aboutsummaryrefslogtreecommitdiffstats
path: root/guides/source
Commit message (Collapse)AuthorAgeFilesLines
* Merge pull request #32471 from janko-m/use-image_processing-gemGeorge Claghorn2018-04-232-7/+18
|\ | | | | Use ImageProcessing gem for ActiveStorage variants
| * Correct typosJanko Marohnić2018-04-231-2/+2
| |
| * Recommend using :resize_to_fit after allJanko Marohnić2018-04-231-2/+2
| |
| * Replace :resize_to_fit with :resize in the guideJanko Marohnić2018-04-231-1/+1
| |
| * Rename ActiveStorage.processor to .variant_processorJanko Marohnić2018-04-222-2/+2
| |
| * Use ImageProcessing gem for ActiveStorage variantsJanko Marohnić2018-04-182-6/+17
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | ImageProcessing gem is a wrapper around MiniMagick and ruby-vips, and implements an interface for common image resizing and processing. This is the canonical image processing gem recommended in [Shrine], and that's where it developed from. The initial implementation was extracted from Refile, which also implements on-the-fly transformations. Some features that ImageProcessing gem adds on top of MiniMagick: * resizing macros - #resize_to_limit - #resize_to_fit - #resize_to_fill - #resize_and_pad * automatic orientation * automatic thumbnail sharpening * avoids the complex and inefficient MiniMagick::Image class * will use "magick" instead of "convert" on ImageMagick 7 However, the biggest feature of the ImageProcessing gem is that it has an alternative implementation that uses libvips. Libvips is an alternative to ImageMagick that can process images very rapidly (we've seen up 10x faster than ImageMagick). What's great is that the ImageProcessing gem provides the same interface for both implementations. The macros are named the same, and the libvips implementation does auto orientation and thumbnail sharpening as well; only the operations/options specific to ImageMagick/libvips differ. The integration provided by this PR should work for both implementations. The plan is to introduce the ImageProcessing backend in Rails 6.0 as the default backend and deprecate the MiniMagick backend, then in Rails 6.1 remove the MiniMagick backend.
* | Remove key from session by using session.delete (#31685)Rafael Barbolo2018-04-231-1/+3
| | | | | | | | | | | | | | | | | | | | | | * Remove key from session by using session.delete You are not deleting a key from session when you assign nil to that key. * Update guides on how to destroy a user session In this commit, the user id is removed from session and controller's variables related to the user are nullified. [Rafael Mendonça França + Rafael Barbolo]
* | Merge pull request #32689 from yhirano55/update-testing-guidesGuillermo Iguaran2018-04-221-13/+14
|\ \ | | | | | | Update results of command in Testing guides [ci skip]
| * | Update results of command in Testing guides [ci skip]Yoshiyuki Hirano2018-04-231-13/+14
| | | | | | | | | | | | | | | * Results of command in testing guides are different from actual ones. * Updated them.
* | | :scissors: jQuery for Rails GuidesYoshiyuki Hirano2018-04-211-9/+2
|/ / | | | | | | | | * Rewrite with Vanilla JS * Confirmed with Chrome, Safari, Firefox
* | Merge pull request #32572 from nao0515ki/add_optional_true_to_self_joins_sectionRafael França2018-04-201-1/+1
|\ \ | | | | | | [ci skip] belongs_to in self join association needs optional: true, if it's over 5.0 ver of rails
| * | [ci skip] belongs_to in self join association needs optional: true, if it's ↵nao0515ki2018-04-141-1/+1
| |/ | | | | | | over 5.0 ver of rails
* | Merge pull request #32575 from ybakos/guides/testing/pluralize_class_namesRafael França2018-04-191-3/+3
|\ \ | | | | | | guides/testing: Pluralize controller and helper class names.
| * | guides/testing: Pluralize controller and helper class names.Yong Bakos2018-04-141-3/+3
| |/ | | | | | | | | | | The Rails convention for controllers and helpers is plural, except where intentionally singular. Pluralize the controller and helper class names, to match convention.
* | Merge pull request #32574 from DmytroVasin/rails-ujs-stoppable-eventsRafael França2018-04-191-4/+6
|\ \ | | | | | | Rails-ujs: Info about stoppable events
| * | Fix stoppable events in tests and docs.Dmytro Vasin2018-04-141-4/+6
| |/
* | [ci skip] Fix minor system testing documentation typo.Stephen2018-04-181-1/+1
| |
* | Merge pull request #32607 from yaroslav/feature/nonce-for-javascript_include_tagAndrew White2018-04-181-0/+6
|\ \ | | | | | | Add the `nonce: true` option for `javascript_include_tag` helper.
| * | Add the `nonce: true` option for `javascript_include_tag` helper.Yaroslav Markin2018-04-171-0/+6
| | |
* | | Correct docs on naming of sprockets manifest filePaul2018-04-171-2/+2
|/ / | | | | | | Calling this an MD5 implies that it is generated consistently based on some input. However, this value is [completely random](https://github.com/rails/sprockets/blob/fbe6e450b6f25cf3ea494fcab0e34001d0b5a0b9/lib/sprockets/manifest_utils.rb#L11-L24).
* | Merge pull request #32582 from cassidycodes/better-examplesRafael França2018-04-162-11/+11
|\ \ | | | | | | Inclusive Language in Documentation Examples
| * | Use string-based fields. [ci skip]Cassidy Kobewka2018-04-161-4/+4
| | |
| * | Inclusive Language in Documentation Examples [ci skip]Cassidy Kobewka2018-04-152-11/+11
| |/
* | Merge pull request #32596 from bogdanvlviv/add-reference-to-5_2-from-edge-guidesRyuta Kamizono2018-04-171-0/+1
|\ \ | | | | | | Add the reference to Rails Guides 5.2 from the Edge Guides
| * | Add the reference to Rails Guides 5.2 from the Edge Guidesbogdanvlviv2018-04-171-0/+1
| |/ | | | | | | [ci skip]
* / Update Rails minor version from 5.1 to 5.2 [ci skip]Jolyon Pawlyn2018-04-161-1/+1
|/
* Update security.md with latest underground market pricesszTheory2018-04-131-1/+1
| | | Updated underground market prices according to the 2017 Symantec ISTR (was previously citing the 2008 report)
* Fix MySpace Samy worm link [ci skip]284km2018-04-121-1/+1
| | | | The old link https://samy.pl/popular/tech.html is 404 not found.
* Remove link for the kindle version of guides on edgeRafael Mendonça França2018-04-111-1/+3
| | | | | | See https://github.com/rails/rails-docs-server/pull/8 for reason. [ci skip]
* Specify which series I'm talking aboutRafael Mendonça França2018-04-101-1/+1
| | | | [ci skip]
* Update our security policy to include all releases in the current seriesRafael Mendonça França2018-04-101-2/+2
| | | | | | | | | | | We don't want people to jump from the last release in the previous series (4.2) straing to the first release in the current series that is support (5.1), so we should be supporting the entire series for severe security issues. This will not be a problem because usually we only have 3 releases in a series and backporting patches inside the same series is not harder than backporting to a previous series.
* 4.2 is still maintainedRafael Mendonça França2018-04-101-1/+1
| | | | It is the last major release series.
* Correct Maintenance Policy for Rails 5.2Ryan Bigg2018-04-101-3/+3
|
* [ci skip] Add securing rails app guide link to credential sectionYoshiyuki Hirano2018-04-071-0/+3
| | | | * In 5.2 release note, added [securing rails app guide](http://edgeguides.rubyonrails.org/security.html#custom-credentials) link to [credentials section](http://edgeguides.rubyonrails.org/5_2_release_notes.html#credentials).
* [ci skip] Add :private option to delegate section in guideYoshiyuki Hirano2018-04-041-0/+8
|
* Remove credits.html from Rails GuidesYoshiyuki Hirano2018-04-036-89/+1
| | | | * refs #32420
* Add `action_view.finalize_compiled_template_methods` config optionSimon Coffey2018-04-021-0/+7
| | | | | | | | | | | | | | | | | | | | | | | | | | | ActionView::Template instances compile their source to methods on the ActionView::CompiledTemplates module. To prevent leaks in development mode, where templates can frequently change, a finalizer is added that undefines these methods[1] when the templates are garbage-collected. This is undesirable in the test environment, however, as templates don't change during the life of the test. Moreover, the cost of undefining a method is proportional to the number of descendants a class or module has, since the method cache must be cleared for all descendant classes. As ActionView::CompiledTemplates is mixed into every ActionView::TestCase (or in RSpec suites, every view spec example group), it can end up with a very large number of descendants, and undefining its methods can become very expensive. In large test suites, this results in a long delay at the end of the test suite as all template finalizers are run, only for the process to then exit. To avoid this unnecessary cost, this change adds a config option, `action_view.finalize_compiled_template_methods`, defaulting to true, and sets it to false in the test environment only. [1] https://github.com/rails/rails/blob/09b2348f7fc8d4e7191e70e06608c5909067e2aa/actionview/lib/action_view/template.rb#L118-L126
* Merge pull request #32397 from yhirano55/remove_needless_images_in_guidesXavier Noria2018-03-313-10/+10
|\ | | | | Remove needless images in guides
| * Put images into each page's dir in guidesYoshiyuki Hirano2018-03-313-10/+10
| |
* | Merge pull request #32395 from yhirano55/use_oxford_comma_style_in_guideAndrew White2018-03-311-1/+1
|\ \ | |/ |/| [ci skip] Use Oxford comma style in guide
| * [ci skip] Use Oxford comma style in guideYoshiyuki Hirano2018-03-311-1/+1
| |
* | Revert "[ci skip] Capitalize sentence of first char in AS guide"Andrew White2018-03-311-1/+1
|/ | | | | | | The text is a continuation of the sentence before the listing so doesn't need to begin with a capital letter. This reverts commit 77a7acafba11fccac8b4cf30a9ce62d43a9ac186.
* Merge pull request #32392 from ↵Andrew White2018-03-311-1/+1
|\ | | | | | | | | yhirano55/capitalize_sentence_of_first_char_in_as_guide [ci skip] Capitalize sentence of first char in AS guide
| * [ci skip] Capitalize sentence of first char in AS guideYoshiyuki Hirano2018-03-311-1/+1
| |
* | Merge pull request #32389 from yhirano55/add_earlier_releases_in_guidesRyuta Kamizono2018-03-311-1/+3
|\ \ | | | | | | Add earlier releases v3.0, v3.1 in guides
| * | Add earlier releases links v3.0 and v3.1 in guidesYoshiyuki Hirano2018-03-311-1/+3
| | |
* | | [ci skip] Modify twitter api link in api guideYoshiyuki Hirano2018-03-311-1/+1
| |/ |/| | | | | * The twitter developer site's url was changed.
* | Merge pull request #32277 from derekprior/dp-deprecate-force-sslGuillermo Iguaran2018-03-303-20/+14
|\ \ | |/ |/| Deprecate controller level force_ssl
| * Deprecate controller level force_sslDerek Prior2018-03-303-20/+14
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Today there are two common ways for Rails developers to force their applications to communicate over HTTPS: * `config.force_ssl` is a setting in environment configurations that enables the `ActionDispatch::SSL` middleware. With this middleware enabled, all HTTP communication to your application will be redirected to HTTPS. The middleware also takes care of other best practices by setting HSTS headers, upgrading all cookies to secure only, etc. * The `force_ssl` controller method redirects HTTP requests to certain controllers to HTTPS. As a consultant, I've seen many applications with misconfigured HTTPS setups due to developers adding `force_ssl` to `ApplicationController` and not enabling `config.force_ssl`. With this configuration, many application requests can be served over HTTP such as assets, requests that hit mounted engines, etc. In addition, because cookies are not upgraded to secure only in this configuration and HSTS headers are not set, it's possible for cookies that are meant to be secure to be sent over HTTP. The confusion between these two methods of forcing HTTPS is compounded by the fact that they share an identical name. This makes finding documentation on the "right" method confusing. HTTPS throughout is quickly becomming table stakes for all web sites. Sites are expected to operate over HTTPS for all communication, sensitive or otherwise. Let's encourage use of the broader-reaching `ActionDispatch::SSL` middleware and elminate this source of user confusion. If, for some reason, applications need to expose certain endpoints over HTTP they can do so by properly configuring `config.ssl_options`.
* | Merge pull request #32299 from davidstosik/expose-fk-ignore-patternGuillermo Iguaran2018-03-271-1/+7
|\ \ | | | | | | Expose foreign key name ignore pattern in configuration
generated by cgit v1.2.3 (git 2.25.1) at 2024-11-03 01:43:02 +0000