rails.git - Mirror of official rails repo with custom fixes.

	Commit message (Collapse)	Author	Age	Files	Lines
*	We're in 2011, let's update our license	Prem Sichanugrist	2011-02-22	4	-4/+4
\| \| \| \|	Signed-off-by: Santiago Pastorino <santiago@wyeworks.com>
*	Prepend the CSRF filter to make it much more difficult to execute ↵	Michael Koziarski	2011-02-23	1	-1/+1
\| \| \| \|	application code before it fires.
*	merges docrails	Xavier Noria	2011-02-18	3	-1/+45
\|\
\| *	Fix Typos: remove several occurences of the the	Nicholas Rowe	2011-02-17	1	-1/+1
\| \|
\| *	Added RDoc info for accepted options for simple_format in TextHelper.	Steve Schwartz	2011-02-15	1	-0/+7
\| \|
\| *	add some docs for ActionController::Renderers	Gabriel Horner	2011-02-10	1	-0/+37
\| \|
* \|	Add test to prevent regression on namespace root nested in a resource	Andrew White	2011-02-14	1	-0/+9
\| \| \| \| \| \| \| \|	[#6389 state:resolved]
* \|	Fix named route helper for routes nested inside deeply nested resources	Andrew White	2011-02-14	2	-2/+10
\| \| \| \| \| \| \| \|	[#6416 state:resolved]
* \|	Add notes on how to override the default :id constraint [#5994 state:resolved]	Andrew White	2011-02-14	1	-1/+8
\| \|
* \|	Remove incorrect assert_recognizes example	Andrew White	2011-02-13	1	-3/+0
\| \|
* \|	Fix assert_recognizes with block constraints [#5805 state:resolved]	Andrew White	2011-02-13	4	-6/+116
\| \|
* \|	Add Date#rfc3339 and Date#iso8601 to AS	Santiago Pastorino	2011-02-13	1	-0/+1
\| \|
* \|	Allow for the format of time_tag in AP to be changed via an option argument.	Josh Kalderimis	2011-02-12	2	-8/+16
\| \| \| \| \| \| \| \|	Signed-off-by: Santiago Pastorino <santiago@wyeworks.com>
* \|	Added time_tag helper to AP for HTML5 time tag [#5919 state:resolved]	Sjoerd Andringa	2011-02-12	3	-2/+41
\| \| \| \| \| \| \| \|	Signed-off-by: Santiago Pastorino <santiago@wyeworks.com>
* \|	Applied changes to stylesheet_link_tag from javascript_include_tag which ↵	Josh Kalderimis	2011-02-13	3	-14/+38
\| \| \| \| \| \| \| \|	corrects issues with ordering and duplicates.
* \|	This corrects two issues with javascript_include_tag, the order at which ↵	Josh Kalderimis	2011-02-13	2	-5/+47
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	they are expanded, and removing duplicates. When individual js assets are specified, they will override the order of the same asset specified in an expansion. [#5938 state:resolved]
* \|	Remove duplicated action pack tests added to fix issue with fields_for, ↵	Carlos Antonio da Silva	2011-02-12	1	-42/+0
\| \| \| \| \| \| \| \| \| \| \| \|	nested attributes and erb Signed-off-by: Santiago Pastorino <santiago@wyeworks.com>
* \|	Add block support to button_tag helper	Tom Stuart	2011-02-12	2	-4/+18
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	As per the HTML 4.01 spec: Buttons created with the BUTTON element function just like buttons created with the INPUT element, but they offer richer rendering possibilities: the BUTTON element may have content. For example, a BUTTON element that contains an image functions like and may resemble an INPUT element whose type is set to "image", but the BUTTON element type allows content. Since rich content is the main purpose of the <button> element, it makes sense for the button_tag helper to accept a block. http://www.w3.org/TR/html401/interact/forms.html#edef-BUTTON http://dev.w3.org/html5/spec/the-button-element.html#the-button-element Signed-off-by: Santiago Pastorino and Emilio Tagua <santiago+emilioe@wyeworks.com>
* \|	Make type="submit" the default for button_tag helper	Tom Stuart	2011-02-12	2	-7/+12
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	"submit" is the default value of the <button> element's type attribute according to the HTML 4.01 and the HTML5 draft specs, so if button_tag is going to have a default, type="submit" is a more sensible choice than type="button". http://www.w3.org/TR/html401/interact/forms.html#adef-type-BUTTON http://dev.w3.org/html5/spec/the-button-element.html#attr-button-type Signed-off-by: Santiago Pastorino and Emilio Tagua <santiago+emilioe@wyeworks.com>
* \|	Add missing deprecation require	Carlos Antonio da Silva	2011-02-11	1	-0/+1
\| \| \| \| \| \| \| \|	Signed-off-by: Santiago Pastorino <santiago@wyeworks.com>
* \|	Remove misleading reference to polymorphic_url.	José Valim	2011-02-11	1	-2/+0
\| \|
* \|	Removed Array#safe_join in AS core_ext and moved it to a view helper with ↵	Josh Kalderimis	2011-02-10	5	-41/+70
\| \| \| \| \| \| \| \| \| \| \| \|	the same same. This also changes how safe_join works, if items or the separator are not html_safe they are html_escape'd, a html_safe string is always returned. Signed-off-by: José Valim <jose.valim@gmail.com>
* \|	Revert "Removed Array#safe_join in AS core_ext and moved it to a view helper ↵	José Valim	2011-02-10	5	-97/+41
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	with the same same." Applied the wrong version. This reverts commit 98c0c5db50a7679b3d58769ac22cb0a27a62c930.
* \|	Removed Array#safe_join in AS core_ext and moved it to a view helper with ↵	Josh Kalderimis	2011-02-10	5	-41/+97
\| \| \| \| \| \| \| \|	the same same.
* \|	reduce string append funcalls	Aaron Patterson	2011-02-08	1	-3/+3
\| \|
* \|	Change the CSRF whitelisting to only apply to get requests	Michael Koziarski	2011-02-08	3	-147/+86
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	Unfortunately the previous method of browser detection and XHR whitelisting is unable to prevent requests issued from some Flash animations and Java applets. To ease the work required to include the CSRF token in ajax requests rails now supports providing the token in a custom http header: X-CSRF-Token: ... This fixes CVE-2011-0447
* \|	Use Mime::Type references.	José Valim	2011-02-08	7	-6/+26
\| \|
* \|	Ensure render is case sensitive even on systems with case-insensitive ↵	José Valim	2011-02-08	2	-3/+22
\| \| \| \| \| \| \| \| \| \| \| \|	filesystems. This fixes CVE-2011-0449
* \|	Be sure to javascript_escape the email address to prevent apostrophes ↵	Michael Koziarski	2011-02-08	2	-9/+11
\| \| \| \| \| \| \| \| \| \| \| \|	inadvertently causing javascript errors. This fixes CVE-2011-0446
* \|	fields_for with inline blocks and nested attributes already persisted does ↵	Santiago Pastorino	2011-02-08	1	-10/+7
\| \| \| \| \| \| \| \| \| \| \| \|	not render properly [#6381 state:committed]
* \|	Add tests showing the LH issue #6381: fields_for with inline blocks and ↵	Carlos Antonio da Silva	2011-02-08	1	-1/+85
\| \| \| \| \| \| \| \| \| \| \| \|	nested attributes already persisted Signed-off-by: Santiago Pastorino <santiago@wyeworks.com>
* \|	cleaning up some warnings on 1.9.3	Aaron Patterson	2011-02-07	8	-27/+25
\| \|
* \|	put authenticity_token option in parity w/ remote	Dan Pickett	2011-02-06	2	-6/+7
\| \| \| \| \| \| \| \| \| \| \| \|	[#6228 state:committed] Signed-off-by: Santiago Pastorino <santiago@wyeworks.com>
* \|	Allow page_cache_directory to be set as a Pathname	Andre Arko	2011-02-06	2	-1/+12
\| \| \| \| \| \| \| \| \| \| \| \|	For example, page_cache_directory = Rails.root.join("public/cache") Signed-off-by: Santiago Pastorino <santiago@wyeworks.com>
* \|	Added tests for form_for and an authenticity_token option. Added docs for ↵	Timothy N. Tsvetkov	2011-02-05	2	-0/+36
\|/ \| \| \| \| \| \| \|	for_for and authenticity_token option. Added section to form helpers guide about forms for external resources and new authenticity_token option for form_tag and form_for helpers. [#6228 state:committed] Signed-off-by: Santiago Pastorino <santiago@wyeworks.com>
*	Merge branch 'master' of git://github.com/lifo/docrails	Xavier Noria	2011-02-05	1	-17/+39
\|\
\| *	improve routing docs, mostly for #match	Gabriel Horner	2011-02-05	1	-12/+34
\| \|
\| *	keep options titles consistent to "Options"	Gabriel Horner	2011-02-03	1	-5/+5
\| \|
* \|	fixed bug with nested resources within shallow scope	german	2011-02-04	2	-1/+63
\| \| \| \| \| \| \| \| \| \| \| \|	[#6372 state:committed] Signed-off-by: Santiago Pastorino <santiago@wyeworks.com>
* \|	removing generation of id in submit helper	Franco Brusatti	2011-02-03	2	-7/+7
\| \| \| \| \| \| \| \| \| \| \| \|	[#6369 state:committed] Signed-off-by: Santiago Pastorino <santiago@wyeworks.com>
* \|	Add a test for 'render :layout'	Anton Astashov	2011-02-03	2	-0/+9
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	To make sure it will show block contents if it is placed after 'render :partial' [#5557 state:resolved] Signed-off-by: Santiago Pastorino <santiago@wyeworks.com>
* \|	revises a metal example	Xavier Noria	2011-02-02	1	-4/+4
\| \|
* \|	copy-edits 2446b13	Xavier Noria	2011-02-02	1	-14/+13
\| \|
* \|	Protocol-relative URL support.	Stephen Celis	2011-02-02	2	-3/+19
\|/ \| \| \| \| \|	[#5774 state:committed] Signed-off-by: Santiago Pastorino <santiago@wyeworks.com>
*	Merge branch 'master' of git://github.com/lifo/docrails	Xavier Noria	2011-02-02	4	-99/+249
\|\
\| *	Provide documentation for ActionController::Metal	Bernerd Schaefer	2011-02-02	1	-5/+55
\| \|
\| *	explain different ways to use match()	Jonathan Dance + Gabriel Horner	2011-01-29	1	-9/+16
\| \|
\| *	organize and expand on options for routing methods	Jonathan Dance + Gabriel Horner	2011-01-29	1	-81/+161
\| \|
\| *	corrected the location of status code symbols	misfo	2011-01-29	1	-1/+1
\| \|
\| *	add cross-references and documentation for scope	Jonathan Dance + Gabriel Horner	2011-01-28	1	-0/+12
\| \|