aboutsummaryrefslogtreecommitdiffstats
path: root/actionpack
Commit message (Expand)AuthorAgeFilesLines
* port over some of the csrf_killer README docsRick Olson2007-09-241-0/+13
* Beefed up docs a bitDavid Heinemeier Hansson2007-09-241-17/+27
* Cache computed public asset paths.Jeremy Kemper2007-09-241-16/+20
* Cache more file existence checks. Flip-flop escaping.Jeremy Kemper2007-09-241-9/+16
* Cache file existence checks and the list of all stylesheet sources. Manually ...Jeremy Kemper2007-09-241-7/+10
* The tag helper may bypass escaping.Jeremy Kemper2007-09-243-17/+32
* Cache asset ids.Jeremy Kemper2007-09-242-3/+14
* escape_once uses negative lookahead to avoid double-escaping instead of a sec...Jeremy Kemper2007-09-241-6/+1
* Optimized named routes respect AbstractRequest.relative_url_root. Closes #9612.Jeremy Kemper2007-09-233-4/+13
* Dont need all of test/unit (closes #6673) [zenspider/josh]David Heinemeier Hansson2007-09-231-1/+0
* Remove , and ; (comma and semicolon) from routing separators again. Reference...Jeremy Kemper2007-09-232-3/+3
* Fixed cache_page to use the request url instead of the routing options when p...David Heinemeier Hansson2007-09-232-8/+20
* Introduce ActionController::Base.rescue_from to declare exception-handling me...Jeremy Kemper2007-09-233-12/+91
* Rename some RequestForgeryProtection methods. The class method is now #prote...Rick Olson2007-09-238-44/+50
* move TextHelper#sanitize config options to the TextHelper module so it can be...Rick Olson2007-09-232-130/+146
* Merge csrf_killer plugin into rails. Adds RequestForgeryProtection model tha...Rick Olson2007-09-2316-22/+368
* Secure #sanitize, #strip_tags, and #strip_links helpers against xss attacks. ...Rick Olson2007-09-234-53/+423
* Test fix (closes #6911)David Heinemeier Hansson2007-09-221-1/+1
* Improve tests (closes #7240) [josh]David Heinemeier Hansson2007-09-221-0/+5
* Roll back #7578, tests failedDavid Heinemeier Hansson2007-09-222-12/+3
* Improve the error message for assert_redirected_to (closes #7337) [sandofsky]David Heinemeier Hansson2007-09-222-3/+12
* Disable the routing optimisation code when dealing with foo_url helpers. Add...Michael Koziarski2007-09-222-9/+11
* Remove use of & logic operator. Closes #8114.Nicholas Seckar2007-09-222-1/+3
* Fixed JavaScriptHelper#escape_javascript to also escape closing tags (closes ...David Heinemeier Hansson2007-09-223-1/+4
* Fixed TextHelper#word_wrap for multiline strings with extra carrier returns (...David Heinemeier Hansson2007-09-223-1/+9
* Allow frameworks to be required by their gem name (closes #8845) [drnic]David Heinemeier Hansson2007-09-221-0/+1
* Doc fix (closes #9123) [tzaharia]David Heinemeier Hansson2007-09-221-1/+2
* Use rel="stylesheet" in lowercase as prescribed by XHTML standards (closes #8...David Heinemeier Hansson2007-09-222-36/+36
* Doc fix (closes #9414) [Henrik N]David Heinemeier Hansson2007-09-221-3/+3
* Fixed that setting the :host option in url_for would automatically turn off :...David Heinemeier Hansson2007-09-223-3/+24
* Added FormHelper#label (closes #8641) [jcoglan]David Heinemeier Hansson2007-09-223-1/+49
* Test CGI::Cookie#to_s. Closes #9624 [tarmo]Jeremy Kemper2007-09-221-0/+27
* Fix bufferDavid Heinemeier Hansson2007-09-221-0/+1
* Fix tests for atom feedDavid Heinemeier Hansson2007-09-211-21/+21
* Added AtomFeedHelper (slightly improved from the atom_feed_helper plugin) [DHH]David Heinemeier Hansson2007-09-213-0/+214
* [html-scanner] Fix parsing of empty tags. Closes #7641. [anthony.bailey]Michael Koziarski2007-09-212-0/+23
* Forgotten changelog entryMichael Koziarski2007-09-211-0/+2
* Prevent clashing named routes when using uncountable resources. Closes #9598Michael Koziarski2007-09-211-2/+12
* Added support for HTTP Only cookies (works in IE6+ and FF 2.0.5+) as an impro...David Heinemeier Hansson2007-09-214-37/+37
* Submit missing fixture filesDavid Heinemeier Hansson2007-09-212-0/+5
* Don't warn when a path segment precedes a required segment. Closes #9615.Nicholas Seckar2007-09-212-1/+7
* Fixed CaptureHelper#content_for to work with the optional content parameter i...David Heinemeier Hansson2007-09-213-4/+30
* Added that render :json will automatically call .to_json unless its being pas...David Heinemeier Hansson2007-09-203-2/+34
* Autolink behaves well with emails embedded in URLs. Closes #7313.Jeremy Kemper2007-09-203-5/+20
* Revert [7397]. Reopens #7313.Jeremy Kemper2007-09-202-15/+5
* Fixed that default layouts did not take the format into account #9564 [lifofifo]David Heinemeier Hansson2007-09-184-3/+35
* ERB::Util#html_escape creates fewer objectsJeremy Kemper2007-09-181-0/+10
* tag_options creates fewer objectsJeremy Kemper2007-09-182-15/+18
* Added security notice to Request#remote_ip underlining the fact that its valu...David Heinemeier Hansson2007-09-171-0/+8
* Disable optimisation code for UrlWriter as request.host doesn't make sense th...Michael Koziarski2007-09-175-12/+47