \ |
|
| | * | | | test `include?`- fix typo | Akshay Vishnoi | 2016-01-09 | 1 | -1/+1 |
| * | | | | AC::Parameters#at_json: restore Rails 4.2’s value | claudiob | 2016-01-12 | 1 | -0/+6 |
| * | | | | Merge pull request #21181 from denisenkom/mypatch | Kasper Timm Hansen | 2016-01-10 | 1 | -0/+19 |
| |\ \ \ \
| |/ / /
|/| | | |
|
| | * | | | Test basic auth with symbols in login and password | Mikhail Denisenko | 2015-10-24 | 1 | -0/+19 |
| * | | | | Merge pull request #22275 from mastahyeti/per-form-csrf | Rafael França | 2016-01-06 | 1 | -0/+172 |
| |\ \ \ \ |
|
| | * | | | | add option for per-form CSRF tokens | Ben Toews | 2016-01-04 | 1 | -0/+172 |
| * | | | | | Merge pull request #22906 from bf4/rendering_exceptions | Rafael França | 2016-01-04 | 2 | -24/+90 |
| |\ \ \ \ \
| |/ / / /
|/| | | | |
|
| | * | | | | Add ActionController:Renderers test | Benjamin Fleischer | 2016-01-03 | 2 | -24/+90 |
| * | | | | | Fix typo in test desctiption [skip ci] | Anton Davydov | 2016-01-04 | 1 | -1/+1 |
| |/ / / / |
|
| * | | | | Test ActionController::Renderers::use_renderers | Benjamin Fleischer | 2015-12-31 | 1 | -0/+42 |
| * | | | | Merge pull request #22850 from prathamesh-sonpatki/fix_ac_params_unsafe_h_2 | Kasper Timm Hansen | 2015-12-31 | 1 | -0/+8 |
| |\ \ \ \
| |_|_|/
|/| | | |
|
| | * | | | Fix AC::Parameters#to_unsafe_h to return all unfiltered values | Prathamesh Sonpatki | 2015-12-31 | 1 | -0/+8 |
| * | | | | Fix test for AC::Parameters#to_unsafe_h | Prathamesh Sonpatki | 2015-12-30 | 1 | -2/+2 |
| |/ / / |
|
| * | / | Add AC::Parameters#include? | Justin Coyne | 2015-12-29 | 1 | -0/+6 |
| | |/
|/| |
|
| * | | Merge pull request #20797 from byroot/prevent-url-for-ac-parameters | Rafael França | 2015-12-18 | 3 | -3/+10 |
| |\ \ |
|
| | * | | Prevent ActionController::Parameters from being passed to url_for directly | Jean Boussier | 2015-12-15 | 3 | -3/+10 |
| * | | | Only dup Ruby's Hash and Array. | Kasper Timm Hansen | 2015-12-17 | 1 | -0/+28 |
| * | | | Deprecate `redirect_to :back` | Derek Prior | 2015-12-16 | 1 | -2/+15 |
| * | | | Add `redirect_back` for safer referrer redirects | Derek Prior | 2015-12-16 | 1 | -0/+21 |
| * | | | deletes code commented out in 72160d9f | Tony Ta | 2015-12-15 | 1 | -10/+0 |
| * | | | Merge pull request #14212 from tylerhunt/fix-token-regex | Sean Griffin | 2015-12-15 | 1 | -0/+8 |
| |\ \ \ |
|
| | * | | | Handle tab in token authentication header. | Tyler Hunt | 2014-02-26 | 1 | -0/+8 |
| * | | | | Add fragment_cache_key macro for controller-wide fragment cache key prefixes | Sam Stephenson | 2015-12-14 | 1 | -0/+25 |
| * | | | | Make Parameters#to_h and #to_unsafe_h return HWIA | Prem Sichanugrist | 2015-12-14 | 1 | -4/+4 |
| | |/ /
|/| | |
|
| * | | | Merge pull request #20831 from jmbejar/rails-api-json-error-response | Santiago Pastorino | 2015-12-09 | 1 | -4/+6 |
| |\ \ \ |
|
| | * | | | Response when error should be formatted properly in Rails API if local request | Jorge Bejar | 2015-12-09 | 1 | -4/+6 |
| * | | | | Fix `make_response!` when called by `serve` in `RouteSet` | eileencodes | 2015-12-09 | 1 | -0/+39 |
| |/ / / |
|
| * | | | Change the `protect_from_forgery` prepend default to `false` | eileencodes | 2015-12-07 | 1 | -2/+2 |
| * | | | Push `before_sending` to super class | eileencodes | 2015-12-06 | 2 | -2/+2 |
| * | | | Merge pull request #22263 from mastahyeti/csrf-origin-check | Rafael França | 2015-11-26 | 1 | -0/+45 |
| |\ \ \ |
|
| | * | | | Add option to verify Origin header in CSRF checks | Ben Toews | 2015-11-25 | 1 | -0/+45 |
| * | | | | Remove arity check for `RouteSet#draw` | yui-knk | 2015-11-21 | 1 | -6/+0 |
| |/ / / |
|
| * | | | Require only necessary concurrent-ruby classes. | Jerry D'Antonio | 2015-11-04 | 1 | -1/+1 |
| * | | | tests, test should not care wether 9ms or 11ms have passed. | Yves Senn | 2015-11-04 | 1 | -1/+1 |
| * | | | Deprecate exception#original_exception in favor of exception#cause | Yuki Nishijima | 2015-11-03 | 1 | -2/+10 |
| * | | | switch to JSON.dump to avoid infinite recursion | Aaron Patterson | 2015-10-29 | 1 | -1/+1 |
| * | | | Write the cookie jar it was not committed in TestCase | Rafael Mendonça França | 2015-10-28 | 1 | -1/+1 |
