Commit message (Collapse) | Author | Age | Files | Lines | ||
---|---|---|---|---|---|---|
... | ||||||
* | Work around Firefox's refusal to dispatch events on disabled elements. Fixes ↵ | Javan Makhmali | 2018-01-08 | 1 | -1/+10 | |
| | | | | | | #31393 Brought to you by a 12 year old Firefox bug: https://bugzilla.mozilla.org/show_bug.cgi?id=329509 | |||||
* | Allow overriding filename in `Blob#service_url` | Rosa Gutierrez | 2018-01-08 | 1 | -1/+1 | |
| | | | | | | | This is useful when we have several representations for the same underlying file, each one with a different name, and we need to provide a custom download URL based on that name and not that of the underlying file. | |||||
* | Force content disposition to attachment for specific content types | Rosa Gutierrez | 2018-01-05 | 1 | -2/+7 | |
| | | | | | | | | | | | | | | In this way we avoid HTML, XML, SVG and other files that can be rendered by the browser to be served inline by default. Depending on the origin from where these files are served, this might lead to XSS vulnerabilities, and in the best case, to more realistic phishing attacks and open redirects. We force it rather than falling back to it when other disposition is not provided. Otherwise it would be possible for someone to force inline just by passing `disposition=inline` in the URL. The list of content types to be served as attachments is configurable. | |||||
* | Exclude ActiveStorage::SetBlob from API docs [ci skip] | George Claghorn | 2018-01-02 | 1 | -1/+1 | |
| | ||||||
* | Restore support for the -layers transformation | George Claghorn | 2018-01-02 | 1 | -14/+14 | |
| | ||||||
* | prevent shadowing outer variables | Dorian Marié | 2017-12-25 | 1 | -4/+4 | |
| | ||||||
* | Active Storage: Fix direct uploads in IE 11 | Javan Makhmali | 2017-12-23 | 2 | -4/+18 | |
| | | | | | Fixes #31531 Closes #31540 | |||||
* | Add support for combined MiniMagick transformations | Robert Glaser | 2017-12-22 | 1 | -6/+16 | |
| | ||||||
* | [ci skip] Remove needless from doc for ActiveStorage::Variant | Yoshiyuki Hirano | 2017-12-22 | 1 | -1/+1 | |
| | ||||||
* | Delete MiniMagick tempfile when transformation fails | George Claghorn | 2017-12-18 | 1 | -1/+7 | |
| | ||||||
* | Ensure MiniMagick tempfiles are properly unlinked after image transformation | George Claghorn | 2017-12-18 | 1 | -9/+18 | |
| | ||||||
* | Convert non-web image (e.g. PSD) variants to PNG | George Claghorn | 2017-12-18 | 1 | -3/+34 | |
| | ||||||
* | Update ActiveStorage::Blob#transformation docs [ci skip] | George Claghorn | 2017-12-16 | 1 | -3/+3 | |
| | ||||||
* | Handle invalid signed blob IDs gracefully | George Claghorn | 2017-12-15 | 4 | -18/+28 | |
| | ||||||
* | Restrict variants to variable image blobs | George Claghorn | 2017-12-15 | 1 | -4/+18 | |
| | ||||||
* | Exclude ActiveStorage::Filename{#parameters,::Parameters} from API docs [ci ↵ | George Claghorn | 2017-12-13 | 2 | -2/+2 | |
| | | | | skip] | |||||
* | Fix optimizing GIF variants using mogrify's -layers option | George Claghorn | 2017-12-11 | 1 | -5/+7 | |
| | ||||||
* | Revert "Invoke mogrify once when transforming an image" | George Claghorn | 2017-12-11 | 1 | -8/+6 | |
| | | | | This reverts commit a80f81af055f02bf4625c90470aa90441cf6fc24. | |||||
* | Invoke mogrify once when transforming an image | George Claghorn | 2017-12-11 | 1 | -6/+8 | |
| | | | | Execute a single mogrify command with multiple options rather than one command per option. Permit the use of all mogrify options, not just the ones that fall through to MiniMagick::Image#method_missing. | |||||
* | Purge variants with their blobs | George Claghorn | 2017-12-02 | 1 | -1/+2 | |
| | ||||||
* | Fix loading ActiveStorage::DiskController when CSRF protection is disabled ↵ | George Claghorn | 2017-11-21 | 1 | -1/+1 | |
| | | | | by default | |||||
* | Fix direct uploads to local service | George Claghorn | 2017-11-20 | 1 | -0/+2 | |
| | | | | | | | | Disable CSRF protection for ActiveStorage::DiskController#update. The local disk service is intended to imitate a third-party service like S3 or GCS, so we don't care where direct uploads originate: they’re authorized by signed tokens. Closes #30290. [Shinichi Maeshima & George Claghorn] | |||||
* | Preserve existing metadata when analyzing a blob | George Claghorn | 2017-11-13 | 1 | -1/+1 | |
| | | | | Closes #31138. | |||||
* | Permit configuring Active Storage's job queue | George Claghorn | 2017-11-03 | 3 | -2/+7 | |
| | ||||||
* | Extract metadata from images and videos | George Claghorn | 2017-10-22 | 4 | -2/+72 | |
| | ||||||
* | Clarify comment [ci skip] | George Claghorn | 2017-10-13 | 1 | -1/+1 | |
| | ||||||
* | Accept variation keys in #preview and #variant | George Claghorn | 2017-10-12 | 2 | -7/+12 | |
| | ||||||
* | Introduce ActiveStorage::Blob#representation | George Claghorn | 2017-10-12 | 2 | -0/+30 | |
| | ||||||
* | Replace variation key use with SHA256 of key to prevent long filenames | khall | 2017-10-05 | 1 | -1/+1 | |
| | | | | | | | If a variant has a large set of options associated with it, the generated filename will be too long, causing Errno::ENAMETOOLONG to be raised. This change replaces those potentially long filenames with a much more compact SHA256 hash. Fixes #30662. | |||||
* | Fix third-party system libraries list in ActiveStorage::Preview [ci skip] | Yoshiyuki Hirano | 2017-10-04 | 1 | -2/+2 | |
| | ||||||
* | Associate blobs with their attachments | George Claghorn | 2017-10-03 | 1 | -0/+2 | |
| | ||||||
* | Preview PDFs and videos | George Claghorn | 2017-09-28 | 8 | -44/+160 | |
| | ||||||
* | Add missing word [ci skip] | George Claghorn | 2017-09-20 | 1 | -1/+1 | |
| | ||||||
* | Flesh out ActiveStorage::Filename docs | George Claghorn | 2017-09-20 | 1 | -6/+14 | |
| | ||||||
* | Remove unused require in ActiveStorage::Variation | Yoshiyuki Hirano | 2017-09-18 | 1 | -2/+0 | |
| | ||||||
* | Fix activestorage direct upload on firefox | _N_I_X_O_N_ | 2017-09-12 | 3 | -1/+3 | |
| | | | | | | | | Direct upload on firefox is not working because it can’t handle click events on “input[type=submit]”. After a successful upload we can see on console a xml parse error, it happens because AWS S3 success body response is empty, so changing the reponseType suppress this error. | |||||
* | Have attachments touch their records | George Claghorn | 2017-08-31 | 1 | -1/+1 | |
| | ||||||
* | Update Active Storage docs [ci skip] | Yoshiyuki Hirano | 2017-08-30 | 2 | -7/+15 | |
| | ||||||
* | Synchronously destroy attachments | George Claghorn | 2017-08-29 | 2 | -9/+7 | |
| | ||||||
* | Enable links in Active Storage docs [ci skip] | Yoshiyuki Hirano | 2017-08-26 | 2 | -2/+2 | |
| | ||||||
* | Fix link in doc for active storage [ci skip] | Yoshiyuki Hirano | 2017-08-25 | 1 | -1/+1 | |
| | ||||||
* | Add frozen string literal pragma | George Claghorn | 2017-08-21 | 1 | -0/+2 | |
| | ||||||
* | Encode Content-Disposition filenames according to RFC 2231 | George Claghorn | 2017-08-21 | 3 | -1/+39 | |
| | | | | Closes #30134. | |||||
* | DRY | George Claghorn | 2017-08-20 | 2 | -3/+3 | |
| | ||||||
* | Rename ActiveStorage::Filename#extname to extension_with_delimiter | George Claghorn | 2017-08-20 | 1 | -9/+11 | |
| | ||||||
* | restores some double newlines deleted in ae87217 | Xavier Noria | 2017-08-15 | 3 | -0/+6 | |
| | | | | | | These were intentional, see https://github.com/rails/rails/pull/30061#issuecomment-320068368 | |||||
* | minor tweaks in Active Storage after a walkthrough | Xavier Noria | 2017-08-15 | 6 | -32/+28 | |
| | ||||||
* | Use frozen string literal in Active Storage | Koichi ITO | 2017-08-12 | 10 | -0/+20 | |
| | ||||||
* | Enable browser caching for blobs and variants (#30196) | Anton Khamets | 2017-08-11 | 2 | -0/+2 | |
| | ||||||
* | Fix formatting of Active Storage docs [ci skip] | Koichi ITO | 2017-08-11 | 5 | -31/+31 | |
| | | | | Follow up of #30188. |