This unobtrusive scripting support file is developed for the Ruby on Rails framework, but is not strictly tied to any specific backend. You can drop this into any application to:
- force confirmation dialogs for various actions;
- make non-GET requests from hyperlinks;
- make forms or hyperlinks submit data asynchronously with Ajax;
- have submit buttons become automatically disabled on form submit to prevent double-clicking.
These features are achieved by adding certain "data" attributes to your HTML markup. In Rails, they are added by the framework's template helpers.
- jQuery 1.6 or later;
- HTML5 doctype (optional).
If you don't use HTML5, adding "data" attributes to your HTML4 or XHTML pages might make them fail W3C markup validation. However, this shouldn't create any issues for web browsers or other user agents.
For automated installation in Rails, use the "jquery-rails" gem. Place this in your Gemfile:
gem 'jquery-rails', '>= 1.0.12'
$ bundle install
This next step depends on your version of Rails.
//= require jquery //= require jquery_ujs
b. For Rails 3.0, run this command (add
--ui if you want jQuery UI):
Be sure to get rid of the rails.js file if it exists, and instead use the new jquery_ujs.js file that gets copied to the public directory. Choose to overwrite jquery_ujs.js if prompted.
$ rails generate jquery:install
Configure the following in your application startup file:
Now the template helper
For Rails 2, you will need to manually implement the
csrf_meta_tag helper and include it inside the
<head> of your application layout.
csrf_meta_tags (Rails 3.1) and
csrf_meta_tag (Rails 3.0) helpers generate two meta tags containing values necessary for the cross-site request forgery protection built into Rails. Here is how to implement that helper in Rails 2:
# app/helpers/application_helper.rb def csrf_meta_tag if protect_against_forgery? out = %(<meta name="csrf-param" content="%s"/>\n) out << %(<meta name="csrf-token" content="%s"/>) out % [ Rack::Utils.escape_html(request_forgery_protection_token), Rack::Utils.escape_html(form_authenticity_token) ] end end