Commit message (Collapse) | Author | Age | Files | Lines | ||
---|---|---|---|---|---|---|
... | ||||||
* | raise if someone tries to modify the flash when it was already streamed back ↵ | Santiago Pastorino | 2011-04-05 | 1 | -0/+50 | |
| | | | | to the client or converted to HTTP headers | |||||
* | Implicit actions named not_implemented can be rendered | Santiago Pastorino | 2011-04-02 | 1 | -2/+11 | |
| | ||||||
* | pass respond_with options to controller render when using a template for api ↵ | Josh Kalderimis | 2011-03-31 | 1 | -0/+19 | |
| | | | | | | navigation Signed-off-by: José Valim <jose.valim@gmail.com> | |||||
* | only try to display an api template in responders if the request is a get or ↵ | Josh Kalderimis | 2011-03-31 | 1 | -0/+21 | |
| | | | | | | there are no errors Signed-off-by: José Valim <jose.valim@gmail.com> | |||||
* | when using respond_with with an invalid resource and custom options, the ↵ | Josh Kalderimis | 2011-03-31 | 1 | -0/+17 | |
| | | | | | | default response status and error messages should be returned Signed-off-by: José Valim <jose.valim@gmail.com> | |||||
* | Make action_method? public and change implicit rendering to override it instead. | José Valim | 2011-03-30 | 1 | -0/+5 | |
| | ||||||
* | Added Base.http_basic_authenticate_with to do simple http basic ↵ | David Heinemeier Hansson | 2011-03-28 | 1 | -0/+16 | |
| | | | | authentication with a single class method call [DHH] | |||||
* | Add controller-specific `force_ssl` method to force web browser to use HTTPS ↵ | Prem Sichanugrist | 2011-03-28 | 1 | -0/+83 | |
| | | | | | | | | protocol This would become useful for site which sometime transferring sensitive information such as account information on particular controller or action. This featured was requested by DHH. | |||||
* | Fix filter :only and :except with implicit actions | Andrew White | 2011-03-23 | 1 | -11/+16 | |
| | | | | | | | The method_name argument is "default_render" for implicit actions so use the action_name attribute to determine which callbacks to run. [#5673 state:resolved] | |||||
* | Add a failing test case for an implicit action with a before filter. | Manfred Stienstra | 2011-03-23 | 1 | -0/+22 | |
| | | | | Signed-off-by: Andrew White <andyw@pixeltrix.co.uk> | |||||
* | Filter params that return nil for to_param and allow through false values | Andrew White | 2011-03-09 | 1 | -0/+8 | |
| | ||||||
* | Action Pack typos. | R.T. Lechow | 2011-03-05 | 1 | -1/+1 | |
| | ||||||
* | Fix Action caching bug where an action that has a non-cacheable response ↵ | Cheah Chu Yeow | 2011-03-02 | 1 | -0/+5 | |
| | | | | | | | | | | always renders a nil response body. It now correctly renders the response body. Note that only GET and HTTP 200 responses can be cached. [#6480 state:committed] Signed-off-by: Santiago Pastorino <santiago@wyeworks.com> | |||||
* | Change the CSRF whitelisting to only apply to get requests | Michael Koziarski | 2011-02-08 | 1 | -136/+75 | |
| | | | | | | | | Unfortunately the previous method of browser detection and XHR whitelisting is unable to prevent requests issued from some Flash animations and Java applets. To ease the work required to include the CSRF token in ajax requests rails now supports providing the token in a custom http header: X-CSRF-Token: ... This fixes CVE-2011-0447 | |||||
* | Use Mime::Type references. | José Valim | 2011-02-08 | 1 | -0/+9 | |
| | ||||||
* | Ensure render is case sensitive even on systems with case-insensitive ↵ | José Valim | 2011-02-08 | 1 | -0/+10 | |
| | | | | | | filesystems. This fixes CVE-2011-0449 | |||||
* | cleaning up some warnings on 1.9.3 | Aaron Patterson | 2011-02-07 | 5 | -20/+19 | |
| | ||||||
* | put authenticity_token option in parity w/ remote | Dan Pickett | 2011-02-06 | 1 | -2/+2 | |
| | | | | | | [#6228 state:committed] Signed-off-by: Santiago Pastorino <santiago@wyeworks.com> | |||||
* | Allow page_cache_directory to be set as a Pathname | Andre Arko | 2011-02-06 | 1 | -0/+11 | |
| | | | | | | For example, page_cache_directory = Rails.root.join("public/cache") Signed-off-by: Santiago Pastorino <santiago@wyeworks.com> | |||||
* | Added tests for form_for and an authenticity_token option. Added docs for ↵ | Timothy N. Tsvetkov | 2011-02-05 | 1 | -0/+18 | |
| | | | | | | | | for_for and authenticity_token option. Added section to form helpers guide about forms for external resources and new authenticity_token option for form_tag and form_for helpers. [#6228 state:committed] Signed-off-by: Santiago Pastorino <santiago@wyeworks.com> | |||||
* | Protocol-relative URL support. | Stephen Celis | 2011-02-02 | 1 | -1/+14 | |
| | | | | | | [#5774 state:committed] Signed-off-by: Santiago Pastorino <santiago@wyeworks.com> | |||||
* | render_to_string must ensure that response_body | Neeraj Singh | 2011-01-25 | 1 | -0/+10 | |
| | | | | | | | | is nil [ #5875 state:resolved] Signed-off-by: José Valim <jose.valim@gmail.com> | |||||
* | A patch so that http status codes are still included in logs even during an ↵ | Doug Fales | 2011-01-25 | 1 | -0/+15 | |
| | | | | | | exception [#6333 state:resolved] Signed-off-by: José Valim <jose.valim@gmail.com> | |||||
* | use spec compliant YAML | Aaron Patterson | 2011-01-21 | 1 | -1/+1 | |
| | ||||||
* | removing usesless variable assignments | Aaron Patterson | 2011-01-18 | 1 | -2/+0 | |
| | ||||||
* | Issue one Cache#read command instead of two in the case of a fragment cache hit | Christos Trochalakis | 2011-01-18 | 1 | -4/+4 | |
| | ||||||
* | fixing wrong test | Aaron Patterson | 2011-01-17 | 1 | -1/+1 | |
| | ||||||
* | authenticity_token option for form_tag [#2988 state:resolved] | Jakub Kuźma | 2011-01-09 | 1 | -0/+18 | |
| | ||||||
* | Speed up template inheritance and remove template inheritance option | wycats | 2010-12-26 | 1 | -12/+0 | |
| | ||||||
* | A bunch of cleanup on the inherited template patch | wycats | 2010-12-26 | 1 | -1/+1 | |
| | ||||||
* | all tests pass | artemave | 2010-12-26 | 1 | -4/+4 | |
| | ||||||
* | #948 make template inheritance optional | artemave | 2010-12-26 | 1 | -0/+11 | |
| | ||||||
* | #948 template_inheritance | artemave | 2010-12-26 | 2 | -2/+66 | |
| | ||||||
* | Ensure that while caching a page rails takes into | Neeraj Singh | 2010-12-09 | 1 | -0/+16 | |
| | | | | | | | | account the resolved mime type for the request [#6110 state:resolved] Signed-off-by: José Valim <jose.valim@gmail.com> | |||||
* | Merge remote branch 'joshk/redirect_routing' | José Valim | 2010-12-03 | 1 | -284/+297 | |
|\ | | | | | | | | | | | | | | | Conflicts: actionpack/CHANGELOG actionpack/lib/action_controller/metal/mime_responds.rb Signed-off-by: José Valim <jose.valim@gmail.com> | |||||
| * | The redirect routing method now allows for a hash of options which only ↵ | Josh Kalderimis | 2010-11-30 | 1 | -284/+297 | |
| | | | | | | | | changes the relevant parts of the url, or an object which responds to call can be supplied so common redirect rules can be easily reused. This commit includes a change where url generation from parts has been moved to AD::Http::URL as a class method. | |||||
* | | Fix tests on 1.9.2. | José Valim | 2010-11-28 | 1 | -7/+9 | |
|/ | ||||||
* | If a user wants json output then try best to render json output. In such ↵ | Neeraj Singh | 2010-11-24 | 1 | -0/+18 | |
| | | | | | | | | cases prefer kind_of(String) over respond_to?(to_str) [#5841 state:resolved] Signed-off-by: José Valim <jose.valim@gmail.com> | |||||
* | clean up test by using unregister method | Neeraj Singh | 2010-11-25 | 1 | -12/+6 | |
| | ||||||
* | Remove the not needed setup and teardown | Neeraj Singh | 2010-11-25 | 1 | -3/+0 | |
| | ||||||
* | :subdomain, :domain and :tld_length options can now be used in url_for, ↵ | Josh Kalderimis | 2010-11-23 | 1 | -1/+22 | |
| | | | | | | allowing for easy manipulation of the host during link generation. Signed-off-by: José Valim <jose.valim@gmail.com> | |||||
* | adding a test for the runner module [#6027 state:resolved] | Aaron Patterson | 2010-11-22 | 1 | -0/+22 | |
| | ||||||
* | move the mime registration code to setup so that | Neeraj Singh | 2010-11-22 | 1 | -2/+19 | |
| | | | | | | | | | | | | | | | it could be cleaned up on teardown. Currently the test code test/controller/mime_responds_test.rb impacts test/dispatch/mime_type_test.rb. dispatch/mime_type_test.rb runs independently fine but when run as part of rake breaks because of new mime types registered in controller/mime_responds_test.rb Signed-off-by: José Valim <jose.valim@gmail.com> | |||||
* | do not assume that there is no space between | Neeraj Singh | 2010-11-22 | 1 | -0/+4 | |
| | | | | | | leading */* and comma Signed-off-by: José Valim <jose.valim@gmail.com> | |||||
* | failing test for #6022 | Neeraj Singh | 2010-11-22 | 1 | -0/+34 | |
| | | | | Signed-off-by: José Valim <jose.valim@gmail.com> | |||||
* | current code ignores http header "Accept" if it | Neeraj Singh | 2010-11-22 | 1 | -0/+6 | |
| | | | | | | | | | | | has ....,*/* . It is possible to a device to send request such that */* appear at the beginning of the "Accept" header. This patch ensures that "Accept" header is ignored for such cases too. Signed-off-by: José Valim <jose.valim@gmail.com> | |||||
* | realigns a series of hash arrows | Xavier Noria | 2010-11-21 | 1 | -10/+10 | |
| | ||||||
* | Revert "Quick fix for not escaping []s (not ideal)" | Santiago Pastorino | 2010-11-18 | 1 | -3/+3 | |
| | | | | | | | | | According to http://www.ietf.org/rfc/rfc2616.txt and http://tools.ietf.org/rfc/rfc3986.txt [ and ] are reserved characters and should be escaped using "%" HEX HEX This reverts commit 856d2fd874d72dd9f83204affff4edfef3308361 and 1ee9b40b18a0bed5bb10a0785f7e2730bac983f6.. | |||||
* | fix warning during test execution | Neeraj Singh | 2010-11-17 | 1 | -1/+1 | |
| | | | | | | [#5997 state:resolved] Signed-off-by: Santiago Pastorino <santiago@wyeworks.com> | |||||
* | Anchors should be allowed on constraints that are not on path segments | Carl Lerche | 2010-11-16 | 1 | -0/+8 | |
| |