aboutsummaryrefslogtreecommitdiffstats
path: root/actionpack
Commit message (Collapse)AuthorAgeFilesLines
* Explicit html_escape removed when not neededSantiago Pastorino and José Ignacio Costa2010-02-143-4/+4
| | | | Signed-off-by: Yehuda Katz <yehudakatz@YK.local>
* html_escape mail_to when encode javascript and not hexSantiago Pastorino and José Ignacio Costa2010-02-141-5/+3
| | | | Signed-off-by: Yehuda Katz <yehudakatz@YK.local>
* content_tag should escape its inputBruno Michel2010-02-1410-24/+25
| | | | Signed-off-by: Yehuda Katz <yehudakatz@YK.local>
* simple_format returns a safe buffer escaping unsafe input [Santiago Pastorino]David Heinemeier Hansson2010-02-122-1/+13
|
* Safely concat the ending tag to simple_format or it will be escapedDavid Heinemeier Hansson2010-02-121-1/+1
|
* Revert to rack-mount 0.4.7Jeremy Kemper2010-02-121-1/+1
|
* Wups, rack-mount 0.5.0Jeremy Kemper2010-02-111-1/+1
|
* Bump rack-mount dep to 0.5.3Jeremy Kemper2010-02-111-1/+1
|
* Its not a deprecation if you actually just ignore the callDavid Heinemeier Hansson2010-02-091-0/+2
|
* Adding ruby version spec to all gemspec files to at least 1.8.7Mikel Lindsaar2010-02-081-0/+1
| | | | Signed-off-by: José Valim <jose.valim@gmail.com>
* Fix pluralization for numbers formatted like '1.00'Gabriel Mansour2010-02-072-1/+3
| | | | Signed-off-by: Jeremy Kemper <jeremy@bitsweat.net>
* Fix nested attributes with specified collection.José Valim2010-02-072-7/+33
|
* Fix tiny version number from '3.0.0beta' to '3.0.0.beta1', so 'rake install' ↵Prem Sichanugrist2010-02-061-1/+1
| | | | | | will be run correctly [#3879 status:resolved] Signed-off-by: José Valim <jose.valim@gmail.com>
* Add a test which ensures namespaced roots.José Valim2010-02-061-0/+10
|
* Routes should not swallow all NameErrors [#3862 status:resolved].José Valim2010-02-061-1/+2
|
* Updates subscriber test for new outputYehuda Katz2010-02-051-1/+1
|
* Lookup the status code and rework the Completed line a bitDavid Heinemeier Hansson2010-02-051-2/+1
|
* More html_safe strings now use the safe_concat methodSantiago Pastorino and José Ignacio Costa2010-02-055-7/+7
| | | | | | [#3856 state:committed] Signed-off-by: Jeremy Kemper <jeremy@bitsweat.net>
* Make UrlWriter includable in a ModuleJeremy Kemper2010-02-051-1/+9
|
* Bump git versions to 3.0.0.beta1 since we've releasedJeremy Kemper2010-02-051-3/+3
|
* Submarine the rake-gemcutter dep in RakefilesJeremy Kemper2010-02-051-4/+5
|
* Fix task definesJeremy Kemper2010-02-041-1/+1
|
* Release using gemcutter gem:push tasksJeremy Kemper2010-02-041-0/+6
|
* Test that csrf meta content is html-escaped, tooJeremy Kemper2010-02-041-1/+2
|
* Revert dumb testJeremy Kemper2010-02-041-2/+2
|
* HTML-escape csrf meta contentsJeremy Kemper2010-02-042-3/+3
|
* Expose CSRF param name alsoJeremy Kemper2010-02-042-2/+2
|
* Expose CSRF tag for UJS adaptersJeremy Kemper2010-02-043-1/+29
|
* Rationalize railtie dependencies: AC uses AV; AR uses AMo; and Rails always ↵Jeremy Kemper2010-02-041-0/+1
| | | | uses AS.
* Homogenize gemspecs and remove the deprecated autorequireDavid Heinemeier Hansson2010-02-031-14/+13
|
* Move to 3.0.0.betaDavid Heinemeier Hansson2010-02-032-4/+4
|
* Add method and path to AC notifications.José Valim2010-02-031-1/+3
|
* Routing Mapper with % interpolation on Ruby 1.9.1 fixed [#3837 status:resolved]Santiago Pastorino and José Ignacio Costa2010-02-021-2/+1
| | | | Signed-off-by: José Valim <jose.valim@gmail.com>
* Configuration values should be on AV::Base.José Valim2010-02-022-20/+7
|
* Modify the behavior of `radio_button_tag` to use `sanitize_to_id` for ↵Prem Sichanugrist2010-02-022-3/+5
| | | | | | consistency [#1792 status:resolved] Signed-off-by: José Valim <jose.valim@gmail.com>
* Make rdoc match current APISam Ruby2010-02-021-105/+47
| | | | Signed-off-by: Mikel Lindsaar <raasdnil@gmail.com>
* Resolve view paths correctly on CygWinSam Ruby2010-02-021-1/+1
| | | | Signed-off-by: Mikel Lindsaar <raasdnil@gmail.com>
* Merge branch 'master' of git://github.com/rails/railsMikel Lindsaar2010-02-0246-266/+193
|\
| * Merge branch 'master' of gitproxy:rails/railsJosé Valim2010-02-0114-42/+74
| |\
| | * Convert to class_attributeJeremy Kemper2010-02-0114-42/+74
| | |
| * | Deprecate AC configuration values which were moved to Rack.José Valim2010-02-011-6/+22
| |/
| * Add support for compile-time <%= raw %>Yehuda Katz2010-01-312-23/+39
| |
| * Deleted all references to ActionView::SafeBuffer in favor of ↵Santiago Pastorino2010-01-314-45/+2
| | | | | | | | | | | | ActiveSupport::SafeBuffer Signed-off-by: Yehuda Katz <wycats@Yehuda-Katz.local>
| * action_view/safe_buffer is no longer validSantiago Pastorino2010-01-311-1/+0
| | | | | | | | Signed-off-by: Yehuda Katz <wycats@Yehuda-Katz.local>
| * action_view is requiring the deleted action_view/erb/util.rb fileSantiago Pastorino2010-01-311-1/+0
| | | | | | | | Signed-off-by: Yehuda Katz <wycats@Yehuda-Katz.local>
| * For performance reasons, you can no longer call html_safe! on Strings. ↵Yehuda Katz2010-01-3128-141/+58
| | | | | | | | | | | | | | | | | | | | | | | | Instead, all Strings are always not html_safe?. Instead, you can get a SafeBuffer from a String by calling #html_safe, which will SafeBuffer.new(self). * Additionally, instead of doing concat("</form>".html_safe), you can do safe_concat("</form>"), which will skip both the flag set, and the flag check. * For the first pass, I converted virtually all #html_safe!s to #html_safe, and the tests pass. A further optimization would be to try to use #safe_concat as much as possible, reducing the performance impact if we know up front that a String is safe.
| * Get rails tests running on bundler 0.9Carl Lerche2010-01-311-10/+1
| |
* | Updating copyright dates on all licensesMikel Lindsaar2010-02-014-4/+4
|/
* UJS documentation.Stefan Penner2010-01-313-33/+78
|
* data-remote needs to be on the form and not the submit when using button_to ↵Erik St. Martin2010-01-312-1/+10
| | | | :remote=>true