Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Add an option to FormBuilder to omit hidden field with id | Alexander Uvarov | 2011-03-04 | 2 | -2/+157 |
| | | | | | | [#4551 state:committed] Signed-off-by: Santiago Pastorino <santiago@wyeworks.com> | ||||
* | make sure string keys are always looked up from the class cache | Aaron Patterson | 2011-03-02 | 2 | -2/+28 |
| | |||||
* | Ruby 1.8: Y U NO FUN? | Aaron Patterson | 2011-03-02 | 1 | -1/+3 |
| | |||||
* | use newer class cache api | Aaron Patterson | 2011-03-02 | 1 | -1/+1 |
| | |||||
* | Fix Action caching bug where an action that has a non-cacheable response ↵ | Cheah Chu Yeow | 2011-03-02 | 2 | -3/+10 |
| | | | | | | | | | | always renders a nil response body. It now correctly renders the response body. Note that only GET and HTTP 200 responses can be cached. [#6480 state:committed] Signed-off-by: Santiago Pastorino <santiago@wyeworks.com> | ||||
* | yo dawg, directly use the class cache rather than the cache of the cache | Aaron Patterson | 2011-03-01 | 1 | -1/+2 |
| | |||||
* | refactor Reference to a ClassCache object, fix lazy lookup in Middleware so ↵ | Aaron Patterson | 2011-03-01 | 3 | -5/+63 |
| | | | | that anonymous classes are supported | ||||
* | initialize ivars | Aaron Patterson | 2011-03-01 | 1 | -1/+1 |
| | |||||
* | Enumerable gives us include?, so remove include? | Aaron Patterson | 2011-03-01 | 1 | -4/+0 |
| | |||||
* | prefer composition over inheritance with AD::MS | Aaron Patterson | 2011-03-01 | 3 | -9/+42 |
| | |||||
* | Revert "compute ext in initialize, and use an attr_reader" | Aaron Patterson | 2011-02-28 | 1 | -5/+7 |
| | | | | | | | | This reverts commit 2dbb73bdda3b81947fd112486ac4285fb1a6e3a9. Conflicts: actionpack/lib/action_dispatch/middleware/static.rb | ||||
* | no need to pass a regex to Regexp.compile | Aaron Patterson | 2011-02-28 | 1 | -4/+4 |
| | |||||
* | compute ext in initialize, and use an attr_reader | Aaron Patterson | 2011-02-28 | 1 | -7/+5 |
| | |||||
* | use a subclass of AS::TZ for testing html output | Aaron Patterson | 2011-02-28 | 1 | -4/+11 |
| | |||||
* | updated Time, Date and DateTime current methods in AS to use Time.zone and ↵ | Josh Kalderimis | 2011-02-28 | 1 | -2/+2 |
| | | | | | | not Time.zone_default. [#6410 state:committed] | ||||
* | javascript_include_tag shouldn't raise if you register an expansion key with ↵ | Santiago Pastorino | 2011-02-28 | 3 | -4/+12 |
| | | | | nil value | ||||
* | Add tests for register expansion methods with key = [] | Santiago Pastorino | 2011-02-28 | 1 | -2/+12 |
| | |||||
* | We're in 2011, let's update our license | Prem Sichanugrist | 2011-02-22 | 4 | -4/+4 |
| | | | | Signed-off-by: Santiago Pastorino <santiago@wyeworks.com> | ||||
* | Prepend the CSRF filter to make it much more difficult to execute ↵ | Michael Koziarski | 2011-02-23 | 1 | -1/+1 |
| | | | | application code before it fires. | ||||
* | merges docrails | Xavier Noria | 2011-02-18 | 3 | -1/+45 |
|\ | |||||
| * | Fix Typos: remove several occurences of the the | Nicholas Rowe | 2011-02-17 | 1 | -1/+1 |
| | | |||||
| * | Added RDoc info for accepted options for simple_format in TextHelper. | Steve Schwartz | 2011-02-15 | 1 | -0/+7 |
| | | |||||
| * | add some docs for ActionController::Renderers | Gabriel Horner | 2011-02-10 | 1 | -0/+37 |
| | | |||||
* | | Add test to prevent regression on namespace root nested in a resource | Andrew White | 2011-02-14 | 1 | -0/+9 |
| | | | | | | | | [#6389 state:resolved] | ||||
* | | Fix named route helper for routes nested inside deeply nested resources | Andrew White | 2011-02-14 | 2 | -2/+10 |
| | | | | | | | | [#6416 state:resolved] | ||||
* | | Add notes on how to override the default :id constraint [#5994 state:resolved] | Andrew White | 2011-02-14 | 1 | -1/+8 |
| | | |||||
* | | Remove incorrect assert_recognizes example | Andrew White | 2011-02-13 | 1 | -3/+0 |
| | | |||||
* | | Fix assert_recognizes with block constraints [#5805 state:resolved] | Andrew White | 2011-02-13 | 4 | -6/+116 |
| | | |||||
* | | Add Date#rfc3339 and Date#iso8601 to AS | Santiago Pastorino | 2011-02-13 | 1 | -0/+1 |
| | | |||||
* | | Allow for the format of time_tag in AP to be changed via an option argument. | Josh Kalderimis | 2011-02-12 | 2 | -8/+16 |
| | | | | | | | | Signed-off-by: Santiago Pastorino <santiago@wyeworks.com> | ||||
* | | Added time_tag helper to AP for HTML5 time tag [#5919 state:resolved] | Sjoerd Andringa | 2011-02-12 | 3 | -2/+41 |
| | | | | | | | | Signed-off-by: Santiago Pastorino <santiago@wyeworks.com> | ||||
* | | Applied changes to stylesheet_link_tag from javascript_include_tag which ↵ | Josh Kalderimis | 2011-02-13 | 3 | -14/+38 |
| | | | | | | | | corrects issues with ordering and duplicates. | ||||
* | | This corrects two issues with javascript_include_tag, the order at which ↵ | Josh Kalderimis | 2011-02-13 | 2 | -5/+47 |
| | | | | | | | | | | | | | | | | they are expanded, and removing duplicates. When individual js assets are specified, they will override the order of the same asset specified in an expansion. [#5938 state:resolved] | ||||
* | | Remove duplicated action pack tests added to fix issue with fields_for, ↵ | Carlos Antonio da Silva | 2011-02-12 | 1 | -42/+0 |
| | | | | | | | | | | | | nested attributes and erb Signed-off-by: Santiago Pastorino <santiago@wyeworks.com> | ||||
* | | Add block support to button_tag helper | Tom Stuart | 2011-02-12 | 2 | -4/+18 |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | As per the HTML 4.01 spec: Buttons created with the BUTTON element function just like buttons created with the INPUT element, but they offer richer rendering possibilities: the BUTTON element may have content. For example, a BUTTON element that contains an image functions like and may resemble an INPUT element whose type is set to "image", but the BUTTON element type allows content. Since rich content is the main purpose of the <button> element, it makes sense for the button_tag helper to accept a block. http://www.w3.org/TR/html401/interact/forms.html#edef-BUTTON http://dev.w3.org/html5/spec/the-button-element.html#the-button-element Signed-off-by: Santiago Pastorino and Emilio Tagua <santiago+emilioe@wyeworks.com> | ||||
* | | Make type="submit" the default for button_tag helper | Tom Stuart | 2011-02-12 | 2 | -7/+12 |
| | | | | | | | | | | | | | | | | | | | | | | | | "submit" is the default value of the <button> element's type attribute according to the HTML 4.01 and the HTML5 draft specs, so if button_tag is going to have a default, type="submit" is a more sensible choice than type="button". http://www.w3.org/TR/html401/interact/forms.html#adef-type-BUTTON http://dev.w3.org/html5/spec/the-button-element.html#attr-button-type Signed-off-by: Santiago Pastorino and Emilio Tagua <santiago+emilioe@wyeworks.com> | ||||
* | | Add missing deprecation require | Carlos Antonio da Silva | 2011-02-11 | 1 | -0/+1 |
| | | | | | | | | Signed-off-by: Santiago Pastorino <santiago@wyeworks.com> | ||||
* | | Remove misleading reference to polymorphic_url. | José Valim | 2011-02-11 | 1 | -2/+0 |
| | | |||||
* | | Removed Array#safe_join in AS core_ext and moved it to a view helper with ↵ | Josh Kalderimis | 2011-02-10 | 5 | -41/+70 |
| | | | | | | | | | | | | the same same. This also changes how safe_join works, if items or the separator are not html_safe they are html_escape'd, a html_safe string is always returned. Signed-off-by: José Valim <jose.valim@gmail.com> | ||||
* | | Revert "Removed Array#safe_join in AS core_ext and moved it to a view helper ↵ | José Valim | 2011-02-10 | 5 | -97/+41 |
| | | | | | | | | | | | | | | | | with the same same." Applied the wrong version. This reverts commit 98c0c5db50a7679b3d58769ac22cb0a27a62c930. | ||||
* | | Removed Array#safe_join in AS core_ext and moved it to a view helper with ↵ | Josh Kalderimis | 2011-02-10 | 5 | -41/+97 |
| | | | | | | | | the same same. | ||||
* | | reduce string append funcalls | Aaron Patterson | 2011-02-08 | 1 | -3/+3 |
| | | |||||
* | | Change the CSRF whitelisting to only apply to get requests | Michael Koziarski | 2011-02-08 | 3 | -147/+86 |
| | | | | | | | | | | | | | | | | Unfortunately the previous method of browser detection and XHR whitelisting is unable to prevent requests issued from some Flash animations and Java applets. To ease the work required to include the CSRF token in ajax requests rails now supports providing the token in a custom http header: X-CSRF-Token: ... This fixes CVE-2011-0447 | ||||
* | | Use Mime::Type references. | José Valim | 2011-02-08 | 7 | -6/+26 |
| | | |||||
* | | Ensure render is case sensitive even on systems with case-insensitive ↵ | José Valim | 2011-02-08 | 2 | -3/+22 |
| | | | | | | | | | | | | filesystems. This fixes CVE-2011-0449 | ||||
* | | Be sure to javascript_escape the email address to prevent apostrophes ↵ | Michael Koziarski | 2011-02-08 | 2 | -9/+11 |
| | | | | | | | | | | | | inadvertently causing javascript errors. This fixes CVE-2011-0446 | ||||
* | | fields_for with inline blocks and nested attributes already persisted does ↵ | Santiago Pastorino | 2011-02-08 | 1 | -10/+7 |
| | | | | | | | | | | | | not render properly [#6381 state:committed] | ||||
* | | Add tests showing the LH issue #6381: fields_for with inline blocks and ↵ | Carlos Antonio da Silva | 2011-02-08 | 1 | -1/+85 |
| | | | | | | | | | | | | nested attributes already persisted Signed-off-by: Santiago Pastorino <santiago@wyeworks.com> | ||||
* | | cleaning up some warnings on 1.9.3 | Aaron Patterson | 2011-02-07 | 8 | -27/+25 |
| | | |||||
* | | put authenticity_token option in parity w/ remote | Dan Pickett | 2011-02-06 | 2 | -6/+7 |
| | | | | | | | | | | | | [#6228 state:committed] Signed-off-by: Santiago Pastorino <santiago@wyeworks.com> |