aboutsummaryrefslogtreecommitdiffstats
path: root/guides/source/action_controller_overview.md
Commit message (Collapse)AuthorAgeFilesLines
* [ci skip] update guide for Puma web server instead of WebrickGaurav Sharma2016-01-201-4/+0
| | | Rails 5.0 default server puma web server. following commit - https://github.com/rails/rails/commit/ae48ea69
* Add a note on ActionController guide about 404Mauro George2016-01-111-2/+6
| | | | [ci skip]
* Refer to rails command instead of rake in a bunch of placesDavid Heinemeier Hansson2015-12-181-1/+1
| | | | Still more to do. Please assist!
* Add `redirect_back` for safer referrer redirectsDerek Prior2015-12-161-1/+1
| | | | | | | | | | | | | | | | | `redirect_to :back` is a somewhat common pattern in Rails apps, but it is not completely safe. There are a number of circumstances where HTTP referrer information is not available on the request. This happens often with bot traffic and occasionally to user traffic depending on browser security settings. When there is no referrer available on the request, `redirect_to :back` will raise `ActionController::RedirectBackError`, usually resulting in an application error. `redirect_back` takes a required `fallback_location` keyword argument that specifies the redirect when the referrer information is not available. This prevents 500 errors caused by `ActionController::RedirectBackError`.
* Change AbstractRequest to ActionDispatch::RequestBradley D2015-09-171-1/+1
| | | | | | AbstractRequest has been deprecated, updating to refer to ActionDispatch::Request instead. [ci skip]
* Remove RHTML reference in Action Controller docs [ci skip]Lachlan Campbell2015-09-101-1/+1
|
* typo "description not clear corrected with proper description and ↵kishore-mohan2015-09-021-1/+1
| | | | action_controller_overview file Rails' -> Rails" [ci skip]
* fix typo in method name [ci skip]yuuji.yaginuma2015-08-301-1/+1
|
* Remove a link to the site that seems to be gone. [ci skip]shunsukeaida2015-08-231-1/+1
| | | | Followup to #20637.
* [ci skip] Fix action_controller_overviewyui-knk2015-06-281-1/+1
|
* document that default_url_options is cached per request [ci skip]Xavier Noria2015-06-151-1/+3
|
* Tiny grammar correction in documentation [ci skip]Ankit gupta2015-05-051-1/+1
|
* Merge branch 'master' of github.com:rails/docrailsVijay Dev2015-04-141-1/+1
|\
| * [ci skip] Wrap with double quotationyui-knk2015-04-101-1/+1
| |
* | [ci skip] Downcases filter namesyui-knk2015-04-101-3/+3
|/
* Merge pull request #18459 from cantino/action_controller_guide_editsRafael Mendonça França2015-03-111-45/+44
|\ | | | | Action Controller guide edits for grammar and clarity
| * Edits for grammar and clarity, with help from georgeclaghorn and robin850.Andrew Cantino2015-03-111-45/+44
| |
* | [ci skip] escape under scoreyui-knk2015-02-131-1/+1
| |
* | - Changed `IN` to `ON` in markdown renderer conditionVipul A M2015-01-141-1/+1
|/ | | | - Changed `IN` to `ON` in all note sentences in guides.
* Add a note about non-buffering servers for AC::LiveAditya Kapoor2014-12-271-0/+5
| | | | [ci skip]
* warn about reading guides in GitHubXavier Noria2014-12-231-0/+2
| | | | References #18148.
* Don't convert empty arrays to nils when deep munging paramsChris Sinjakli2014-12-151-2/+2
|
* Remove custom errors page section from the guidesYuki Nishijima2014-11-281-58/+1
| | | | | | | | | | | | | | This pattern is too problematic and introduces a lot of edge cases: * On 4.2, the issue https://github.com/rails/rails/issues/15124 is back again. * needs to define each action for each http status otherwise the router raises ActionController::RoutingError (No route matches). * If the router has `match "/*username",...` and some action is missing, Rails will pick up the "match" and try to do its job. * encourages people to copy & paste programming. Not DRY. [ci skip]
* [ci skip] No need to indent here (AC overview).Juanito Fatas2014-10-251-6/+6
|
* Improve the warning a bit [ci skip]Rafael Mendonça França2014-10-161-1/+1
|
* Merge pull request #15827 from ↵Rafael Mendonça França2014-10-161-1/+3
|\ | | | | | | | | | | yuki24/another-improvements-for-dynamic-error-pages A warning line should look like a warning section in Guides
| * A warning line should look like a warning sectionYuki Nishijima2014-06-191-1/+3
| | | | | | | | [ci skip]
* | [guides] Use `match ..., via: :all` in the custom exceptions app [ci skip]Yuki Nishijima2014-09-061-3/+3
| | | | | | | | | | Using `get` results in an unexpected error page(returning empty body) for requests of other HTTP mehtods other than GET. Use `match ..., via: :all` so the exceptions app can be more stable.
* | Add warning for `rescue_from Exception` and `rescue_from StandardError`Yuki Nishijima2014-06-191-0/+2
|/ | | | [ci skip]
* ErrorsController shouldn't inherit ApplicationController, but ↵Yuki Nishijima2014-06-191-1/+1
| | | | | | | | | ActionController::Base Inheriting `ApplicationController` often causes an issue as it always has before/after actions. It should encourage to use `ActionController::Base` instead. [ci skip]
* Create custom errors page on ActionController guidesMauro George2014-06-191-0/+55
| | | | [ci skip]
* Fix typo in ActionController OverviewAri Pollak2014-06-021-2/+2
| | | | * Should say "sensitive" instead of "sensible"
* "subhash" --> "sub-hash"Akshay Vishnoi2014-04-191-1/+1
|
* Update documentation to use Rails.application insteadMarcel Morgan2014-04-131-3/+3
| | | | | | | References to ``AppName::Application` removed in favour of ``Rails.application`` as generated with a new rails 4.1 app. [ci skip]
* Missing 'are' in note - [ci skip]Afshin Mokhtari2014-04-121-1/+1
| | | This is in the note at the end of Section 2: Controller Naming Convention. [ci skip]
* Added a warning about serializing data with JSON cookie jars [skip ci]Godfrey Chan2014-03-191-0/+24
| | | | Closes #14409
* [ci skip] use secrets.yml instead of secret_token.rb in the action ↵Brian Thomas Storti2014-02-271-3/+18
| | | | controller guide
* Update guides for new rendering optionsPrem Sichanugrist2014-02-181-1/+1
| | | | | * Introduces `:plain`, `:html`, `:body` render option. * Update guide to use `render :plain` instead of `render :text`.
* Updated CHANGELOG, docs, guides and release notes.Godfrey Chan2014-02-111-7/+12
| | | | Also added a `cookies_serializer.rb` initializer to the app template.
* Renamed session_serializer option to cookies_serializerGodfrey Chan2014-02-111-16/+27
|
* Modify the session serializer implementationGuillermo Iguaran2014-01-301-11/+5
| | | | | Rename allowed options to :marshal and :json, for custom serializers only allow the use of custom classes.
* Fix documentation of new controller filters api [ci skip]Kassio Borges2014-01-291-2/+2
| | | | | | | | | The api for filters with classes change and the guides weren't updated. Now the class must respond for methods with the same name as the filter, so the `before_action` calls a `before` method, and so on. The method `#filter` has been deprecated in 4.0.0 and has been removed in 4.1.0: #7560
* Allow session serializer key in config.session_storeLukasz Sarnacki2014-01-291-0/+22
| | | | | | | | | | | | | MessageEncryptor has :serializer option, where any serializer object can be passed. This commit make it possible to set this serializer from configuration level. There are predefined serializers (:marshal_serializer, :json_serialzier) and custom serializer can be passed as String, Symbol (camelized and constantized in ActionDispatch::Session namepspace) or serializer object. Default :json_serializer was also added to generators to provide secure defalt.
* Log which keys were set to nil in deep_mungeLukasz Sarnacki2014-01-281-0/+4
| | | | | | | | deep_munge solves CVE-2013-0155 security vulnerability, but its behaviour is definately confuisng. This commit adds logging to deep_munge. It logs keys for which values were set to nil. Also mentions in guides were added.
* Change all "can not"s to the correct "cannot".T.J. Schuck2014-01-031-1/+1
|
* [ci skip] Add missing flash message in block filter example.Juanito Fatas2014-01-011-2/+5
| | | | Also make all three examples consistent.
* Fix typo [ci skip]Sıtkı Bağdat2013-12-181-1/+1
|
* sync example and documentation for strong_parameters hash whitelisting.Yves Senn2013-11-261-5/+7
| | | | | | | | | [ci skip] This is a follow up to #12609 and integrates #12158. Thanks @aspiers. Closes #12158.
* Merge remote-tracking branch 'docrails/master'Xavier Noria2013-11-241-1/+1
|\ | | | | | | | | | | Conflicts: activesupport/lib/active_support/core_ext/hash/deep_merge.rb activesupport/lib/active_support/core_ext/hash/keys.rb
| * Update action_controller_overview.md [ci skip]Harshad Sabne2013-11-151-1/+1
| | | | | | Code style adherence