aboutsummaryrefslogtreecommitdiffstats
path: root/actionview/lib/action_view/helpers/sanitize_helper/sanitizers.rb
Commit message (Collapse)AuthorAgeFilesLines
* Now only requiring Loofah in the places where it is needed.Timm2014-06-161-0/+2
|
* Now returning html if html is blank? in FullSanitizer and ↵Timm2014-06-161-1/+3
| | | | WhiteListSanitizer. This means it'll return false if called with false, however that is not a valid use case.
* Stylistic improvements. Some light documentation for remove_xpaths.Timm2014-06-161-6/+8
|
* Simplified the removal of xpaths in remove_xpaths. Added more tests for ↵Timm2014-06-161-1/+1
| | | | remove_xpaths.
* Changed: remove_xpaths called with String returns String, while called with ↵Timm2014-06-161-2/+2
| | | | Loofah fragment returns Loofah fragment. Added tests for this.
* Already killed off LinkScrubber. Changed it instead to be TargetScrubber, ↵Timm2014-06-161-1/+2
| | | | which is more general, while still allowing maximum code reuse.
* Added LinkScrubber to remove duplication in LinkSanitizer. As such made ↵Timm2014-06-161-10/+2
| | | | PermitScrubber easier to subclass.
* Changed FullSanitizer sanitize to use tap method instead of temporary variable.Timm2014-06-161-3/+3
|
* Extracted the common xpaths to remove into XPATHS_TO_REMOVE.Timm2014-06-161-2/+4
|
* Refactored remove_xpaths to use duck typing and read better.Timm2014-06-161-4/+5
|
* Changed explanation for no duck typing of custom scrubbers.Timm2014-06-161-1/+2
|
* Marked the private API as not needing code documentation.Timm2014-06-151-0/+1
|
* Added ability to pass a custom scrubber to sanitize. Includes test coverage.Timm2014-06-151-1/+3
|
* Moved requiring of Loofah from sanitizers.rb to action_view.rb.Timm2014-06-151-1/+0
|
* Added ActionView::Sanitizer and moved remove_xpaths to there.Timm2014-06-151-7/+0
|
* Added comment removal. Changed definitation of remove_xpaths to not use a ↵Timm2014-06-151-11/+24
| | | | splat operator.
* Extracted the xpath removals into some new API that allows users to remove ↵Timm2014-06-151-2/+8
| | | | xpath subtrees.
* Added removal of script tags to WhiteListSanitizer.Timm2014-06-151-0/+1
|
* Added guard clauses to FullSanitizer.Timm2014-06-151-1/+6
|
* bad_tags include form since we remove it. Also to prevent a ↵Timm2014-06-151-1/+1
| | | | should_allow_form_tag test creation.
* Removed the contains_bad_protocols? method as well as the tests for it. ↵Timm2014-06-151-8/+2
| | | | Loofah already deals with this.
* Reordered form removal with stripping.Timm2014-06-151-4/+7
|
* Added PermitScrubber which allows you to permit elements for sanitization.Timm2014-06-151-13/+14
|
* Removed duplication in the deprecated methods.Timm2014-06-151-5/+5
|
* Added Loofah as a dependency in actionview.gemspec.Timm2014-06-111-0/+116
Implemented ActionView: FullSanitizer, LinkSanitizer and WhiteListSanitizer in sanitizers.rb. Deprecated protocol_separator and bad_tags. Added new tests in sanitizers_test.rb and reimplemented assert_dom_equal with Loofah.
generated by cgit v1.2.3 (git 2.25.1) at 2024-09-01 22:50:52 +0000