aboutsummaryrefslogtreecommitdiffstats
path: root/actionview
Commit message (Collapse)AuthorAgeFilesLines
...
| * | | | Already killed off LinkScrubber. Changed it instead to be TargetScrubber, ↵Timm2014-06-162-9/+20
| | | | | | | | | | | | | | | | | | | | which is more general, while still allowing maximum code reuse.
| * | | | Added LinkScrubber to remove duplication in LinkSanitizer. As such made ↵Timm2014-06-162-11/+22
| | | | | | | | | | | | | | | | | | | | PermitScrubber easier to subclass.
| * | | | Changed FullSanitizer sanitize to use tap method instead of temporary variable.Timm2014-06-161-3/+3
| | | | |
| * | | | Extracted the common xpaths to remove into XPATHS_TO_REMOVE.Timm2014-06-161-2/+4
| | | | |
| * | | | Refactored remove_xpaths to use duck typing and read better.Timm2014-06-161-4/+5
| | | | |
| * | | | Changed explanation for no duck typing of custom scrubbers.Timm2014-06-161-1/+2
| | | | |
| * | | | Added correct requires in html-scanner tests. Sanitizers are not based on ↵Timm2014-06-167-330/+6
| | | | | | | | | | | | | | | | | | | | html-scanner anymore, so sanitizer_test.rb is removed.
| * | | | Marked test_feed_xhtml as pending. See description in the test.Timm2014-06-161-0/+1
| | | | |
| * | | | Removed copyright notice since we aren't relying on html-scanner anymore.Timm2014-06-161-5/+0
| | | | |
| * | | | Removed require for active_support/core_ext/object/inclusion since in? isn't ↵Timm2014-06-161-2/+0
| | | | | | | | | | | | | | | | | | | | used anywhere.
| * | | | Moved Dom and Selector assertions from ActionDispatch to ActionView.Timm2014-06-166-1/+900
| | | | |
| * | | | Added test case for non-comment. Removed pending assertion that passed.Timm2014-06-161-3/+3
| | | | |
| * | | | Fixed Nokogiri::CSS::SyntaxErrors.Timm2014-06-151-32/+32
| | | | | | | | | | | | | | | | | | | | Fixed a Nokogiri::CSS::SyntaxError by using its expected format for unicode characters.
| * | | | Replaced html-scanner with Loofah.Timm2014-06-152-2/+2
| | | | |
| * | | | Fixed Nokogiri::CSS::SyntaxErrors in test file.Timm2014-06-151-3/+3
| | | | |
| * | | | Updated documentation to tell that a custom scrubber takes precedence.Timm2014-06-151-0/+1
| | | | |
| * | | | Updated the documentation to reflect the scrubber option.Timm2014-06-151-1/+22
| | | | |
| * | | | Marked the private API as not needing code documentation.Timm2014-06-152-0/+2
| | | | |
| * | | | Added ability to pass a custom scrubber to sanitize. Includes test coverage.Timm2014-06-152-1/+39
| | | | |
| * | | | Moved requiring of Loofah from sanitizers.rb to action_view.rb.Timm2014-06-152-1/+1
| | | | |
| * | | | Marked tests in sanitize_helper_test.rb as pending.Timm2014-06-151-8/+29
| | | | |
| * | | | Marked a test in form_helper_test.rb as pending because of unknown encoding ↵Timm2014-06-151-0/+2
| | | | | | | | | | | | | | | | | | | | ASCII-8BIT output error.
| * | | | Marked some tests as pending in date_helper_test.rb.Timm2014-06-151-0/+4
| | | | |
| * | | | Added some tests for ActionView::Sanitizer.Timm2014-06-151-0/+32
| | | | |
| * | | | Added ActionView::Sanitizer and moved remove_xpaths to there.Timm2014-06-151-7/+0
| | | | |
| * | | | Changed the description of some pending tests. Changed the expected output ↵Timm2014-06-151-3/+4
| | | | | | | | | | | | | | | | | | | | of a script test.
| * | | | Extracted one highlight test method and marked it as pending.Timm2014-06-151-0/+3
| | | | |
| * | | | Added comment removal. Changed definitation of remove_xpaths to not use a ↵Timm2014-06-151-11/+24
| | | | | | | | | | | | | | | | | | | | splat operator.
| * | | | Extracted the xpath removals into some new API that allows users to remove ↵Timm2014-06-151-2/+8
| | | | | | | | | | | | | | | | | | | | xpath subtrees.
| * | | | Added removal of script tags to WhiteListSanitizer.Timm2014-06-151-0/+1
| | | | |
| * | | | Renamed the SanitizerTest class to SanitersTest, to remove the conflict with ↵Timm2014-06-151-1/+1
| | | | | | | | | | | | | | | | | | | | the old SanitizerTest for html-scanner.
| * | | | Added video poster sanitization testing (from @vipulnsward).Timm2014-06-151-0/+5
| | | | |
| * | | | Extracted failing tests in santiizers_test.rb into their own methods and ↵Timm2014-06-151-7/+71
| | | | | | | | | | | | | | | | | | | | marked them as pending.
| * | | | Added guard clauses to FullSanitizer.Timm2014-06-151-1/+6
| | | | |
| * | | | bad_tags include form since we remove it. Also to prevent a ↵Timm2014-06-151-1/+1
| | | | | | | | | | | | | | | | | | | | should_allow_form_tag test creation.
| * | | | Changed expected value from '<b>' to empty string.Timm2014-06-151-1/+1
| | | | |
| * | | | Removed the contains_bad_protocols? method as well as the tests for it. ↵Timm2014-06-152-41/+2
| | | | | | | | | | | | | | | | | | | | Loofah already deals with this.
| * | | | Reordered form removal with stripping.Timm2014-06-152-5/+8
| | | | |
| * | | | Added PermitScrubber which allows you to permit elements for sanitization.Timm2014-06-152-13/+85
| | | | |
| * | | | Removed duplication in the deprecated methods.Timm2014-06-151-5/+5
| | | | |
| * | | | Added Loofah as a dependency in actionview.gemspec.Timm2014-06-114-23/+471
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Implemented ActionView: FullSanitizer, LinkSanitizer and WhiteListSanitizer in sanitizers.rb. Deprecated protocol_separator and bad_tags. Added new tests in sanitizers_test.rb and reimplemented assert_dom_equal with Loofah.
* | | | | Include missing module in tag_helperCarlos Antonio da Silva2014-07-091-0/+1
| |_|_|/ |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Since 6857415187810f1289068a448268264d0cf0844f we are using #safe_join to join the content when an Array is given, so we must include the dependent module here to make sure it's available when this module is used alone. This was making Simple Form tests to fail with current master due to the missing dependency.
* | | | Change back occurrences of SQLite(3) to sqlite3 when referring to theZachary Scott2014-07-061-1/+1
| | | | | | | | | | | | | | | | adapter, fixed from #16057 [ci skip]
* | | | [ci skip] /sqlite/i --> SQLiteAkshay Vishnoi2014-07-062-3/+3
| | | |
* | | | [ci skip] /javascript/ -> JavaScript - cover whole appAkshay Vishnoi2014-07-041-2/+2
| | | |
* | | | Add CHANGELOG for c803b90Godfrey Chan2014-07-021-0/+4
| | | |
* | | | Fix escape_once double-escaping hex-encoded entitiesJohn F. Douthat2014-07-022-0/+2
| | | | | | | | | | | | | | | | (This is a manual merge of #9102)
* | | | Add CHANGELOG entry for #15214Rafael Mendonça França2014-06-301-0/+4
| | | | | | | | | | | | | | | | Closes #15214
* | | | Use if/elseRafael Mendonça França2014-06-301-2/+5
| | | | | | | | | | | | | | | | | | | | Since we are using both branches of the code is preferable to use if/else over the early return.
* | | | Add String support for min/max attributes on DatetimeFieldTodd Bealmear2014-06-303-2/+119
| | | |
generated by cgit v1.2.3 (git 2.25.1) at 2025-04-05 10:19:48 +0000