aboutsummaryrefslogtreecommitdiffstats
path: root/actionpack/test
Commit message (Collapse)AuthorAgeFilesLines
...
* Removed Array#safe_join in AS core_ext and moved it to a view helper with ↵Josh Kalderimis2011-02-102-21/+55
| | | | the same same.
* Change the CSRF whitelisting to only apply to get requestsMichael Koziarski2011-02-081-136/+75
| | | | | | | | Unfortunately the previous method of browser detection and XHR whitelisting is unable to prevent requests issued from some Flash animations and Java applets. To ease the work required to include the CSRF token in ajax requests rails now supports providing the token in a custom http header: X-CSRF-Token: ... This fixes CVE-2011-0447
* Use Mime::Type references.José Valim2011-02-083-1/+17
|
* Ensure render is case sensitive even on systems with case-insensitive ↵José Valim2011-02-081-0/+10
| | | | | | filesystems. This fixes CVE-2011-0449
* Be sure to javascript_escape the email address to prevent apostrophes ↵Michael Koziarski2011-02-081-4/+5
| | | | | | inadvertently causing javascript errors. This fixes CVE-2011-0446
* Add tests showing the LH issue #6381: fields_for with inline blocks and ↵Carlos Antonio da Silva2011-02-081-1/+85
| | | | | | nested attributes already persisted Signed-off-by: Santiago Pastorino <santiago@wyeworks.com>
* cleaning up some warnings on 1.9.3Aaron Patterson2011-02-078-27/+25
|
* put authenticity_token option in parity w/ remoteDan Pickett2011-02-061-2/+2
| | | | | | [#6228 state:committed] Signed-off-by: Santiago Pastorino <santiago@wyeworks.com>
* Allow page_cache_directory to be set as a PathnameAndre Arko2011-02-061-0/+11
| | | | | | For example, page_cache_directory = Rails.root.join("public/cache") Signed-off-by: Santiago Pastorino <santiago@wyeworks.com>
* Added tests for form_for and an authenticity_token option. Added docs for ↵Timothy N. Tsvetkov2011-02-051-0/+18
| | | | | | | | for_for and authenticity_token option. Added section to form helpers guide about forms for external resources and new authenticity_token option for form_tag and form_for helpers. [#6228 state:committed] Signed-off-by: Santiago Pastorino <santiago@wyeworks.com>
* fixed bug with nested resources within shallow scopegerman2011-02-041-0/+62
| | | | | | [#6372 state:committed] Signed-off-by: Santiago Pastorino <santiago@wyeworks.com>
* removing generation of id in submit helperFranco Brusatti2011-02-031-6/+6
| | | | | | [#6369 state:committed] Signed-off-by: Santiago Pastorino <santiago@wyeworks.com>
* Add a test for 'render :layout'Anton Astashov2011-02-032-0/+9
| | | | | | | | | To make sure it will show block contents if it is placed after 'render :partial' [#5557 state:resolved] Signed-off-by: Santiago Pastorino <santiago@wyeworks.com>
* Protocol-relative URL support.Stephen Celis2011-02-021-1/+14
| | | | | | [#5774 state:committed] Signed-off-by: Santiago Pastorino <santiago@wyeworks.com>
* add test to check class is being escaped in form_classSantiago Pastorino2011-02-011-0/+4
|
* Allow customization of form class for button_toAndrei Bocan2011-02-011-0/+4
| | | | Signed-off-by: Santiago Pastorino <santiago@wyeworks.com>
* auto_link: avoid recognizing full width chars as a part of URI schemeAkira Matsuda2011-02-011-1/+7
| | | | | | | | fixes regression by http://github.com/rails/rails/commit/133ada6ab0f0cb7bef2bd40dbc18f2d5bc6b964e [#5503 state:committed] Signed-off-by: Santiago Pastorino <santiago@wyeworks.com>
* Accept String value for render_partial :as optionAkira Matsuda2011-02-011-1/+6
| | | | | | [#6222 state:committed] Signed-off-by: Santiago Pastorino <santiago@wyeworks.com>
* render_to_string must ensure that response_bodyNeeraj Singh2011-01-251-0/+10
| | | | | | | | is nil [ #5875 state:resolved] Signed-off-by: José Valim <jose.valim@gmail.com>
* A patch so that http status codes are still included in logs even during an ↵Doug Fales2011-01-251-0/+15
| | | | | | exception [#6333 state:resolved] Signed-off-by: José Valim <jose.valim@gmail.com>
* use spec compliant YAMLAaron Patterson2011-01-211-1/+1
|
* Add tld_length option when using domain :all in cookiesbrainopia2011-01-211-0/+36
| | | | Signed-off-by: José Valim <jose.valim@gmail.com>
* Support list of possible domains for cookiesbrainopia2011-01-211-0/+45
| | | | Signed-off-by: José Valim <jose.valim@gmail.com>
* Solve SystemStackError when changing locale inside ActionMailer [#5329 ↵José Valim2011-01-191-1/+1
| | | | state:resolved]
* removing usesless variable assignmentsAaron Patterson2011-01-182-16/+14
|
* Merge branch 'template_error' into mergeAaron Patterson2011-01-181-0/+13
|\ | | | | | | | | | | * template_error: Ensure original exception message is present in both Template::Error#message and Template::Error#inspect. ActiveSupport::Deprecation.silence no longer needed.
| * Ensure original exception message is present in both Template::Error#message ↵John Firebaugh2010-10-291-0/+13
| | | | | | | | | | | | and Template::Error#inspect. Previously, #inspect would produce #<ActionView::Template::Error: ActionView::Template::Error>, which is not very useful.
* | Issue one Cache#read command instead of two in the case of a fragment cache hitChristos Trochalakis2011-01-181-4/+4
| |
* | fixing space errorsAaron Patterson2011-01-171-1/+1
| |
* | fixing wrong testAaron Patterson2011-01-171-1/+1
| |
* | button_tag should escape it contentSantiago Pastorino2011-01-121-0/+7
| |
* | Allow view in AV::TestCase to access it's controller helpers methodsSantiago Pastorino2011-01-121-0/+21
| |
* | authenticity_token option for form_tag [#2988 state:resolved]Jakub Kuźma2011-01-091-0/+18
| |
* | Improve select helpers by allowing a selected value of false. This is ↵John Allison2011-01-091-8/+24
| | | | | | | | useful when using a select helper with a boolean attribute, and the attribute is false. (e.g. f.select :allow_comments)
* | HTML5 button_tag helperRizwan Reza2011-01-091-0/+28
| | | | | | | | | | | | | | | | This tag is similar in nature to submit_tag, but allows more control. It also doesn't submit if submit type isn't used, allowing JavaScript to control the flow where required. For more information: http://www.whatwg.org/specs/web-apps/current-work/multipage/the-button-element.html#the-button-element
* | Recreate symlink in layouts for testsPiotr Sarnacki2010-12-311-0/+1
| |
* | Don't be so picky on MissingTemplate error details, this fails randomly on ↵Piotr Sarnacki2010-12-311-4/+3
| | | | | | | | 1.8.7 because of not ordered hash
* | added tests for the MissingTemplate exception message.Nick Sutterer2010-12-311-0/+21
| |
* | ActionController::Base.helpers.sanitize ignores case in protocolTimothy N. Tsvetkov2010-12-302-1/+7
| | | | | | | | | | | | [#6044 state:committed] Signed-off-by: Santiago Pastorino <santiago@wyeworks.com>
* | process_action accepts multiple args, even with Callbacks.Nick Sutterer2010-12-291-0/+21
| |
* | Speed up template inheritance and remove template inheritance optionwycats2010-12-261-12/+0
| |
* | A bunch of cleanup on the inherited template patchwycats2010-12-261-1/+1
| |
* | all tests passartemave2010-12-264-33/+33
| |
* | #948 make template inheritance optionalartemave2010-12-261-0/+11
| |
* | #948 template_inheritanceartemave2010-12-264-11/+75
| |
* | Don't deprecate to_prepare.José Valim2010-12-231-5/+7
| |
* | Clean up callbacks should also be called on exceptions.José Valim2010-12-231-0/+14
| |
* | Allow registering javascript/stylesheet_expansions to existing symbolsSantiago Pastorino2010-12-221-0/+19
| |
* | Do not use the same hash instance for expansions [#6114 state:resolved]Piotr Sarnacki2010-12-221-0/+8
| | | | | | | | | | Using the same hash instance makes using the same expansions for both javascripts and stylesheets.
* | Small changes on AD::Reloader.José Valim2010-12-201-20/+5
| |
generated by cgit v1.2.3 (git 2.25.1) at 2024-07-24 21:07:40 +0000