Skip to content
Newer
Older
100644 5984 lines (3432 sloc) 298 KB
2e98e0f @rafaelfranca Fix CHANGELOG [ci skip]
rafaelfranca authored
1 ## Rails 3.2.9 (unreleased) ##
6764b7b @spastorino Add missing CHANGELOG entries
spastorino authored
2
8e2a05b @sikachu Do not include application.js if it doesn't exists
sikachu authored
3 * `javascript_include_tag :all` will now not include `application.js` if the file does not exists. *Prem Sichanugrist*
4
2e04a34 @brainopia Update changelog to reflect support of cookie jar options for all
brainopia authored
5 * Support cookie jar options (e.g., domain :all) for all session stores.
6 Fixes GH#3047, GH#2483.
7
8 *Ravil Bayramgalin*
9
2e98e0f @rafaelfranca Fix CHANGELOG [ci skip]
rafaelfranca authored
10
ddedf5d @spastorino Add release date to CHANGELOGs
spastorino authored
11 ## Rails 3.2.8 (Aug 9, 2012) ##
6764b7b @spastorino Add missing CHANGELOG entries
spastorino authored
12
e91e4e8 @spastorino Do not mark strip_tags result as html_safe
spastorino authored
13 * There is an XSS vulnerability in the strip_tags helper in Ruby on Rails, the
14 helper doesn't correctly handle malformed html. As a result an attacker can
15 execute arbitrary javascript through the use of specially crafted malformed
16 html.
17
18 *Marek from Nethemba (www.nethemba.com) & Santiago Pastorino*
19
6d0526d @spastorino escape select_tag :prompt values
spastorino authored
20 * When a "prompt" value is supplied to the `select_tag` helper, the "prompt" value is not escaped.
21 If untrusted data is not escaped, and is supplied as the prompt value, there is a potential for XSS attacks.
22 Vulnerable code will look something like this:
23 select_tag("name", options, :prompt => UNTRUSTED_INPUT)
24
25 *Santiago Pastorino*
2e98e0f @rafaelfranca Fix CHANGELOG [ci skip]
rafaelfranca authored
26
857697b @rafaelfranca Fix CHANGELOGS
rafaelfranca authored
27 * Reverted the deprecation of `:confirm`. *Rafael Mendonça França*
28
29 * Reverted the deprecation of `:disable_with`. *Rafael Mendonça França*
6764b7b @spastorino Add missing CHANGELOG entries
spastorino authored
30
e826a5c @rafaelfranca Revert "Deprecate `:mouseover` options for `image_tag` helper."
rafaelfranca authored
31 * Reverted the deprecation of `:mouseover` option to `image_tag`. *Rafael Mendonça França*
32
f50a5d2 @rafaelfranca Revert "Deprecate link_to_function and button_to_function helpers"
rafaelfranca authored
33 * Reverted the deprecation of `button_to_function` and `link_to_function` helpers.
34
35 *Rafael Mendonça França*
36
6764b7b @spastorino Add missing CHANGELOG entries
spastorino authored
37
d1b9cf2 @tenderlove updating release date
tenderlove authored
38 ## Rails 3.2.7 (Jul 26, 2012) ##
125dfdf @tenderlove updating changelogs
tenderlove authored
39
857697b @rafaelfranca Fix CHANGELOGS
rafaelfranca authored
40 * Do not convert digest auth strings to symbols. CVE-2012-3424
41
42 * Bump Journey requirements to 1.0.4
43
44 * Add support for optional root segments containing slashes
125dfdf @tenderlove updating changelogs
tenderlove authored
45
857697b @rafaelfranca Fix CHANGELOGS
rafaelfranca authored
46 * Fixed bug creating invalid HTML in select options
125dfdf @tenderlove updating changelogs
tenderlove authored
47
857697b @rafaelfranca Fix CHANGELOGS
rafaelfranca authored
48 * Show in log correct wrapped keys
125dfdf @tenderlove updating changelogs
tenderlove authored
49
857697b @rafaelfranca Fix CHANGELOGS
rafaelfranca authored
50 * Fix NumberHelper options wrapping to prevent verbatim blocks being rendered instead of line continuations.
125dfdf @tenderlove updating changelogs
tenderlove authored
51
857697b @rafaelfranca Fix CHANGELOGS
rafaelfranca authored
52 * ActionController::Metal doesn't have logger method, check it and then delegate
125dfdf @tenderlove updating changelogs
tenderlove authored
53
857697b @rafaelfranca Fix CHANGELOGS
rafaelfranca authored
54 * ActionController::Caching depends on RackDelegation and AbstractController::Callbacks
125dfdf @tenderlove updating changelogs
tenderlove authored
55
56
8381d39 @tenderlove updating changelogs
tenderlove authored
57 ## Rails 3.2.6 (Jun 12, 2012) ##
8d4f63a @drogus Include routes.mounted_helpers into integration tests
drogus authored
58
ceb8ec3 @tenderlove updating changelogs with security fixes
tenderlove authored
59 * nil is removed from array parameter values
60
8381d39 @tenderlove updating changelogs
tenderlove authored
61 CVE-2012-2694
62
857697b @rafaelfranca Fix CHANGELOGS
rafaelfranca authored
63 * Deprecate `:confirm` in favor of `':data => { :confirm => "Text" }'` option for `button_to`, `button_tag`, `image_submit_tag`, `link_to` and `submit_tag` helpers.
64
65 *Carlos Galdino*
66
f550d4d @drogus Allow to use mounted helpers in ActionView::TestCase
drogus authored
67 * Allow to use mounted_helpers (helpers for accessing mounted engines) in ActionView::TestCase. *Piotr Sarnacki*
68
8d4f63a @drogus Include routes.mounted_helpers into integration tests
drogus authored
69 * Include mounted_helpers (helpers for accessing mounted engines) in ActionDispatch::IntegrationTest by default. *Piotr Sarnacki*
70
b13d89e @rafaelfranca Add release date of 3.2.5 on the CHANGELOG
rafaelfranca authored
71
72 ## Rails 3.2.5 (Jun 1, 2012) ##
73
74 * No changes.
75
76
d3e5d1c @tenderlove updating changelogs
tenderlove authored
77 ## Rails 3.2.4 (May 31, 2012) ##
342b54a @rafaelfranca Add CHANGELOG entry.
rafaelfranca authored
78
616c91d @iHiD Deprecate old APIs for highlight, excerpt and word_wrap
iHiD authored
79 * Deprecate old APIs for highlight, excerpt and word_wrap *Jeremy Walker*
80
857697b @rafaelfranca Fix CHANGELOGS
rafaelfranca authored
81 * Deprecate `:disable_with` in favor of `'data-disable-with'` option for `button_to`, `button_tag` and `submit_tag` helpers.
82
83 *Carlos Galdino + Rafael Mendonça França*
84
85 * Deprecate `:mouseover` option for `image_tag` helper. *Rafael Mendonça França*
1aff772 @rafaelfranca Deprecate `:mouseover` options for `image_tag` helper.
rafaelfranca authored
86
342b54a @rafaelfranca Add CHANGELOG entry.
rafaelfranca authored
87 * Deprecate `button_to_function` and `link_to_function` helpers. *Rafael Mendonça França*
88
d3e5d1c @tenderlove updating changelogs
tenderlove authored
89 * Don't break Haml with textarea newline fix. GH #393, #4000, #5190, #5191
90
91 * Fix options handling on labels. GH #2492, #5614
92
93 * Added config.action_view.embed_authenticity_token_in_remote_forms to deal
94 with regression from 16ee611fa
95
96 * Set rendered_format when doing render :inline. GH #5632
97
98 * Fix the redirect when it receive blocks with arity of 1. Closes #5677
342b54a @rafaelfranca Add CHANGELOG entry.
rafaelfranca authored
99
44aca7b @tenderlove adding security notifications to CHANGELOGs
tenderlove authored
100 * Strip [nil] from parameters hash. Thanks to Ben Murphy for
101 reporting this! CVE-2012-2660
102
b13d89e @rafaelfranca Add release date of 3.2.5 on the CHANGELOG
rafaelfranca authored
103
342b54a @rafaelfranca Add CHANGELOG entry.
rafaelfranca authored
104 ## Rails 3.2.3 (March 30, 2012) ##
8674823 @spastorino Add CHANGELOG entry
spastorino authored
105
beba826 @drogus Lazy load `default_form_builder` if it's passed as a string
drogus authored
106 * Allow to lazy load `default_form_builder` by passing a `String` instead of a constant. *Piotr Sarnacki*
107
dd69076 @spastorino Add missing CHANGELOG entry
spastorino authored
108 * Fix #5632, render :inline set the proper rendered format. *Santiago Pastorino*
109
b395ca1 @spastorino Add missing CHANGELOG entry
spastorino authored
110 * Fix textarea rendering when using plugins like HAML. Such plugins encode the first newline character in the content. This issue was introduced in https://github.com/rails/rails/pull/5191 *James Coleman*
111
13fe190 @spastorino Remove the leading \n added by textarea on assert_select
spastorino authored
112 * Remove the leading \n added by textarea on assert_select. *Santiago Pastorino*
113
d646d9d @drogus Added config.action_view.embed_authenticity_token_in_remote_forms
drogus authored
114 * Add `config.action_view.embed_authenticity_token_in_remote_forms` (defaults to true) which allows to set if authenticity token will be included by default in remote forms. If you change it to false, you can still force authenticity token by passing `:authenticity_token => true` in form options *Piotr Sarnacki*
115
16ee611 @dhh Do not include the authenticity token in forms where remote: true as …
dhh authored
116 * Do not include the authenticity token in forms where remote: true as ajax forms use the meta-tag value *DHH*
117
520571a @spastorino Turn off verbose mode of rack-cache, we still have X-Rack-Cache to ch…
spastorino authored
118 * Turn off verbose mode of rack-cache, we still have X-Rack-Cache to
119 check that info. Closes #5245. *Santiago Pastorino*
120
8674823 @spastorino Add CHANGELOG entry
spastorino authored
121 * Fix #5238, rendered_format is not set when template is not rendered. *Piotr Sarnacki*
122
3bfd651 @vijaydev changelog updates [ci skip]
vijaydev authored
123 * Upgrade rack-cache to 1.2. *José Valim*
124
125 * ActionController::SessionManagement is deprecated. *Santiago Pastorino*
126
db743ff @rafaelfranca Fix my name in the CHANGELOG to follow the convention
rafaelfranca authored
127 * Since the router holds references to many parts of the system like engines, controllers and the application itself, inspecting the route set can actually be really slow, therefore we default alias inspect to to_s. *José Valim*
3bfd651 @vijaydev changelog updates [ci skip]
vijaydev authored
128
db743ff @rafaelfranca Fix my name in the CHANGELOG to follow the convention
rafaelfranca authored
129 * Add a new line after the textarea opening tag. Closes #393 *Rafael Mendonça França*
3bfd651 @vijaydev changelog updates [ci skip]
vijaydev authored
130
131 * Always pass a respond block from to responder. We should let the responder to decide what to do with the given overridden response block, and not short circuit it. *sikachu*
132
133 * Fixes layout rendering regression from 3.2.2. *José Valim*
8674823 @spastorino Add CHANGELOG entry
spastorino authored
134
db743ff @rafaelfranca Fix my name in the CHANGELOG to follow the convention
rafaelfranca authored
135
136 ## Rails 3.2.2 (March 1, 2012) ##
2e5ec3b @josevalim Merge check box fixes from remote-tracking branch 'cantonio/checkbox-…
josevalim authored
137
82d6ded @spastorino Fix CHANGELOG
spastorino authored
138 * Format lookup for partials is derived from the format in which the template is being rendered. Closes #5025 part 2 *Santiago Pastorino*
110b43c @spastorino Add CHANGELOG entry
spastorino authored
139
82d6ded @spastorino Fix CHANGELOG
spastorino authored
140 * Use the right format when a partial is missing. Closes #5025. *Santiago Pastorino*
b122968 @spastorino Add CHANGELOG entry
spastorino authored
141
567ac65 @sikachu Fix override API response bug in respond_with
sikachu authored
142 * Default responder will now always use your overridden block in `respond_with` to render your response. *Prem Sichanugrist*
143
2e5ec3b @josevalim Merge check box fixes from remote-tracking branch 'cantonio/checkbox-…
josevalim authored
144 * check_box helper with :disabled => true will generate a disabled hidden field to conform with the HTML convention where disabled fields are not submitted with the form.
145 This is a behavior change, previously the hidden tag had a value of the disabled checkbox.
146 *Tadas Tamosauskas*
147
8674823 @spastorino Add CHANGELOG entry
spastorino authored
148
97e8d1d @fxn CHANGELOG revision for v3.2.1
fxn authored
149 ## Rails 3.2.1 (January 26, 2012) ##
150
151 * Documentation improvements.
152
153 * Allow `form.select` to accept ranges (regression). *Jeremy Walker*
154
155 * `datetime_select` works with -/+ infinity dates. *Joe Van Dyk*
156
157
f36dcaf @dhh Preparing for 3.2.0 release
dhh authored
158 ## Rails 3.2.0 (January 20, 2012) ##
281272a @jonleighton Convert CHANGELOGs to Markdown format.
jonleighton authored
159
ae7037e @guilleiguaran Update CHANGELOG and docs for config.assets.logger
guilleiguaran authored
160 * Setting config.assets.logger to false turn off Sprockets logger *Guillermo Iguaran*
161
ed0f0ad @carlosantoniodasilva Update changelog
carlosantoniodasilva authored
162 * Add `config.action_dispatch.default_charset` to configure default charset for ActionDispatch::Response. *Carlos Antonio da Silva*
163
164 * Deprecate setting default charset at controller level, use the new `config.action_dispatch.default_charset` instead. *Carlos Antonio da Silva*
165
166 * Deprecate ActionController::UnknownAction in favour of AbstractController::ActionNotFound. *Carlos Antonio da Silva*
167
168 * Deprecate ActionController::DoubleRenderError in favour of AbstractController::DoubleRenderError. *Carlos Antonio da Silva*
169
170 * Deprecate method_missing handling for not found actions, use action_missing instead. *Carlos Antonio da Silva*
171
172 * Deprecate ActionController#rescue_action, ActionController#initialize_template_class, and ActionController#assign_shortcuts.
173 These methods were not being used internally anymore and are going to be removed in Rails 4. *Carlos Antonio da Silva*
174
c4c6beb @rafaelfranca Add option to configure Sprockets logger
rafaelfranca authored
175 * Add config.assets.logger to configure Sprockets logger *Rafael França*
176
c159b01 @spastorino Use a BodyProxy instead of including a Module that responds to close.
spastorino authored
177 * Use a BodyProxy instead of including a Module that responds to
178 close. Closes #4441 if Active Record is disabled assets are delivered
179 correctly *Santiago Pastorino*
180
6f48fb3 @spastorino Add CHANGELOG entry
spastorino authored
181 * Rails initialization with initialize_on_precompile = false should set assets_dir *Santiago Pastorino*
182
0d7d3a6 @spastorino Add font_path helper method
spastorino authored
183 * Add font_path helper method *Santiago Pastorino*
184
a0fd9fb @spastorino Add CHANGELOG entry
spastorino authored
185 * Depends on rack ~> 1.4.0 *Santiago Pastorino*
186
fc42998 @josevalim Update CHANGELOGs.
josevalim authored
187 * Add :gzip option to `caches_page`. The default option can be configured globally using `page_cache_compression` *Andrey Sitnik*
188
6481bc5 @josevalim Update CHANGELOGs and guides.
josevalim authored
189 * The ShowExceptions middleware now accepts a exceptions application that is responsible to render an exception when the application fails. The application is invoked with a copy of the exception in `env["action_dispatch.exception"]` and with the PATH_INFO rewritten to the status code. *José Valim*
190
3f65e7f @wfarr Add button_tag support to ActionView::Helpers::FormBuilder.
wfarr authored
191 * Add `button_tag` support to ActionView::Helpers::FormBuilder.
192
193 This support mimics the default behavior of `submit_tag`.
194
195 Example:
196
197 <%= form_for @post do |f| %>
198 <%= f.button %>
199 <% end %>
200
ed0f0ad @carlosantoniodasilva Update changelog
carlosantoniodasilva authored
201 * Date helpers accept a new option, `:use_two_digit_numbers = true`, that renders select boxes for months and days with a leading zero without changing the respective values.
dc43e40 @DevL Added :use_two_digit_numbers option [Lennart Fridén & Kim Persson]
DevL authored
202 For example, this is useful for displaying ISO8601-style dates such as '2011-08-01'. *Lennart Fridén and Kim Persson*
203
22a6079 @dhh Make ActiveSupport::Benchmarkable a default module for ActionControll…
dhh authored
204 * Make ActiveSupport::Benchmarkable a default module for ActionController::Base, so the #benchmark method is once again available in the controller context like it used to be *DHH*
205
5ad5215 @josevalim Deprecate implicit layout lookup in favor of inheriting the _layout c…
josevalim authored
206 * Deprecated implied layout lookup in controllers whose parent had a explicit layout set:
207
208 class ApplicationController
209 layout "application"
210 end
211
212 class PostsController < ApplicationController
213 end
214
215 In the example above, Posts controller will no longer automatically look up for a posts layout.
216
217 If you need this functionality you could either remove `layout "application"` from ApplicationController or explicitly set it to nil in PostsController. *José Valim*
218
18ceed2 @sikachu Allow layout fallback when using `layout` method
sikachu authored
219 * Rails will now use your default layout (such as "layouts/application") when you specify a layout with `:only` and `:except` condition, and those conditions fail. *Prem Sichanugrist*
220
221 For example, consider this snippet:
222
223 class CarsController
224 layout 'single_car', :only => :show
225 end
226
227 Rails will use 'layouts/single_car' when a request comes in `:show` action, and use 'layouts/application' (or 'layouts/cars', if exists) when a request comes in for any other actions.
228
e29773f @nashby form_for with +:as+ option uses "action_as" as css class and id
nashby authored
229 * form_for with +:as+ option uses "#{action}_#{as}" as css class and id:
230
231 Before:
232
233 form_for(@user, :as => 'client') # => "<form class="client_new">..."
234
235 Now:
236
237 form_for(@user, :as => 'client') # => "<form class="new_client">..."
238
239 *Vasiliy Ermolovich*
240
07f90f6 @josevalim Merge branch 'exceptions' with the following features:
josevalim authored
241 * Allow rescue responses to be configured through a railtie as in `config.action_dispatch.rescue_responses`. Please look at ActiveRecord::Railtie for an example *José Valim*
242
218c272 @dhh Allow fresh_when/stale? to take a record instead of an options hash […
dhh authored
243 * Allow fresh_when/stale? to take a record instead of an options hash *DHH*
244
1e51cd9 @josevalim Update CHANGELOG.
josevalim authored
245 * Assets should use the request protocol by default or default to relative if no request is available *Jonathan del Strother*
246
247 * Log "Filter chain halted as CALLBACKNAME rendered or redirected" every time a before callback halts *José Valim*
38ab982 @josevalim Log 'Filter chain halted as CALLBACKNAME rendered or redirected' ever…
josevalim authored
248
2559256 @nashby update CHANGELOG
nashby authored
249 * You can provide a namespace for your form to ensure uniqueness of id attributes on form elements.
250 The namespace attribute will be prefixed with underscore on the generate HTML id. *Vasiliy Ermolovich*
251
252 Example:
253
254 <%= form_for(@offer, :namespace => 'namespace') do |f| %>
255 <%= f.label :version, 'Version' %>:
256 <%= f.text_field :version %>
257 <% end %>
258
654df86 @josevalim Show detailed exceptions no longer returns true if the request is loc…
josevalim authored
259 * Refactor ActionDispatch::ShowExceptions. The controller is responsible for choosing to show exceptions when `consider_all_requests_local` is false.
3a1d519 @lest deprecation warning, changelog entry
lest authored
260
654df86 @josevalim Show detailed exceptions no longer returns true if the request is loc…
josevalim authored
261 It's possible to override `show_detailed_exceptions?` in controllers to specify which requests should provide debugging information on errors. The default value is now false, meaning local requests in production will no longer show the detailed exceptions page unless `show_detailed_exceptions?` is overridden and set to `request.local?`.
3a1d519 @lest deprecation warning, changelog entry
lest authored
262
281272a @jonleighton Convert CHANGELOGs to Markdown format.
jonleighton authored
263 * Responders now return 204 No Content for API requests without a response body (as in the new scaffold) *José Valim*
264
265 * Added ActionDispatch::RequestId middleware that'll make a unique X-Request-Id header available to the response and enables the ActionDispatch::Request#uuid method. This makes it easy to trace requests from end-to-end in the stack and to identify individual requests in mixed logs like Syslog *DHH*
266
267 * Limit the number of options for select_year to 1000.
268
269 Pass the :max_years_allowed option to set your own limit.
270
271 *Libo Cannici*
272
273 * Passing formats or handlers to render :template and friends is deprecated. For example: *Nick Sutterer & José Valim*
274
275 render :template => "foo.html.erb"
276
277 Instead, you can provide :handlers and :formats directly as option:
278 render :template => "foo", :formats => [:html, :js], :handlers => :erb
279
280 * Changed log level of warning for missing CSRF token from :debug to :warn. *Mike Dillon*
281
282 * content_tag_for and div_for can now take the collection of records. It will also yield the record as the first argument if you set a receiving argument in your block *Prem Sichanugrist*
283
284 So instead of having to do this:
285
286 @items.each do |item|
287 content_tag_for(:li, item) do
288 Title: <%= item.title %>
289 end
290 end
291
292 You can now do this:
293
294 content_tag_for(:li, @items) do |item|
295 Title: <%= item.title %>
296 end
297
298 * send_file now guess the mime type *Esad Hajdarevic*
299
300 * Mime type entries for PDF, ZIP and other formats were added *Esad Hajdarevic*
301
302 * Generate hidden input before select with :multiple option set to true.
303 This is useful when you rely on the fact that when no options is set,
304 the state of select will be sent to rails application. Without hidden field
305 nothing is sent according to HTML spec *Bogdan Gusiev*
306
307 * Refactor ActionController::TestCase cookies *Andrew White*
308
309 Assigning cookies for test cases should now use cookies[], e.g:
310
311 cookies[:email] = 'user@example.com'
312 get :index
313 assert_equal 'user@example.com', cookies[:email]
314
315 To clear the cookies, use clear, e.g:
316
317 cookies.clear
318 get :index
319 assert_nil cookies[:email]
320
321 We now no longer write out HTTP_COOKIE and the cookie jar is
322 persistent between requests so if you need to manipulate the environment
323 for your test you need to do it before the cookie jar is created.
324
677f968 Add information to the changelog about the changes to ActionControlle…
Jean-Francois Turcot authored
325 * ActionController::ParamsWrapper on ActiveRecord models now only wrap
326 attr_accessible attributes if they were set, if not, only the attributes
327 returned by the class method attribute_names will be wrapped. This fixes
328 the wrapping of nested attributes by adding them to attr_accessible.
329
9be2353 @spastorino Sync AP CHANGELOG with 3-1-stable
spastorino authored
330 ## Rails 3.1.4 (unreleased) ##
331
332 * Allow to use asset_path on named_routes aliasing RailsHelper's
333 asset_path to path_to_asset *Adrian Pike*
334
335 * Assets should use the request protocol by default or default to
336 relative if no request is available *Jonathan del Strother*
337
603a679 @jonleighton Don't html-escape the :count option to translate if it's a Numeric. F…
jonleighton authored
338 ## Rails 3.1.3 (unreleased) ##
339
340 * Fix using `tranlate` helper with a html translation which uses the `:count` option for
341 pluralization.
342
343 *Jon Leighton*
344
fc98811 @jonleighton Implement a workaround for a bug in ruby-1.9.3p0.
jonleighton authored
345 ## Rails 3.1.2 (unreleased) ##
346
e8d57f3 @lest _html translation should escape interpolated arguments
lest authored
347 * Fix XSS security vulnerability in the `translate` helper method. When using interpolation
348 in combination with HTML-safe translations, the interpolated input would not get HTML
349 escaped. *GH 3664*
350
351 Before:
352
353 translate('foo_html', :something => '<script>') # => "...<script>..."
354
355 After:
356
357 translate('foo_html', :something => '<script>') # => "...&lt;script&gt;..."
358
359 *Sergey Nartimov*
360
ca3b468 @jonleighton Sync changelog entry
jonleighton authored
361 * Upgrade sprockets dependency to ~> 2.1.0
362
da02f79 @jonleighton Sync CHANGELOGs from 3-1-stable
jonleighton authored
363 * Ensure that the format isn't applied twice to the cache key, else it becomes impossible
364 to target with expire_action.
365
366 *Christopher Meiklejohn*
367
368 * Swallow error when can't unmarshall object from session.
369
370 *Bruno Zanchet*
371
fc98811 @jonleighton Implement a workaround for a bug in ruby-1.9.3p0.
jonleighton authored
372 * Implement a workaround for a bug in ruby-1.9.3p0 where an error would be raised
373 while attempting to convert a template from one encoding to another.
374
375 Please see http://redmine.ruby-lang.org/issues/5564 for details of the bug.
376
377 The workaround is to load all conversions into memory ahead of time, and will
378 only happen if the ruby version is *exactly* 1.9.3p0. The hope is obviously that
379 the underlying problem will be resolved in the next patchlevel release of
380 1.9.3.
381
382 *Jon Leighton*
281272a @jonleighton Convert CHANGELOGs to Markdown format.
jonleighton authored
383
da02f79 @jonleighton Sync CHANGELOGs from 3-1-stable
jonleighton authored
384 * Ensure users upgrading from 3.0.x to 3.1.x will properly upgrade their flash object in session (issues #3298 and #2509)
385
281272a @jonleighton Convert CHANGELOGs to Markdown format.
jonleighton authored
386 ## Rails 3.1.1 (unreleased) ##
387
388 * javascript_path and stylesheet_path now refer to /assets if asset pipelining
389 is on. [Santiago Pastorino]
390 * button_to support form option. Now you're able to pass for example
391 'data-type' => 'json'. [ihower]
392 * image_path and image_tag should use /assets if asset pipelining is turned
393 on. Closes #3126 [Santiago Pastorino and christos]
394 * Avoid use of existing precompiled assets during rake assets:precompile run.
395 Closes #3119 [Guillermo Iguaran]
396 * Copy assets to nondigested filenames too *Santiago Pastorino*
397
398 * Give precedence to `config.digest = false` over the existence of
399 manifest.yml asset digests [christos]
400 * escape options for the stylesheet_link_tag method *Alexey Vakhov*
401
402 * Re-launch assets:precompile task using (Rake.)ruby instead of Kernel.exec so
403 it works on Windows [cablegram]
404 * env var passed to process shouldn't be modified in process method. [Santiago
405 Pastorino]
406 * `rake assets:precompile` loads the application but does not initialize
407 it.
408 To the app developer, this means configuration add in
409 config/initializers/* will not be executed.
410 Plugins developers need to special case their initializers that are
411 meant to be run in the assets group by adding :group => :assets. *José Valim*
412
413 * Sprockets uses config.assets.prefix for asset_path *asee*
414
415 * FileStore key_file_path properly limit filenames to 255 characters. *phuibonhoa*
416
417 * Fix Hash#to_query edge case with html_safe strings. *brainopia*
418
419 * Allow asset tag helper methods to accept :digest => false option in order to completely avoid the digest generation.
420 Useful for linking assets from static html files or from emails when the user could probably look at an older html email with an older asset. [Santiago Pastorino]
421 * Don't mount Sprockets server at config.assets.prefix if config.assets.compile is false. *Mark J. Titorenko*
422
423 * Set relative url root in assets when controller isn't available for Sprockets (eg. Sass files using asset_path). Fixes #2435 *Guillermo Iguaran*
424
425 * Fix basic auth credential generation to not make newlines. GH #2882
426
427 * Fixed the behavior of asset pipeline when config.assets.digest and config.assets.compile are false and requested asset isn't precompiled.
428 Before the requested asset were compiled anyway ignoring that the config.assets.compile flag is false. *Guillermo Iguaran*
429
430 * CookieJar is now Enumerable. Fixes #2795
431
432 * Fixed AssetNotPrecompiled error raised when rake assets:precompile is compiling certain .erb files. See GH #2763 #2765 #2805 *Guillermo Iguaran*
433
434 * Manifest is correctly placed in assets path when default assets prefix is changed. Fixes #2776 *Guillermo Iguaran*
435
436 * Fixed stylesheet_link_tag and javascript_include_tag to respect additional options passed by the users when debug is on. *Guillermo Iguaran*
437
438
439 ## Rails 3.1.0 (August 30, 2011) ##
440
441 * Param values are `paramified` in controller tests. *David Chelimsky*
442
443 * x_sendfile_header now defaults to nil and config/environments/production.rb doesn't set a particular value for it. This allows servers to set it through X-Sendfile-Type. *Santiago Pastorino*
444
445 * The submit form helper does not generate an id "object_name_id" anymore. *fbrusatti*
446
447 * Make sure respond_with with :js tries to render a template in all cases *José Valim*
448
449 * json_escape will now return a SafeBuffer string if it receives SafeBuffer string *tenderlove*
450
451 * Make sure escape_js returns SafeBuffer string if it receives SafeBuffer string *Prem Sichanugrist*
452
453 * Fix escape_js to work correctly with the new SafeBuffer restriction *Paul Gallagher*
454
455 * Brought back alternative convention for namespaced models in i18n *thoefer*
456
457 Now the key can be either "namespace.model" or "namespace/model" until further deprecation.
458
459 * It is prohibited to perform a in-place SafeBuffer mutation *tenderlove*
460
461 The old behavior of SafeBuffer allowed you to mutate string in place via
462 method like `sub!`. These methods can add unsafe strings to a safe buffer,
463 and the safe buffer will continue to be marked as safe.
464
465 An example problem would be something like this:
466
467 <%= link_to('hello world', @user).sub!(/hello/, params[:xss]) %>
468
469 In the above example, an untrusted string (`params[:xss]`) is added to the
470 safe buffer returned by `link_to`, and the untrusted content is successfully
471 sent to the client without being escaped. To prevent this from happening
472 `sub!` and other similar methods will now raise an exception when they are called on a safe buffer.
473
474 In addition to the in-place versions, some of the versions of these methods which return a copy of the string will incorrectly mark strings as safe. For example:
475
476 <%= link_to('hello world', @user).sub(/hello/, params[:xss]) %>
477
478 The new versions will now ensure that *all* strings returned by these methods on safe buffers are marked unsafe.
479
480 You can read more about this change in http://groups.google.com/group/rubyonrails-security/browse_thread/thread/2e516e7acc96c4fb
481
482 * Warn if we cannot verify CSRF token authenticity *José Valim*
483
484 * Allow AM/PM format in datetime selectors *Aditya Sanghi*
485
486 * Only show dump of regular env methods on exception screen (not all the rack crap) *DHH*
487
488 * auto_link has been removed with no replacement. If you still use auto_link
489 please install the rails_autolink gem:
490 http://github.com/tenderlove/rails_autolink
491
492 *tenderlove*
493
494 * Added streaming support, you can enable it with: *José Valim*
495
496 class PostsController < ActionController::Base
497 stream :only => :index
498 end
499
500 Please read the docs at `ActionController::Streaming` for more information.
501
502 * Added `ActionDispatch::Request.ignore_accept_header` to ignore accept headers and only consider the format given as parameter *José Valim*
503
504 * Created `ActionView::Renderer` and specified an API for `ActionView::Context`, check those objects for more information *José Valim*
505
506 * Added `ActionController::ParamsWrapper` to wrap parameters into a nested hash, and will be turned on for JSON request in new applications by default *Prem Sichanugrist*
507
508 This can be customized by setting `ActionController::Base.wrap_parameters` in `config/initializer/wrap_parameters.rb`
509
510 * RJS has been extracted out to a gem. *fxn*
511
512 * Implicit actions named not_implemented can be rendered. *Santiago Pastorino*
513
514 * Wildcard route will always match the optional format segment by default. *Prem Sichanugrist*
515
516 For example if you have this route:
517
518 match '*pages' => 'pages#show'
519
520 by requesting '/foo/bar.json', your `params[:pages]` will be equals to "foo/bar" with the request format of JSON. If you want the old 3.0.x behavior back, you could supply `:format => false` like this:
521
522 match '*pages' => 'pages#show', :format => false
523
524 * Added Base.http_basic_authenticate_with to do simple http basic authentication with a single class method call *DHH*
525
526 class PostsController < ApplicationController
527 USER_NAME, PASSWORD = "dhh", "secret"
528
529 before_filter :authenticate, :except => [ :index ]
530
531 def index
532 render :text => "Everyone can see me!"
533 end
534
535 def edit
536 render :text => "I'm only accessible if you know the password"
537 end
538
539 private
540 def authenticate
541 authenticate_or_request_with_http_basic do |user_name, password|
542 user_name == USER_NAME && password == PASSWORD
543 end
544 end
545 end
546
547 ..can now be written as
548
549 class PostsController < ApplicationController
550 http_basic_authenticate_with :name => "dhh", :password => "secret", :except => :index
551
552 def index
553 render :text => "Everyone can see me!"
554 end
555
556 def edit
557 render :text => "I'm only accessible if you know the password"
558 end
559 end
560
561 * Allow you to add `force_ssl` into controller to force browser to transfer data via HTTPS protocol on that particular controller. You can also specify `:only` or `:except` to specific it to particular action. *DHH and Prem Sichanugrist*
562
563 * Allow FormHelper#form_for to specify the :method as a direct option instead of through the :html hash *DHH*
564
565 form_for(@post, remote: true, method: :delete) instead of form_for(@post, remote: true, html: { method: :delete })
566
567 * Make JavaScriptHelper#j() an alias for JavaScriptHelper#escape_javascript() -- note this then supersedes the Object#j() method that the JSON gem adds within templates using the JavaScriptHelper *DHH*
568
569 * Sensitive query string parameters (specified in config.filter_parameters) will now be filtered out from the request paths in the log file. *Prem Sichanugrist, fxn*
570
571 * URL parameters which return false for to_param now appear in the query string (previously they were removed) *Andrew White*
572
573 * URL parameters which return nil for to_param are now removed from the query string *Andrew White*
574
575 * ActionDispatch::MiddlewareStack now uses composition over inheritance. It is
576 no longer an array which means there may be methods missing that were not tested.
577 * Add an :authenticity_token option to form_tag for custom handling or to omit the token (pass :authenticity_token => false). *Jakub Kuźma, Igor Wiedler*
578
579 * HTML5 button_tag helper. *Rizwan Reza*
580
581 * Template lookup now searches further up in the inheritance chain. *Artemave*
582
583 * Brought back config.action_view.cache_template_loading, which allows to decide whether templates should be cached or not. *Piotr Sarnacki*
584
585 * url_for and named url helpers now accept :subdomain and :domain as options, *Josh Kalderimis*
586
587 * The redirect route method now also accepts a hash of options which will only change the parts of the url in question, or an object which responds to call, allowing for redirects to be reused (check the documentation for examples). *Josh Kalderimis*
588
589 * Added config.action_controller.include_all_helpers. By default 'helper :all' is done in ActionController::Base, which includes all the helpers by default. Setting include_all_helpers to false will result in including only application_helper and helper corresponding to controller (like foo_helper for foo_controller). *Piotr Sarnacki*
590
591 * Added a convenience idiom to generate HTML5 data-* attributes in tag helpers from a :data hash of options:
592
593 tag("div", :data => {:name => 'Stephen', :city_state => %w(Chicago IL)})
594 # => <div data-name="Stephen" data-city-state="[&quot;Chicago&quot;,&quot;IL&quot;]" />
595
596 Keys are dasherized. Values are JSON-encoded, except for strings and symbols. *Stephen Celis*
597
598 * Deprecate old template handler API. The new API simply requires a template handler to respond to call. *José Valim*
599
600 * :rhtml and :rxml were finally removed as template handlers. *José Valim*
601
602 * Moved etag responsibility from ActionDispatch::Response to the middleware stack. *José Valim*
603
604 * Rely on Rack::Session stores API for more compatibility across the Ruby world. This is backwards incompatible since Rack::Session expects #get_session to accept 4 arguments and requires #destroy_session instead of simply #destroy. *José Valim*
605
606 * file_field automatically adds :multipart => true to the enclosing form. *Santiago Pastorino*
607
608 * Renames csrf_meta_tag -> csrf_meta_tags, and aliases csrf_meta_tag for backwards compatibility. *fxn*
609
610 * Add Rack::Cache to the default stack. Create a Rails store that delegates to the Rails cache, so by default, whatever caching layer you are using will be used for HTTP caching. Note that Rack::Cache will be used if you use #expires_in, #fresh_when or #stale with :public => true. Otherwise, the caching rules will apply to the browser only. *Yehuda Katz, Carl Lerche*
611
612
613 ## Rails 3.0.7 (April 18, 2011) ##
614
615 * No changes.
616
617
618 * Rails 3.0.6 (April 5, 2011)
619
620 * Fixed XSS vulnerability in `auto_link`. `auto_link` no longer marks input as
621 html safe. Please make sure that calls to auto_link() are wrapped in a
622 sanitize(), or a raw() depending on the type of input passed to auto_link().
623 For example:
624
625 <%= sanitize(auto_link(some_user_input)) %>
626
627 Thanks to Torben Schulz for reporting this. The fix can be found here:
628 61ee3449674c591747db95f9b3472c5c3bd9e84d
629
630 * Fixes the output of `rake routes` to be correctly match to the behavior of the application, as the regular expression used to match the path is greedy and won't capture the format part by default *Prem Sichanugrist*
631
632 * Fixes an issue with number_to_human when converting values which are less than 1 but greater than -1 *Josh Kalderimis*
633
634 * Sensitive query string parameters (specified in config.filter_parameters) will now be filtered out from the request paths in the log file. *Prem Sichanugrist, fxn*
635
636 * URL parameters which return nil for to_param are now removed from the query string *Andrew White*
637
638 * Don't allow i18n to change the minor version, version now set to ~> 0.5.0 *Santiago Pastorino*
639
640 * Make TranslationHelper#translate use the :rescue_format option in I18n 0.5.0 *Sven Fuchs*
641
642 * Fix regression: javascript_include_tag shouldn't raise if you register an expansion key with nil or [] value *Santiago Pastorino*
643
644 * Fix Action caching bug where an action that has a non-cacheable response always renders a nil response body. It now correctly renders the response body. *Cheah Chu Yeow*
645
646
647 ## Rails 3.0.5 (February 26, 2011) ##
648
649 * No changes.
650
651
652 ## Rails 3.0.4 (February 8, 2011) ##
653
654 * No changes.
655
656
657 ## Rails 3.0.3 (November 16, 2010) ##
658
659 * When ActiveRecord::Base objects are sent to predicate methods, the id of the object should be sent to ARel, not the ActiveRecord::Base object.
660
661 * :constraints routing should only do sanity checks against regular expressions. String arguments are OK.
662
663
664 ## Rails 3.0.2 (November 15, 2010) ##
665
666 * The helper number_to_currency accepts a new :negative_format option to be able to configure how to render negative amounts. *Don Wilson*
667
668
669 ## Rails 3.0.1 (October 15, 2010) ##
670
671 * No Changes, just a version bump.
672
673
674 ## Rails 3.0.0 (August 29, 2010) ##
675
676 * password_field renders with nil value by default making the use of passwords secure by default, if you want to render you should do for instance f.password_field(:password, :value => @user.password) *Santiago Pastorino*
677
678 * Symbols and strings in routes should yield the same behavior. Note this may break existing apps that were using symbols with the new routes API. *José Valim*
679
680 * Add clear_helpers as a way to clean up all helpers added to this controller, maintaining just the helper with the same name as the controller. *José Valim*
681
682 * Support routing constraints in functional tests. *Andrew White*
683
684 * Add a header that tells Internet Explorer (all versions) to use the best available standards support. *Yehuda Katz*
685
686 * Allow stylesheet/javascript extensions to be changed through railties. *Josh Kalderimis*
687
688 * link_to, button_to, and tag/tag_options now rely on html_escape instead of escape_once. *fxn*
689
690 * url_for returns always unescaped strings, and the :escape option is gone. *fxn*
691
692 * Added accept-charset parameter and _snowman hidden field to force the contents
693 of Rails POSTed forms to be in UTF-8 *Yehuda Katz*
694
695 * Upgrade to Rack 1.2.1 *Jeremy Kemper*
696
697 * Allow :path to be given to match/get/post/put/delete instead of :path_names in the new router *Carlos Antônio da Silva*
698
699 * Added resources_path_names to the new router DSL *José Valim*
700
701 * Allow options to be given to the namespace method in the new router *Carlos Antônio da Silva*
702
703 * Deprecate :name_prefix in the new router DSL *José Valim*
704
705 * Add shallow routes back to the new router *Diego Carrion, Andrew White*
706
707 resources :posts do
708 shallow do
709 resources :comments
710 end
711 end
712
713 You can now use comment_path for /comments/1 instead of post_comment_path for /posts/1/comments/1.
714
715 * Add support for multi-subdomain session by setting cookie host in session cookie so you can share session between www.example.com, example.com and user.example.com. #4818 *Guillermo Álvarez*
716
717 * Removed textilize, textilize_without_paragraph and markdown helpers. *Santiago Pastorino*
718
719 * Remove middleware laziness *José Valim*
720
721 * Make session stores rely on request.cookie_jar and change set_session semantics to return the cookie value instead of a boolean. *José Valim*
722
723 * OAuth 2: HTTP Token Authorization support to complement Basic and Digest Authorization. *Rick Olson*
724
725 * Fixed inconsistencies in form builder and view helpers #4432 *Neeraj Singh*
726
727 * Both :xml and :json renderers now forwards the given options to the model, allowing you to invoke them as render :xml => @projects, :include => :tasks *José Valim, Yehuda Katz*
728
729 * Renamed the field error CSS class from fieldWithErrors to field_with_errors for consistency. *Jeremy Kemper*
730
731 * Add support for shorthand routes like /projects/status(.:format) #4423 *Diego Carrion*
732
733 * Changed translate helper so that it doesn’t mark every translation as safe HTML. Only keys with a "_html" suffix and keys named "html" are considered to be safe HTML. All other translations are left untouched. *Craig Davey*
734
735 * New option :as added to form_for allows to change the object name. The old <% form_for :client, @post %> becomes <% form_for @post, :as => :client %> *spastorino*
736
737 * Removed verify method in controllers. *JV*
738 It's now available as a plugin at http://github.com/rails/verification
739
740 * Removed input, form, error_messages_for and error_message_on from views. *JV*
741 It's now available as a plugin at http://github.com/rails/dynamic_form
742
743 * Routes can be scoped by controller module. *Jeremy Kemper*
744
745 # /session => Auth::SessionsController
746 scope :module => 'auth' do
747 resource :session
748 end
749
750 * Added #favicon_link_tag, it uses #image_path so in particular the favicon gets an asset ID *fxn*
751
752 * Fixed that default locale templates should be used if the current locale template is missing *DHH*
753
754 * Added all the new HTML5 form types as individual form tag methods (search, url, number, etc) #3646 *Stephen Celis*
755
756 * Changed the object used in routing constraints to be an instance of
757 ActionDispatch::Request rather than Rack::Request *YK*
758
759 * Changed ActionDispatch::Request#method to return a String, to be compatible
760 with Rack::Request. Added ActionDispatch::Request#method_symbol to
761 return a symbol form of the request method. *YK*
762
763 * Changed ActionDispatch::Request#method to return the original
764 method and #request_method to return the overridden method in the
765 case of methodoverride being used (this means that #method returns
766 "HEAD" and #request_method returns "GET" in HEAD requests). This
767 is for compatibility with Rack::Request *YK*
768
769 * #concat is now deprecated in favor of using <%= %> helpers *YK*
770
771 * Block helpers now return Strings, so you can use <%= form_for @foo do |f| %>.
772 <% form_for do |f| %> still works with deprecation notices *YK*
773
774 * Add a new #mount method on the router that does not anchor the PATH_INFO
775 at the end *YK & CL*
776
777 * Create a new LookupContext object that is responsible for performantly
778 finding a template for a given pattern *JV*
779
780 * Removed relative_url_for in favor of respecting SCRIPT_NAME *YK & CL*
781
782 * Changed file streaming to use Rack::Sendfile middleware *YK*
783
784 * ActionDispatch::Request#content_type returns a String to be compatible with
785 Rack::Request. Use #content_mime_type for the Mime::Type instance *YK*
786
787 * Updated Prototype to 1.6.1 and Scriptaculous to 1.8.3 *ML*
788
789 * Change the preferred way that URL helpers are included into a class*YK & CL*
790
791 # for all helpers including named routes
792 include Rails.application.router.url_helpers
793
794 # for just url_for
795 include Rails.application.router.url_for
796
797 * Fixed that PrototypeHelper#update_page should return html_safe *DHH*
798
799 * Fixed that much of DateHelper wouldn't return html_safe? strings *DHH*
800
801 * Fixed that fragment caching should return a cache hit as html_safe (or it would all just get escaped) *DHH*
802
803 * Added that ActionController::Base now does helper :all instead of relying on the default ApplicationController in Rails to do it *DHH*
804
805 * Added ActionDispatch::Request#authorization to access the http authentication header regardless of its proxy hiding *DHH*
806
807 * Added :alert, :notice, and :flash as options to ActionController::Base#redirect_to that'll automatically set the proper flash before the redirection [DHH]. Examples:
808
809 flash[:notice] = 'Post was created'
810 redirect_to(@post)
811
812 ...becomes:
813
814 redirect_to(@post, :notice => 'Post was created')
815
816 * Added ActionController::Base#notice/= and ActionController::Base#alert/= as a convenience accessors in both the controller and the view for flash[:notice]/= and flash[:alert]/= *DHH*
817
818
819 * Introduce grouped_collection_select helper. #1249 *Dan Codeape, Erik Ostrom*
820
821 * Make sure javascript_include_tag/stylesheet_link_tag does not append ".js" or ".css" onto external urls. #1664 *Matthew Rudy Jacobs*
822
823 * Ruby 1.9: fix Content-Length for multibyte send_data streaming. #2661 *Sava Chankov*
824
825 * Ruby 1.9: ERB template encoding using a magic comment at the top of the file. *Jeremy Kemper*
826 <%# encoding: utf-8 %>
827
828 * Change integration test helpers to accept Rack environment instead of just HTTP Headers *Pratik Naik*
829
830 Before : get '/path', {}, 'Accept' => 'text/javascript'
831 After : get '/path', {}, 'HTTP_ACCEPT' => 'text/javascript'
832
833 * Instead of checking Rails.env.test? in Failsafe middleware, check env["rails.raise_exceptions"] *Bryan Helmkamp*
834
835 * Fixed that TestResponse.cookies was returning cookies unescaped #1867 *Doug McInnes*
836
837
838 ## 2.3.2 Final (March 15, 2009) ##
839
840 * Fixed that redirection would just log the options, not the final url (which lead to "Redirected to #<Post:0x23150b8>") *DHH*
841
842 * Don't check authenticity tokens for any AJAX requests *Ross Kaffenberger/Bryan Helmkamp*
843
844 * Added ability to pass in :public => true to fresh_when, stale?, and expires_in to make the request proxy cachable #2095 *Gregg Pollack*
845
846 * Fixed that passing a custom form builder would be forwarded to nested fields_for calls #2023 *Eloy Duran/Nate Wiger*
847
848 * Form option helpers now support disabled option tags and the use of lambdas for selecting/disabling option tags from collections #837 *Tekin*
849
850 * Added partial scoping to TranslationHelper#translate, so if you call translate(".foo") from the people/index.html.erb template, you'll actually be calling I18n.translate("people.index.foo") *DHH*
851
852 * Fix a syntax error in current_page?() that was prevent matches against URL's with multiple query parameters #1385, #1868 *chris finne/Andrew White*
853
854 * Added localized rescue template when I18n.locale is set (ex: public/404.da.html) #1835 *José Valim*
855
856 * Make the form_for and fields_for helpers support the new Active Record nested update options. #1202 *Eloy Duran*
857
858 <% form_for @person do |person_form| %>
859 ...
860 <% person_form.fields_for :projects do |project_fields| %>
861 <% if project_fields.object.active? %>
862 Name: <%= project_fields.text_field :name %>
863 <% end %>
864 <% end %>
865 <% end %>
866
867
868 * Added grouped_options_for_select helper method for wrapping option tags in optgroups. #977 *Jon Crawford*
869
870 * Implement HTTP Digest authentication. #1230 [Gregg Kellogg, Pratik Naik] Example :
871
872 class DummyDigestController < ActionController::Base
873 USERS = { "lifo" => 'world' }
874
875 before_filter :authenticate
876
877 def index
878 render :text => "Hello Secret"
879 end
880
881 private
882
883 def authenticate
884 authenticate_or_request_with_http_digest("Super Secret") do |username|
885 # Return the user's password
886 USERS[username]
887 end
888 end
889 end
890
891 * Improved i18n support for the number_to_human_size helper. Changes the storage_units translation data; update your translations accordingly. #1634 *Yaroslav Markin*
892 storage_units:
893 # %u is the storage unit, %n is the number (default: 2 MB)
894 format: "%n %u"
895 units:
896 byte:
897 one: "Byte"
898 other: "Bytes"
899 kb: "KB"
900 mb: "MB"
901 gb: "GB"
902 tb: "TB"
903
904 * Added :silence option to BenchmarkHelper#benchmark and turned log_level into a hash parameter and deprecated the old use *DHH*
905
906 * Fixed the AssetTagHelper cache to use the computed asset host as part of the cache key instead of just assuming the its a string #1299 *DHH*
907
908 * Make ActionController#render(string) work as a shortcut for render :file/:template/:action => string. [#1435] [Pratik Naik] Examples:
909
910 \# Instead of render(:action => 'other_action')
911 render('other_action') # argument has no '/'
912 render(:other_action)
913
914 \# Instead of render(:template => 'controller/action')
915 render('controller/action') # argument must not begin with a '/', but contain a '/'
916
917 \# Instead of render(:file => '/Users/lifo/home.html.erb')
918 render('/Users/lifo/home.html.erb') # argument must begin with a '/'
919
920 * Add :prompt option to date/time select helpers. #561 *Sam Oliver*
921
922 * Fixed that send_file shouldn't set an etag #1578 *Hongli Lai*
923
924 * Allow users to opt out of the spoofing checks in Request#remote_ip. Useful for sites whose traffic regularly triggers false positives. *Darren Boyd*
925
926 * Deprecated formatted_polymorphic_url. *Jeremy Kemper*
927
928 * Added the option to declare an asset_host as an object that responds to call (see http://github.com/dhh/asset-hosting-with-minimum-ssl for an example) *David Heinemeier Hansson*
929
930 * Added support for multiple routes.rb files (useful for plugin engines). This also means that draw will no longer clear the route set, you have to do that by hand (shouldn't make a difference to you unless you're doing some funky stuff) *David Heinemeier Hansson*
931
932 * Dropped formatted_* routes in favor of just passing in :format as an option. This cuts resource routes generation in half #1359 *aaronbatalion*
933
934 * Remove support for old double-encoded cookies from the cookie store. These values haven't been generated since before 2.1.0, and any users who have visited the app in the intervening 6 months will have had their cookie upgraded. *Michael Koziarski*
935
936 * Allow helpers directory to be overridden via ActionController::Base.helpers_dir #1424 *Sam Pohlenz*
937
938 * Remove deprecated ActionController::Base#assign_default_content_type_and_charset
939
940 * Changed the default of ActionView#render to assume partials instead of files when not given an options hash [David Heinemeier Hansson]. Examples:
941
942 # Instead of <%= render :partial => "account" %>
943 <%= render "account" %>
944
945 # Instead of <%= render :partial => "account", :locals => { :account => @buyer } %>
946 <%= render "account", :account => @buyer %>
947
948 # @account is an Account instance, so it uses the RecordIdentifier to replace
949 # <%= render :partial => "accounts/account", :locals => { :account => @account } %>
950 <%= render(@account) %>
951
952 # @posts is an array of Post instances, so it uses the RecordIdentifier to replace
953 # <%= render :partial => "posts/post", :collection => @posts %>
954 <%= render(@posts) %>
955
956 * Remove deprecated render_component. Please use the plugin from http://github.com/rails/render_component/tree/master *Pratik Naik*
957
958 * Fixed RedCloth and BlueCloth shouldn't preload. Instead just assume that they're available if you want to use textilize and markdown and let autoload require them *David Heinemeier Hansson*
959
960
961 ## 2.2.2 (November 21st, 2008) ##
962
963 * I18n: translate number_to_human_size. Add storage_units: [Bytes, KB, MB, GB, TB] to your translations. #1448 *Yaroslav Markin*
964
965 * Restore backwards compatible functionality for setting relative_url_root. Include deprecation
966
967 * Switched the CSRF module to use the request content type to decide if the request is forgeable. #1145 *Jeff Cohen*
968
969 * Added :only and :except to map.resources to let people cut down on the number of redundant routes in an application. Typically only useful for huge routesets. #1215 *Tom Stuart*
970
971 map.resources :products, :only => :show do |product|
972 product.resources :images, :except => :destroy
973 end
974
975 * Added render :js for people who want to render inline JavaScript replies without using RJS *David Heinemeier Hansson*
976
977 * Fixed that polymorphic_url should compact given array #1317 *hiroshi*
978
979 * Fixed the sanitize helper to avoid double escaping already properly escaped entities #683 *antonmos/Ryan McGeary*
980
981 * Fixed that FormTagHelper generated illegal html if name contained square brackets #1238 *Vladimir Dobriakov*
982
983 * Fix regression bug that made date_select and datetime_select raise a Null Pointer Exception when a nil date/datetime was passed and only month and year were displayed #1289 *Bernardo Padua/Tor Erik*
984
985 * Simplified the logging format for parameters (don't include controller, action, and format as duplicates) *David Heinemeier Hansson*
986
987 * Remove the logging of the Session ID when the session store is CookieStore *David Heinemeier Hansson*
988
989 * Fixed regex in redirect_to to fully support URI schemes #1247 *Seth Fitzsimmons*
990
991 * Fixed bug with asset timestamping when using relative_url_root #1265 *Joe Goldwasser*
992
993
994 ## 2.2.0 RC1 (October 24th, 2008) ##
995
996 * Fix incorrect closing CDATA delimiter and that HTML::Node.parse would blow up on unclosed CDATA sections *packagethief*
997
998 * Added stale? and fresh_when methods to provide a layer of abstraction above request.fresh? and friends [David Heinemeier Hansson]. Example:
999
1000 class ArticlesController < ApplicationController
1001 def show_with_respond_to_block
1002 @article = Article.find(params[:id])
1003
1004
1005 # If the request sends headers that differs from the options provided to stale?, then
1006 # the request is indeed stale and the respond_to block is triggered (and the options
1007 # to the stale? call is set on the response).
1008 #
1009 # If the request headers match, then the request is fresh and the respond_to block is
1010 # not triggered. Instead the default render will occur, which will check the last-modified
1011 # and etag headers and conclude that it only needs to send a "304 Not Modified" instead
1012 # of rendering the template.
1013 if stale?(:last_modified => @article.published_at.utc, :etag => @article)
1014 respond_to do |wants|
1015 # normal response processing
1016 end
1017 end
1018 end
1019
1020 def show_with_implied_render
1021 @article = Article.find(params[:id])
1022
1023 # Sets the response headers and checks them against the request, if the request is stale
1024 # (i.e. no match of either etag or last-modified), then the default render of the template happens.
1025 # If the request is fresh, then the default render will return a "304 Not Modified"
1026 # instead of rendering the template.
1027 fresh_when(:last_modified => @article.published_at.utc, :etag => @article)
1028 end
1029 end
1030
1031
1032 * Added inline builder yield to atom_feed_helper tags where appropriate [Sam Ruby]. Example:
1033
1034 entry.summary :type => 'xhtml' do |xhtml|
1035 xhtml.p pluralize(order.line_items.count, "line item")
1036 xhtml.p "Shipped to #{order.address}"
1037 xhtml.p "Paid by #{order.pay_type}"
1038 end
1039
1040 * Make PrototypeHelper#submit_to_remote a wrapper around PrototypeHelper#button_to_remote. *Tarmo Tänav*
1041
1042 * Set HttpOnly for the cookie session store's cookie. #1046
1043
1044 * Added FormTagHelper#image_submit_tag confirm option #784 *Alastair Brunton*
1045
1046 * Fixed FormTagHelper#submit_tag with :disable_with option wouldn't submit the button's value when was clicked #633 *Jose Fernandez*
1047
1048 * Stopped logging template compiles as it only clogs up the log *David Heinemeier Hansson*
1049
1050 * Changed the X-Runtime header to report in milliseconds *David Heinemeier Hansson*
1051
1052 * Changed BenchmarkHelper#benchmark to report in milliseconds *David Heinemeier Hansson*
1053
1054 * Changed logging format to be millisecond based and skip misleading stats [David Heinemeier Hansson]. Went from:
1055
1056 Completed in 0.10000 (4 reqs/sec) | Rendering: 0.04000 (40%) | DB: 0.00400 (4%) | 200 OK [http://example.com]
1057
1058 ...to:
1059
1060 Completed in 100ms (View: 40, DB: 4) | 200 OK [http://example.com]
1061
1062 * Add support for shallow nesting of routes. #838 *S. Brent Faulkner*
1063
1064 Example :
1065
1066 map.resources :users, :shallow => true do |user|
1067 user.resources :posts
1068 end
1069
1070 - GET /users/1/posts (maps to PostsController#index action as usual)
1071 named route "user_posts" is added as usual.
1072
1073 - GET /posts/2 (maps to PostsController#show action as if it were not nested)
1074 Additionally, named route "post" is added too.
1075
1076 * Added button_to_remote helper. #3641 *Donald Piret, Tarmo Tänav*
1077
1078 * Deprecate render_component. Please use render_component plugin from http://github.com/rails/render_component/tree/master *Pratik Naik*
1079
1080 * Routes may be restricted to lists of HTTP methods instead of a single method or :any. #407 *Brennan Dunn, Gaius Centus Novus*
1081 map.resource :posts, :collection => { :search => [:get, :post] }
1082 map.session 'session', :requirements => { :method => [:get, :post, :delete] }
1083
1084 * Deprecated implicit local assignments when rendering partials *Josh Peek*
1085
1086 * Introduce current_cycle helper method to return the current value without bumping the cycle. #417 *Ken Collins*
1087
1088 * Allow polymorphic_url helper to take url options. #880 *Tarmo Tänav*
1089
1090 * Switched integration test runner to use Rack processor instead of CGI *Josh Peek*
1091
1092 * Made AbstractRequest.if_modified_sense return nil if the header could not be parsed *Jamis Buck*
1093
1094 * Added back ActionController::Base.allow_concurrency flag *Josh Peek*
1095
1096 * AbstractRequest.relative_url_root is no longer automatically configured by a HTTP header. It can now be set in your configuration environment with config.action_controller.relative_url_root *Josh Peek*
1097
1098 * Update Prototype to 1.6.0.2 #599 *Patrick Joyce*
1099
1100 * Conditional GET utility methods. *Jeremy Kemper*
1101 response.last_modified = @post.updated_at
1102 response.etag = [:admin, @post, current_user]
1103
1104 if request.fresh?(response)
1105 head :not_modified
1106 else
1107 # render ...
1108 end
1109
1110 * All 2xx requests are considered successful *Josh Peek*
1111
1112 * Fixed that AssetTagHelper#compute_public_path shouldn't cache the asset_host along with the source or per-request proc's won't run *David Heinemeier Hansson*
1113
1114 * Removed config.action_view.cache_template_loading, use config.cache_classes instead *Josh Peek*
1115
1116 * Get buffer for fragment cache from template's @output_buffer *Josh Peek*
1117
1118 * Set config.action_view.warn_cache_misses = true to receive a warning if you perform an action that results in an expensive disk operation that could be cached *Josh Peek*
1119
1120 * Refactor template preloading. New abstractions include Renderable mixins and a refactored Template class *Josh Peek*
1121
1122 * Changed ActionView::TemplateHandler#render API method signature to render(template, local_assigns = {}) *Josh Peek*
1123
1124 * Changed PrototypeHelper#submit_to_remote to PrototypeHelper#button_to_remote to stay consistent with link_to_remote (submit_to_remote still works as an alias) #8994 *clemens*
1125
1126 * Add :recursive option to javascript_include_tag and stylesheet_link_tag to be used along with :all. #480 *Damian Janowski*
1127
1128 * Allow users to disable the use of the Accept header *Michael Koziarski*
1129
1130 The accept header is poorly implemented by browsers and causes strange
1131 errors when used on public sites where crawlers make requests too. You can use formatted urls (e.g. /people/1.xml) to support API clients in a much simpler way.
1132 To disable the header you need to set:
1133 config.action_controller.use_accept_header = false
1134 * Do not stat template files in production mode before rendering. You will no longer be able to modify templates in production mode without restarting the server *Josh Peek*
1135
1136 * Deprecated TemplateHandler line offset *Josh Peek*
1137
1138 * Allow caches_action to accept cache store options. #416. [José Valim]. Example:
1139
1140 caches_action :index, :redirected, :if => Proc.new { |c| !c.request.format.json? }, :expires_in => 1.hour
1141
1142 * Remove define_javascript_functions, javascript_include_tag and friends are far superior. *Michael Koziarski*
1143
1144 * Deprecate :use_full_path render option. The supplying the option no longer has an effect *Josh Peek*
1145
1146 * Add :as option to render a collection of partials with a custom local variable name. #509 *Simon Jefford, Pratik Naik*
1147
1148 render :partial => 'other_people', :collection => @people, :as => :person
1149
1150 This will let you access objects of @people as 'person' local variable inside 'other_people' partial template.
1151
1152 * time_zone_select: support for regexp matching of priority zones. Resolves #195 *Ernie Miller*
1153
1154 * Made ActionView::Base#render_file private *Josh Peek*
1155
1156 * Refactor and simplify the implementation of assert_redirected_to. Arguments are now normalised relative to the controller being tested, not the root of the application. *Michael Koziarski*
1157
1158 This could cause some erroneous test failures if you were redirecting between controllers
1159 in different namespaces and wrote your assertions relative to the root of the application.
1160
1161 * Remove follow_redirect from controller functional tests.
1162
1163 If you want to follow redirects you can use integration tests. The functional test version was only useful if you were using redirect_to :id=>...
1164 * Fix polymorphic_url with singleton resources. #461 *Tammer Saleh*
1165
1166 * Replaced TemplateFinder abstraction with ViewLoadPaths *Josh Peek*
1167
1168 * Added block-call style to link_to [Sam Stephenson/David Heinemeier Hansson]. Example:
1169
1170 <% link_to(@profile) do %>
1171 <strong><%= @profile.name %></strong> -- <span>Check it out!!</span>
1172 <% end %>
1173
1174 * Performance: integration test benchmarking and profiling. *Jeremy Kemper*
1175
1176 * Make caching more aware of mime types. Ensure request format is not considered while expiring cache. *Jonathan del Strother*
1177
1178 * Drop ActionController::Base.allow_concurrency flag *Josh Peek*
1179
1180 * More efficient concat and capture helpers. Remove ActionView::Base.erb_variable. *Jeremy Kemper*
1181
1182 * Added page.reload functionality. Resolves #277. *Sean Huber*
1183
1184 * Fixed Request#remote_ip to only raise hell if the HTTP_CLIENT_IP and HTTP_X_FORWARDED_FOR doesn't match (not just if they're both present) *Mark Imbriaco, Bradford Folkens*
1185
1186 * Allow caches_action to accept a layout option *José Valim*
1187
1188 * Added Rack processor *Ezra Zygmuntowicz, Josh Peek*
1189
1190
1191 ## 2.1.0 (May 31st, 2008) ##
1192
1193 * InstanceTag#default_time_from_options overflows to DateTime *Geoff Buesing*
1194
1195 * Fixed that forgery protection can be used without session tracking (Peter Jones) *#139*
1196
1197 * Added session(:on) to turn session management back on in a controller subclass if the superclass turned it off (Peter Jones) *#136*
1198
1199 * Change the request forgery protection to go by Content-Type instead of request.format so that you can't bypass it by POSTing to "#{request.uri}.xml" *Rick Olson*
1200 * InstanceTag#default_time_from_options with hash args uses Time.current as default; respects hash settings when time falls in system local spring DST gap *Geoff Buesing*
1201
1202 * select_date defaults to Time.zone.today when config.time_zone is set *Geoff Buesing*
1203
1204 * Fixed that TextHelper#text_field would corrypt when raw HTML was used as the value (mchenryc, Kevin Glowacz) *#80*
1205
1206 * Added ActionController::TestCase#rescue_action_in_public! to control whether the action under test should use the regular rescue_action path instead of simply raising the exception inline (great for error testing) *David Heinemeier Hansson*
1207
1208 * Reduce number of instance variables being copied from controller to view. *Pratik Naik*
1209
1210 * select_datetime and select_time default to Time.zone.now when config.time_zone is set *Geoff Buesing*
1211
1212 * datetime_select defaults to Time.zone.now when config.time_zone is set *Geoff Buesing*
1213
1214 * Remove ActionController::Base#view_controller_internals flag. *Pratik Naik*
1215
1216 * Add conditional options to caches_page method. *Paul Horsfall*
1217
1218 * Move missing template logic to ActionView. *Pratik Naik*
1219
1220 * Introduce ActionView::InlineTemplate class. *Pratik Naik*
1221
1222 * Automatically parse posted JSON content for Mime::JSON requests. *Rick Olson*
1223
1224 POST /posts
1225 {"post": {"title": "Breaking News"}}
1226
1227 def create
1228 @post = Post.create params[:post]
1229 # ...
1230 end
1231
1232 * add json_escape ERB util to escape html entities in json strings that are output in HTML pages. *Rick Olson*
1233
1234 * Provide a helper proxy to access helper methods from outside views. Closes #10839 *Josh Peek*
1235 e.g. ApplicationController.helpers.simple_format(text)
1236
1237 * Improve documentation. *Xavier Noria, leethal, jerome*
1238
1239 * Ensure RJS redirect_to doesn't html-escapes string argument. Closes #8546 *Josh Peek, eventualbuddha, Pratik Naik*
1240
1241 * Support render :partial => collection of heterogeneous elements. #11491 *Zach Dennis*
1242
1243 * Avoid remote_ip spoofing. *Brian Candler*
1244
1245 * Added support for regexp flags like ignoring case in the :requirements part of routes declarations #11421 *NeilW*
1246
1247 * Fixed that ActionController::Base#read_multipart would fail if boundary was exactly 10240 bytes #10886 *ariejan*
1248
1249 * Fixed HTML::Tokenizer (used in sanitize helper) didn't handle unclosed CDATA tags #10071 *esad, packagethief*
1250
1251 * Improve documentation. *Ryan Bigg, Jan De Poorter, Cheah Chu Yeow, Xavier Shay, Jack Danger Canty, Emilio Tagua, Xavier Noria, Sunny Ripert*
1252
1253 * Fixed that FormHelper#radio_button would produce invalid ids #11298 *harlancrystal*
1254
1255 * Added :confirm option to submit_tag #11415 *Emilio Tagua*
1256
1257 * Fixed NumberHelper#number_with_precision to properly round in a way that works equally on Mac, Windows, Linux (closes #11409, #8275, #10090, #8027) *zhangyuanyi*
1258
1259 * Allow the #simple_format text_helper to take an html_options hash for each paragraph. #2448 *François Beausoleil, Chris O'Sullivan*
1260
1261 * Fix regression from filter refactoring where re-adding a skipped filter resulted in it being called twice. *Rick Olson*
1262
1263 * Refactor filters to use Active Support callbacks. #11235 *Josh Peek*
1264
1265 * Fixed that polymorphic routes would modify the input array #11363 *thomas.lee*
1266
1267 * Added :format option to NumberHelper#number_to_currency to enable better localization support #11149 *lylo*
1268
1269 * Fixed that TextHelper#excerpt would include one character too many #11268 *Irfy*
1270
1271 * Fix more obscure nested parameter hash parsing bug. #10797 *thomas.lee*
1272
1273 * Added ActionView::Helpers::register_javascript/stylesheet_expansion to make it easier for plugin developers to inject multiple assets. #10350 *lotswholetime*
1274
1275 * Fix nested parameter hash parsing bug. #10797 *thomas.lee*
1276
1277 * Allow using named routes in ActionController::TestCase before any request has been made. Closes #11273 *Eloy Duran*
1278
1279 * Fixed that sweepers defined by cache_sweeper will be added regardless of the perform_caching setting. Instead, control whether the sweeper should be run with the perform_caching setting. This makes testing easier when you want to turn perform_caching on/off *David Heinemeier Hansson*
1280
1281 * Make MimeResponds::Responder#any work without explicit types. Closes #11140 *jaw6*
1282
1283 * Better error message for type conflicts when parsing params. Closes #7962 *spicycode, matt*
1284
1285 * Remove unused ActionController::Base.template_class. Closes #10787 *Pratik Naik*
1286
1287 * Moved template handlers related code from ActionView::Base to ActionView::Template. *Pratik Naik*
1288
1289 * Tests for div_for and content_tag_for helpers. Closes #11223 *Chris O'Sullivan*
1290
1291 * Allow file uploads in Integration Tests. Closes #11091 *RubyRedRick*
1292
1293 * Refactor partial rendering into a PartialTemplate class. *Pratik Naik*
1294
1295 * Added that requests with JavaScript as the priority mime type in the accept header and no format extension in the parameters will be treated as though their format was :js when it comes to determining which template to render. This makes it possible for JS requests to automatically render action.js.rjs files without an explicit respond_to block *David Heinemeier Hansson*
1296
1297 * Tests for distance_of_time_in_words with TimeWithZone instances. Closes #10914 *Ernesto Jimenez*
1298
1299 * Remove support for multivalued (e.g., '&'-delimited) cookies. *Jamis Buck*
1300
1301 * Fix problem with render :partial collections, records, and locals. #11057 *lotswholetime*
1302
1303 * Added support for naming concrete classes in sweeper declarations *David Heinemeier Hansson*
1304
1305 * Remove ERB trim variables from trace template in case ActionView::Base.erb_trim_mode is changed in the application. #10098 *Tim Pope, Chris Kampmeier*
1306
1307 * Fix typo in form_helper documentation. #10650 *Xavier Shay, Chris Kampmeier*
1308
1309 * Fix bug with setting Request#format= after the getter has cached the value. #10889 *cch1*
1310
1311 * Correct inconsistencies in RequestForgeryProtection docs. #11032 *Mislav Marohnić*
1312
1313 * Introduce a Template class to ActionView. #11024 *Pratik Naik*
1314
1315 * Introduce the :index option for form_for and fields_for to simplify multi-model forms (see http://railscasts.com/episodes/75). #9883 *rmm5t*
1316
1317 * Introduce map.resources :cards, :as => 'tarjetas' to use a custom resource name in the URL: cards_path == '/tarjetas'. #10578 *blj*
1318
1319 * TestSession supports indifferent access. #7372 *tamc, Arsen7, mhackett, julik, jean.helou*
1320
1321 * Make assert_routing aware of the HTTP method used. #8039 *mpalmer*
1322 e.g. assert_routing({ :method => 'put', :path => '/product/321' }, { :controller => "product", :action => "update", :id => "321" })
1323
1324 * Make map.root accept a single symbol as an argument to declare an alias. #10818 *bscofield*
1325
1326 e.g. map.dashboard '/dashboard', :controller=>'dashboard'
1327 map.root :dashboard
1328
1329 * Handle corner case with image_tag when passed 'messed up' image names. #9018 *Duncan Beevers, mpalmer*
1330
1331 * Add label_tag helper for generating elements. #10802 *DefV*
1332
1333 * Introduce TemplateFinder to handle view paths and lookups. #10800 *Pratik Naik*
1334
1335 * Performance: optimize route recognition. Large speedup for apps with many resource routes. #10835 *oleganza*
1336
1337 * Make render :partial recognise form builders and use the _form partial. #10814 *Damian Janowski*
1338
1339 * Allow users to declare other namespaces when using the atom feed helpers. #10304 *david.calavera*
1340
1341 * Introduce send_file :x_sendfile => true to send an X-Sendfile response header. *Jeremy Kemper*
1342
1343 * Fixed ActionView::Helpers::ActiveRecordHelper::form for when protect_from_forgery is used #10739 *Jeremy Evans*
1344
1345 * Provide nicer access to HTTP Headers. Instead of request.env["HTTP_REFERRER"] you can now use request.headers["Referrer"]. *Michael Koziarski*
1346
1347 * UrlWriter respects relative_url_root. #10748 *Cheah Chu Yeow*
1348
1349 * The asset_host block takes the controller request as an optional second argument. Example: use a single asset host for SSL requests. #10549 *Cheah Chu Yeow, Peter B, Tom Taylor*
1350
1351 * Support render :text => nil. #6684 *tjennings, PotatoSalad, Cheah Chu Yeow*
1352
1353 * assert_response failures include the exception message. #10688 *Seth Rasmussen*
1354
1355 * All fragment cache keys are now by default prefixed with the "views/" namespace *David Heinemeier Hansson*
1356
1357 * Moved the caching stores from ActionController::Caching::Fragments::* to ActiveSupport::Cache::*. If you're explicitly referring to a store, like ActionController::Caching::Fragments::MemoryStore, you need to update that reference with ActiveSupport::Cache::MemoryStore *David Heinemeier Hansson*
1358
1359 * Deprecated ActionController::Base.fragment_cache_store for ActionController::Base.cache_store *David Heinemeier Hansson*
1360
1361 * Made fragment caching in views work for rjs and builder as well #6642 *Dee Zsombor*
1362
1363 * Fixed rendering of partials with layout when done from site layout #9209 *antramm*
1364
1365 * Fix atom_feed_helper to comply with the atom spec. Closes #10672 *Xavier Shay*
1366
1367 * The tags created do not contain a date (http://feedvalidator.org/docs/error/InvalidTAG.html)
1368 * IDs are not guaranteed unique
1369 * A default self link was not provided, contrary to the documentation
1370 * NOTE: This changes tags for existing atom entries, but at least they validate now.
1371
1372 * Correct indentation in tests. Closes #10671 *Luca Guidi*
1373
1374 * Fix that auto_link looks for ='s in url paths (Amazon urls have them). Closes #10640 *Brad Greenlee*
1375
1376 * Ensure that test case setup is run even if overridden. #10382 *Josh Peek*
1377
1378 * Fix HTML Sanitizer to allow trailing spaces in CSS style attributes. Closes #10566 *wesley.moxam*
1379
1380 * Add :default option to time_zone_select. #10590 *Matt Aimonetti*
1381
1382
1383 ## 2.0.2 (December 16th, 2007) ##
1384
1385 * Added delete_via_redirect and put_via_redirect to integration testing #10497 *philodespotos*
1386
1387 * Allow headers['Accept'] to be set by hand when calling xml_http_request #10461 *BMorearty*
1388
1389 * Added OPTIONS to list of default accepted HTTP methods #10449 *holoway*
1390
1391 * Added option to pass proc to ActionController::Base.asset_host for maximum configurability #10521 [Cheah Chu Yeow]. Example:
1392
1393 ActionController::Base.asset_host = Proc.new { |source|
1394 if source.starts_with?('/images')
1395 "http://images.example.com"
1396 else
1397 "http://assets.example.com"
1398 end
1399 }
1400
1401 * Fixed that ActionView#file_exists? would be incorrect if @first_render is set #10569 *dbussink*
1402
1403 * Added that Array#to_param calls to_param on all it's elements #10473 *brandon*
1404
1405 * Ensure asset cache directories are automatically created. #10337 *Josh Peek, Cheah Chu Yeow*
1406
1407 * render :xml and :json preserve custom content types. #10388 *jmettraux, Cheah Chu Yeow*
1408
1409 * Refactor Action View template handlers. #10437, #10455 *Josh Peek*
1410
1411 * Fix DoubleRenderError message and leave out mention of returning false from filters. Closes #10380 *Frederick Cheung*
1412
1413 * Clean up some cruft around ActionController::Base#head. Closes #10417 *ssoroka*
1414
1415
1416 ## 2.0.1 (December 7th, 2007) ##
1417
1418 * Fixed send_file/binary_content for testing #8044 *tolsen*
1419
1420 * When a NonInferrableControllerError is raised, make the proposed fix clearer in the error message. Closes #10199 *Jack Danger Canty*
1421
1422 * Update Prototype to 1.6.0.1. *sam*
1423
1424 * Update script.aculo.us to 1.8.0.1. *madrobby*
1425
1426 * Add 'disabled' attribute to <OPTION> separators used in time zone and country selects. Closes #10354 *Josh Susser*
1427
1428 * Added the same record identification guessing rules to fields_for as form_for has *David Heinemeier Hansson*
1429
1430 * Fixed that verification violations with no specified action didn't halt the chain (now they do with a 400 Bad Request) *David Heinemeier Hansson*
1431
1432 * Raise UnknownHttpMethod exception for unknown HTTP methods. Closes #10303 *Tarmo Tänav*
1433
1434 * Update to Prototype -r8232. *sam*
1435
1436 * Make sure the optimisation code for routes doesn't get used if :host, :anchor or :port are provided in the hash arguments. [pager, Michael Koziarski] #10292
1437
1438 * Added protection from trailing slashes on page caching #10229 *devrieda*
1439
1440 * Asset timestamps are appended, not prepended. Closes #10276 *Mike Naberezny*
1441
1442 * Minor inconsistency in description of render example. Closes #10029 *ScottSchram*
1443
1444 * Add #prepend_view_path and #append_view_path instance methods on ActionController::Base for consistency with the class methods. *Rick Olson*
1445
1446 * Refactor sanitizer helpers into HTML classes and make it easy to swap them out with custom implementations. Closes #10129. *Rick Olson*
1447
1448 * Add deprecation for old subtemplate syntax for ActionMailer templates, use render :partial *Rick Olson*
1449
1450 * Fix TemplateError so it doesn't bomb on exceptions while running tests *Rick Olson*
1451
1452 * Fixed that named routes living under resources shouldn't have double slashes #10198 *Isaac Feliu*
1453
1454 * Make sure that cookie sessions use a secret that is at least 30 chars in length. *Michael Koziarski*
1455
1456 * Fixed that partial rendering should look at the type of the first render to determine its own type if no other clues are available (like when using text.plain.erb as the extension in AM) #10130 *java*
1457
1458 * Fixed that has_many :through associations should render as collections too #9051 *mathie/Jack Danger Canty*
1459
1460 * Added :mouseover short-cut to AssetTagHelper#image_tag for doing easy image swaps #6893 *joost*
1461
1462 * Fixed handling of non-domain hosts #9479 *purp*
1463
1464 * Fix syntax error in documentation example for cycle method. Closes #8735 *foca*
1465
1466 * Document :with option for link_to_remote. Closes #8765 *Ryan Bates*
1467
1468 * Document :minute_step option for time_select. Closes #8814 *brupm*
1469
1470 * Explain how to use the :href option for link_to_remote to degrade gracefully in the absence of JavaScript. Closes #8911 *vlad*
1471
1472 * Disambiguate :size option for text area tag. Closes #8955 *redbeard*
1473
1474 * Fix broken tag in assert_tag documentation. Closes #9037 *mfazekas*
1475
1476 * Add documentation for route conditions. Closes #9041 *innu, Manfred Stienstra*
1477
1478 * Fix typo left over from previous typo fix in url helper. Closes #9414 *Henrik N*
1479
1480 * Fixed that ActionController::CgiRequest#host_with_port() should handle standard port #10082 *moro*
1481
1482 * Update Prototype to 1.6.0 and script.aculo.us to 1.8.0. *sam, madrobby*
1483
1484 * Expose the cookie jar as a helper method (before the view would just get the raw cookie hash) *David Heinemeier Hansson*
1485
1486 * Integration tests: get_ and post_via_redirect take a headers hash. #9130 *simonjefford*
1487
1488 * Simplfy #view_paths implementation. ActionView templates get the exact object, not a dup. *Rick Olson*
1489
1490 * Update tests for ActiveSupport's JSON escaping change. *Rick Olson*
1491
1492 * FormHelper's auto_index should use #to_param instead of #id_before_type_cast. Closes #9994 *mattly*
1493
1494 * Doc typo fixes for ActiveRecordHelper. Closes #9973 *mikong*
1495
1496 * Make example parameters in restful routing docs idiomatic. Closes #9993 *Jack Danger Canty*
1497
1498 * Make documentation comment for mime responders match documentation example. Closes #9357 *yon*
1499
1500 * Introduce a new test case class for functional tests. ActionController::TestCase. *Michael Koziarski*
1501
1502 * Fix incorrect path in helper rdoc. Closes #9926 *viktor tron*
1503
1504 * Partials also set 'object' to the default partial variable. #8823 *Nick Retallack, Jeremy Kemper*
1505
1506 * Request profiler. *Jeremy Kemper*
1507 $ cat login_session.rb
1508 get_with_redirect '/'
1509 say "GET / => #{path}"
1510 post_with_redirect '/sessions', :username => 'john', :password => 'doe'
1511 say "POST /sessions => #{path}"
1512 $ ./script/performance/request -n 10 login_session.rb
1513
1514 * Disabled checkboxes don't submit a form value. #9301 *vladr, robinjfisher*
1515
1516 * Added tests for options to ActiveRecordHelper#form. Closes #7213 *richcollins, mikong, Mislav Marohnić*
1517
1518 * Changed before_filter halting to happen automatically on render or redirect but no longer on simply returning false *David Heinemeier Hansson*
1519
1520 * Ensure that cookies handle array values correctly. Closes #9937 *queso*
1521
1522 * Make sure resource routes don't clash with internal helpers like javascript_path, image_path etc. #9928 *Geoff Buesing*
1523
1524 * caches_page uses a single after_filter instead of one per action. #9891 *Pratik Naik*
1525
1526 * Update Prototype to 1.6.0_rc1 and script.aculo.us to 1.8.0 preview 0. *sam, madrobby*
1527
1528 * Dispatcher: fix that to_prepare should only run once in production. #9889 *Nathaniel Talbott*
1529
1530 * Memcached sessions: add session data on initialization; don't silently discard exceptions; add unit tests. #9823 *kamk*
1531
1532 * error_messages_for also takes :message and :header_message options which defaults to the old "There were problems with the following fields:" and "<count> errors prohibited this <object_name> from being saved". #8270 *rmm5t, zach-inglis-lt3*
1533
1534 * Make sure that custom inflections are picked up by map.resources. #9815 *Mislav Marohnić*
1535
1536 * Changed SanitizeHelper#sanitize to only allow the custom attributes and tags when specified in the call *David Heinemeier Hansson*
1537
1538 * Extracted sanitization methods from TextHelper to SanitizeHelper *David Heinemeier Hansson*
1539
1540 * rescue_from accepts :with => lambda { |exception| ... } or a normal block. #9827 *Pratik Naik*
1541
1542 * Add :status to redirect_to allowing users to choose their own response code without manually setting headers. #8297 *Coda Hale, chasgrundy*
1543
1544 * Add link_to :back which uses your referrer with a fallback to a javascript link. #7366 *eventualbuddha, Tarmo Tänav*
1545
1546 * error_messages_for and friends also work with local variables. #9699 *Frederick Cheung*
1547
1548 * Fix url_for, redirect_to, etc. with :controller => :symbol instead of 'string'. #8562, #9525 *Justin Lynn, Tarmo Tänav, shoe*
1549
1550 * Use #require_library_or_gem to load the memcache library for the MemCache session and fragment cache stores. Closes #8662. *Rick Olson*
1551
1552 * Move ActionController::Routing.optimise_named_routes to ActionController::Base.optimise_named_routes. Now you can set it in the config. *Rick Olson*
1553
1554 config.action_controller.optimise_named_routes = false
1555
1556 * ActionController::Routing::DynamicSegment#interpolation_chunk should call #to_s on all values before calling URI.escape. *Rick Olson*
1557
1558 * Only accept session ids from cookies, prevents session fixation attacks. *bradediger*
1559
1560
1561 ## 2.0.0 Preview Release (September 29th, 2007) Includes duplicates of changes from 1.12.2 - 1.13.3 ##
1562
1563 * Fixed that render template did not honor exempt_from_layout #9698 *pezra*
1564
1565 * Better error messages if you leave out the :secret option for request forgery protection. Closes #9670 *Rick Olson*
1566
1567 * Allow ability to disable request forgery protection, disable it in test mode by default. Closes #9693 *Pratik Naik*
1568
1569 * Avoid calling is_missing on LoadErrors. Closes #7460. *ntalbott*
1570
1571 * Move Railties' Dispatcher to ActionController::Dispatcher, introduce before_ and after_dispatch callbacks, and warm up to non-CGI requests. *Jeremy Kemper*
1572
1573 * The tag helper may bypass escaping. *Jeremy Kemper*
1574
1575 * Cache asset ids. *Jeremy Kemper*
1576
1577 * Optimized named routes respect AbstractRequest.relative_url_root. #9612 *Daniel Morrison, Jeremy Kemper*
1578
1579 * Introduce ActionController::Base.rescue_from to declare exception-handling methods. Cleaner style than the case-heavy rescue_action_in_public. #9449 *Norbert Crombach*
1580
1581 * Rename some RequestForgeryProtection methods. The class method is now #protect_from_forgery, and the default parameter is now 'authenticity_token'. *Rick Olson*
1582
1583 * Merge csrf_killer plugin into rails. Adds RequestForgeryProtection model that verifies session-specific _tokens for non-GET requests. *Rick Olson*
1584
1585 * Secure #sanitize, #strip_tags, and #strip_links helpers against xss attacks. Closes #8877. *Rick Olson, Pratik Naik, Jacques Distler*
1586
1587 This merges and renames the popular white_list helper (along with some css sanitizing from Jacques Distler version of the same plugin).
1588 Also applied updated versions of #strip_tags and #strip_links from #8877.
1589
1590 * Remove use of & logic operator. Closes #8114. *watson*
1591
1592 * Fixed JavaScriptHelper#escape_javascript to also escape closing tags #8023 *Ruy Asan*
1593
1594 * Fixed TextHelper#word_wrap for multiline strings with extra carrier returns #8663 *seth*
1595
1596 * Fixed that setting the :host option in url_for would automatically turn off :only_path (since :host would otherwise not be shown) #9586 *Bounga*
1597
1598 * Added FormHelper#label. #8641, #9850 *jcoglan, Jarkko Laine*
1599
1600 * Added AtomFeedHelper (slightly improved from the atom_feed_helper plugin) *David Heinemeier Hansson*
1601
1602 * Prevent errors when generating routes for uncountable resources, (i.e. sheep where plural == singluar). map.resources :sheep now creates sheep_index_url for the collection and sheep_url for the specific item. *Michael Koziarski*
1603
1604 * Added support for HTTP Only cookies (works in IE6+ and FF 2.0.5+) as an improvement for XSS attacks #8895 *Pratik Naik, Mark Somerville*
1605
1606 * Don't warn when a path segment precedes a required segment. Closes #9615. *Nicholas Seckar*
1607
1608 * Fixed CaptureHelper#content_for to work with the optional content parameter instead of just the block #9434 [sandofsky/wildchild].
1609
1610 * Added Mime::Type.register_alias for dealing with different formats using the same mime type [David Heinemeier Hansson]. Example:
1611
1612 class PostsController < ApplicationController
1613 before_filter :adjust_format_for_iphone
1614
1615 def index
1616 @posts = Post.find(:all)
1617
1618 respond_to do |format|
1619 format.html # => renders index.html.erb and uses "text/html" as the content type
1620 format.iphone # => renders index.iphone.erb and uses "text/html" as the content type
1621 end
1622 end
1623
1624
1625 private
1626 def adjust_format_for_iphone
1627 if request.env["HTTP_USER_AGENT"] && request.env["HTTP_USER_AGENT"][/iPhone/]
1628 request.format = :iphone
1629 end
1630 end
1631 end
1632
1633 * Added that render :json will automatically call .to_json unless it's being passed a string [David Heinemeier Hansson].
1634
1635 * Autolink behaves well with emails embedded in URLs. #7313 *Jeremy McAnally, Tarmo Tänav*
1636
1637 * Fixed that default layouts did not take the format into account #9564 *Pratik Naik*
1638
1639 * Fixed optimized route segment escaping. #9562 *wildchild, Jeremy Kemper*
1640
1641 * Added block acceptance to JavaScriptHelper#javascript_tag. #7527 *Bob Silva, Tarmo Tänav, rmm5t*
1642
1643 * root_path returns '/' not ''. #9563 *Pratik Naik*
1644
1645 * Fixed that setting request.format should also affect respond_to blocks *David Heinemeier Hansson*
1646
1647 * Add option to force binary mode on tempfile used for fixture_file_upload. #6380 *Jonathan Viney*
1648
1649 * Fixed that resource namespaces wouldn't stick to all nested resources #9399 *pixeltrix*
1650
1651 * Moved ActionController::Macros::AutoComplete into the auto_complete plugin on the official Rails svn. #9512 *Pratik Naik*
1652
1653 * Moved ActionController::Macros::InPlaceEditing into the in_place_editor plugin on the official Rails svn. #9513 *Pratik Naik*
1654
1655 * Removed deprecated form of calling xml_http_request/xhr without the first argument being the http verb *David Heinemeier Hansson*
1656
1657 * Removed deprecated methods [David Heinemeier Hansson]:
1658
1659 - ActionController::Base#keep_flash (use flash.keep instead)
1660 - ActionController::Base#expire_matched_fragments (just call expire_fragment with a regular expression)
1661 - ActionController::Base.template_root/= methods (use ActionController#Base.view_paths/= instead)
1662 - ActionController::Base.cookie (use ActionController#Base.cookies[]= instead)
1663
1664 * Removed the deprecated behavior of appending ".png" to image_tag/image_path calls without an existing extension *David Heinemeier Hansson*
1665
1666 * Removed ActionController::Base.scaffold -- it went through the whole idea of scaffolding (card board walls you remove and tweak one by one). Use the scaffold generator instead (it does resources too now!) *David Heinemeier Hansson*
1667
1668 * Optimise named route generation when using positional arguments. *Michael Koziarski*
1669
1670 This change delivers significant performance benefits for the most
1671 common usage scenarios for modern rails applications by avoiding the
1672 costly trip through url_for. Initial benchmarks indicate this is
1673 between 6 and 20 times as fast.
1674
1675 * Explicitly require active_record/query_cache before using it. *Jeremy Kemper*
1676
1677 * Fix layout overriding response status. #9476 *lotswholetime*
1678
1679 * Add field_set_tag for generating field_sets, closes #9477. *Damian Janowski*
1680
1681 * Allow additional parameters to be passed to named route helpers when using positional arguments. Closes #8930 *Ian White*
1682
1683 * Make render :partial work with a :collection of Hashes, previously this wasn't possible due to backwards compatibility restrictions. *Pratik Naik*
1684
1685 * request.host works with IPv6 addresses. #9458 *yuya*
1686
1687 * Fix bug where action caching sets the content type to the ActionCachePath object. Closes #9282 *mindforge*
1688
1689 * Find layouts even if they're not in the first view_paths directory. Closes #9258 *caio*
1690
1691 * Major improvement to the documentation for the options / select form helpers. Closes #9038 *Chris Kampmeier, jardeon, wesg*
1692
1693 * Fix number_to_human_size when using different precisions. Closes #7536. *RichardStrand, mpalmer*
1694
1695 * Added partial layouts (see example in action_view/lib/partials.rb) *David Heinemeier Hansson*
1696
1697 * Allow you to set custom :conditions on resource routes. *Rick Olson*
1698
1699 * Fixed that file.content_type for uploaded files would include a trailing \r #9053 *Brad Greenlee*
1700
1701 * url_for now accepts a series of symbols representing the namespace of the record *Josh Knowles*
1702
1703 * Make :trailing_slash work with query parameters for url_for. Closes #4004 *nov*
1704
1705 * Make sure missing template exceptions actually say which template they were looking for. Closes #8683 *dasil003*
1706
1707 * Fix errors with around_filters which do not yield, restore 1.1 behaviour with after filters. Closes #8891 *Stefan Kaes*
1708
1709 After filters will *no longer* be run if an around_filter fails to yield, users relying on
1710 this behaviour are advised to put the code in question after a yield statement in an around filter.
1711
1712
1713 * Allow you to delete cookies with options. Closes #3685 *Josh Peek, Chris Wanstrath*
1714
1715 * Allow you to render views with periods in the name. Closes #8076 *Norbert Crombach*
1716
1717 render :partial => 'show.html.erb'
1718
1719 * Improve capture helper documentation. #8796 *Chris Kampmeier*
1720
1721 * Prefix nested resource named routes with their action name, e.g. new_group_user_path(@group) instead of group_new_user_path(@group). The old nested action named route is deprecated in Rails 1.2.4. #8558 *David Chelimsky*
1722
1723 * Allow sweepers to be created solely for expiring after controller actions, not model changes *David Heinemeier Hansson*
1724
1725 * Added assigns method to ActionController::Caching::Sweeper to easily access instance variables on the controller *David Heinemeier Hansson*
1726
1727 * Give the legacy X-POST_DATA_FORMAT header greater precedence during params parsing for backward compatibility. *Jeremy Kemper*
1728
1729 * Fixed that link_to with an href of # when using :method will not allow for click-through without JavaScript #7037 *Steven Bristol, Josh Peek*
1730
1731 * Fixed that radio_button_tag should generate unique ids #3353 *Bob Silva, Rebecca, Josh Peek*
1732
1733 * Fixed that HTTP authentication should work if the header is called REDIRECT_X_HTTP_AUTHORIZATION as well #6754 *Mislav Marohnić*
1734
1735 * Don't mistakenly interpret the request uri as the query string. #8731 *Pratik Naik, Jeremy Kemper*
1736
1737 * Make ActionView#view_paths an attr_accessor for real this time. Also, don't perform an unnecessary #compact on the @view_paths array in #initialize. Closes #8582 *dasil003, julik, Rick Olson*
1738
1739 * Tolerate missing content type on multipart file uploads. Fix for Safari 3. *Jeremy Kemper*
1740
1741 * Deprecation: remove pagination. Install the classic_pagination plugin for forward compatibility, or move to the superior will_paginate plugin. #8157 *Josh Peek*
1742
1743 * Action caching is limited to GET requests returning 200 OK status. #3335 *tom@craz8.com, halfbyte, Dan Kubb, Josh Peek*
1744
1745 * Improve Text Helper test coverage. #7274 *Rob Sanheim, Josh Peek*
1746
1747 * Improve helper test coverage. #7208, #7212, #7215, #7233, #7234, #7235, #7236, #7237, #7238, #7241, #7243, #7244 *Rich Collins, Josh Peek*
1748
1749 * Improve UrlRewriter tests. #7207 *Rich Collins*
1750
1751 * Resources: url_for([parent, child]) generates /parents/1/children/2 for the nested resource. Likewise with the other simply helpful methods like form_for and link_to. #6432 *mhw, Jonathan Vaught, lotswholetime*
1752
1753 * Assume html format when rendering partials in RJS. #8076 *Rick Olson*
1754
1755 * Don't double-escape url_for in views. #8144 *Rich Collins, Josh Peek*
1756
1757 * Allow JSON-style values for the :with option of observe_field. Closes #8557 *kommen*
1758
1759 * Remove RAILS_ROOT from backtrace paths. #8540 *Tim Pope*
1760
1761 * Routing: map.resource :logo routes to LogosController so the controller may be reused for multiple nestings or namespaces. *Jeremy Kemper*
1762
1763 * render :partial recognizes Active Record associations as Arrays. #8538 *Kamal Fariz Mahyuddin*
1764
1765 * Routing: drop semicolon and comma as route separators. *Jeremy Kemper*
1766
1767 * request.remote_ip understands X-Forwarded-For addresses with nonstandard whitespace. #7386 *moses*
1768
1769 * Don't prepare response when rendering a component. #8493 *jsierles*
1770
1771 * Reduce file stat calls when checking for template changes. #7736 *alex*
1772
1773 * Added custom path cache_page/expire_page parameters in addition to the options hashes [David Heinemeier Hansson]. Example:
1774
1775 def index
1776 caches_page(response.body, "/index.html")
1777 end
1778
1779 * Action Caching speedup. #8231 *Stefan Kaes*
1780
1781 * Wordsmith resources documentation. #8484 *marclove*
1782
1783 * Fix syntax error in code example for routing documentation. #8377. *Norbert Crombach*
1784
1785 * Routing: respond with 405 Method Not Allowed status when the route path matches but the HTTP method does not. #6953 *Josh Peek, defeated, Dan Kubb, Coda Hale*
1786
1787 * Add support for assert_select_rjs with :show and :hide. #7780 *dchelimsky*
1788
1789 * Make assert_select's failure messages clearer about what failed. #7779 *dchelimsky*
1790
1791 * Introduce a default respond_to block for custom types. #8174 *Josh Peek*
1792
1793 * auto_complete_field takes a :method option so you can GET or POST. #8120 *zapnap*
1794
1795 * Added option to suppress :size when using :maxlength for FormTagHelper#text_field #3112 *Tim Pope*
1796
1797 * catch possible WSOD when trying to render a missing partial. Closes #8454 *Jonathan del Strother*
1798
1799 * Rewind request body after reading it, if possible. #8438 *s450r1*
1800
1801 * Resource namespaces are inherited by their has_many subresources. #8280 *marclove, Geoff Garside*
1802
1803 * Fix filtered parameter logging with nil parameter values. #8422 *choonkeat*
1804
1805 * Integration tests: alias xhr to xml_http_request and add a request_method argument instead of always using POST. #7124 *Nik Wakelin, François Beausoleil, Wizard*
1806
1807 * Document caches_action. #5419 *Jarkko Laine*
1808
1809 * Update to Prototype 1.5.1. *Sam Stephenson*
1810
1811 * Allow routes to be decalred under namespaces [Tobias Lütke]:
1812
1813 map.namespace :admin do |admin|
1814 admin.root :controller => "products"
1815 admin.feed 'feed.xml', :controller => 'products', :action => 'feed', :format => 'xml'
1816 end
1817
1818 * Update to script.aculo.us 1.7.1_beta3. *Thomas Fuchs*
1819
1820 * observe_form always sends the serialized form. #5271 *Manfred Stienstra, normelton@gmail.com*
1821
1822 * Parse url-encoded and multipart requests ourselves instead of delegating to CGI. *Jeremy Kemper*
1823
1824 * select :include_blank option can be set to a string instead of true, which just uses an empty string. #7664 *Wizard*
1825
1826 * Added url_for usage on render :location, which allows for record identification [David Heinemeier Hansson]. Example:
1827
1828 render :xml => person, :status => :created, :location => person
1829
1830 ...expands the location to person_url(person).
1831
1832 * Introduce the request.body stream. Lazy-read to parse parameters rather than always setting RAW_POST_DATA. Reduces the memory footprint of large binary PUT requests. *Jeremy Kemper*
1833
1834 * Add some performance enhancements to ActionView.
1835
1836 * Cache base_paths in @@cached_base_paths
1837 * Cache template extensions in @@cached_template_extension
1838 * Remove unnecessary rescues
1839
1840 * Assume that rendered partials go by the HTML format by default
1841
1842 def my_partial
1843 render :update do |page|
1844 # in this order
1845 # _foo.html.erb
1846 # _foo.erb
1847 # _foo.rhtml
1848 page.replace :foo, :partial => 'foo'
1849 end
1850 end
1851
1852 * Added record identifications to FormHelper#form_for and PrototypeHelper#remote_form_for [David Heinemeier Hansson]. Examples:
1853
1854 <% form_for(@post) do |f| %>
1855 ...
1856 <% end %>
1857
1858 This will expand to be the same as:
1859
1860 <% form_for :post, @post, :url => post_path(@post), :html => { :method => :put, :class => "edit_post", :id => "edit_post_45" } do |f| %>
1861 ...
1862 <% end %>
1863
1864 And for new records:
1865
1866 <% form_for(Post.new) do |f| %>
1867 ...
1868 <% end %>
1869
1870 This will expand to be the same as:
1871
1872 <% form_for :post, @post, :url => posts_path, :html => { :class => "new_post", :id => "new_post" } do |f| %>
1873 ...
1874 <% end %>
1875
1876 * Rationalize route path escaping according to RFC 2396 section 3.3. #7544, #8307. *Jeremy Kemper, Chris Roos, begemot, jugend*
1877
1878 * Added record identification with polymorphic routes for ActionController::Base#url_for and ActionView::Base#url_for [David Heinemeier Hansson]. Examples:
1879
1880 redirect_to(post) # => redirect_to(posts_url(post)) => Location: http://example.com/posts/1
1881 link_to(post.title, post) # => link_to(post.title, posts_url(post)) => <a href="/posts/1">Hello world</a>
1882
1883 Any method that calls url_for on its parameters will automatically benefit from this.
1884
1885 * Removed deprecated parameters_for_method_reference concept (legacy from before named routes) *David Heinemeier Hansson*
1886
1887 * Add ActionController::Routing::Helpers, a module to contain common URL helpers such as polymorphic_url. *Nicholas Seckar*
1888
1889 * Included the HttpAuthentication plugin as part of core (ActionController::HttpAuthentication::Basic) *David Heinemeier Hansson*
1890
1891 * Modernize documentation for form helpers. *Jeremy McAnally*
1892
1893 * Add brief introduction to REST to the resources documentation. *fearoffish*
1894
1895 * Fix various documentation typos throughout ActionPack. *Henrik N*
1896
1897 * Enhance documentation and add examples for url_for. *Jeremy McAnally*
1898
1899 * Fix documentation typo in routes. *Norbert Crombach, pam*
1900
1901 * Sweep flash when filter chain is halted. *Caio Chassot <lists@v2studio.com>*
1902
1903 * Fixed that content_tag with a block will just return the result instead of concate it if not used in a ERb view #7857, #7432 *michael.niessner*
1904
1905 * Replace the current block/continuation filter chain handling by an implementation based on a simple loop. #8226 *Stefan Kaes*
1906
1907 * Update UrlWriter to accept :anchor parameter. Closes #6771. *Chris McGrath*
1908
1909 * Added RecordTagHelper for using RecordIdentifier conventions on divs and other container elements [David Heinemeier Hansson]. Example:
1910
1911 <% div_for(post) do %> <div id="post_45" class="post">
1912 <%= post.body %> What a wonderful world!
1913 <% end %> </div>
1914
1915 * Added page[record] accessor to JavaScriptGenerator that relies on RecordIdentifier to find the right dom id [David Heinemeier Hansson]. Example:
1916
1917 format.js do
1918 # Calls: new Effect.fade('post_45');
1919 render(:update) { |page| page[post].visual_effect(:fade) }
1920 end
1921
1922 * Added RecordIdentifier to enforce view conventions on records for dom ids, classes, and partial paths *David Heinemeier Hansson*
1923
1924 * Added map.namespace to deal with the common situation of admin sections and the like *David Heinemeier Hansson*
1925
1926 Before:
1927
1928 map.resources :products, :path_prefix => "admin", :controller => "admin/products", :collection => { :inventory => :get }, :member => { :duplicate => :post }
1929 map.resources :tags, :name_prefix => 'admin_product_', :path_prefix => "admin/products/:product_id", :controller => "admin/product_tags"
1930 map.resources :images, :name_prefix => 'admin_product_', :path_prefix => "admin/products/:product_id", :controller => "admin/product_images"
1931 map.resources :variants, :name_prefix => 'admin_product_', :path_prefix => "admin/products/:product_id", :controller => "admin/product_variants"
1932
1933 After:
1934
1935 map.namespace(:admin) do |admin|
1936 admin.resources :products,
1937 :collection => { :inventory => :get },
1938 :member => { :duplicate => :post },
1939 :has_many => [ :tags, :images, :variants ]
1940 end
1941
1942 * Added :name_prefix as standard for nested resources [David Heinemeier Hansson]. WARNING: May be backwards incompatible with your app
1943
1944 Before:
1945
1946 map.resources :emails do |emails|
1947 emails.resources :comments, :name_prefix => "email_"
1948 emails.resources :attachments, :name_prefix => "email_"
1949 end
1950
1951 After:
1952
1953 map.resources :emails do |emails|
1954 emails.resources :comments
1955 emails.resources :attachments
1956 end
1957
1958 This does mean that if you intended to have comments_url go to /emails/5/comments, then you'll have to set :name_prefix to nil explicitly.
1959
1960 * Added :has_many and :has_one for declaring plural and singular resources beneath the current *David Heinemeier Hansson*
1961
1962 Before:
1963
1964 map.resources :notes do |notes|
1965 notes.resources :comments
1966 notes.resources :attachments
1967 notes.resource :author
1968 end
1969
1970 After:
1971
1972 map.resources :notes, :has_many => [ :comments, :attachments ], :has_one => :author
1973
1974 * Added that render :xml will try to call to_xml if it can [David Heinemeier Hansson]. Makes these work:
1975
1976 render :xml => post
1977 render :xml => comments
1978
1979 * Added :location option to render so that the common pattern of rendering a response after creating a new resource is now a 1-liner *David Heinemeier Hansson*
1980
1981 render :xml => post.to_xml, :status => :created, :location => post_url(post)
1982
1983 * Ensure that render_text only adds string content to the body of the response *David Heinemeier Hansson*
1984
1985 * Return the string representation from an Xml Builder when rendering a partial. Closes #5044 *Tim Pope*
1986
1987 * Fixed that parameters from XML should also be presented in a hash with indifferent access *David Heinemeier Hansson*
1988
1989 * Tweak template format rules so that the ACCEPT header is only used if it's text/javascript. This is so ajax actions without a :format param get recognized as Mime::JS. *Rick Olson*
1990
1991 * The default respond_to blocks don't set a specific extension anymore, so that both 'show.rjs' and 'show.js.rjs' will work. *Rick Olson*
1992
1993 * Allow layouts with extension of .html.erb. Closes #8032 *Josh Knowles*
1994
1995 * Change default respond_to templates for xml and rjs formats. *Rick Olson*
1996
1997 * Default xml template goes from #{action_name}.rxml => #{action_name}.xml.builder.
1998 * Default rjs template goes from #{action_name}.rjs => #{action_name}.js.rjs.
1999
2000 You can still specify your old templates:
2001
2002 respond_to do |format|
2003 format.xml do
2004 render :action => "#{action_name}.rxml"
2005 end
2006 end
2007
2008 * Fix WSOD due to modification of a formatted template extension so that requests to templates like 'foo.html.erb' fail on the second hit. *Rick Olson*
2009
2010 * Fix WSOD when template compilation fails *Rick Olson*
2011
2012 * Change ActionView template defaults. Look for templates using the request format first, such as "show.html.erb" or "show.xml.builder", before looking for the old defaults like "show.erb" or "show.builder" *Rick Olson*
2013
2014 * Highlight helper highlights one or many terms in a single pass. *Jeremy Kemper*
2015
2016 * Dropped the use of ; as a separator of non-crud actions on resources and went back to the vanilla slash. It was a neat idea, but lots of the non-crud actions turned out not to be RPC (as the ; was primarily intended to discourage), but legitimate sub-resources, like /parties/recent, which didn't deserve the uglification of /parties;recent. Further more, the semicolon caused issues with caching and HTTP authentication in Safari. Just Not Worth It *David Heinemeier Hansson*
2017
2018 * Added that FormTagHelper#submit_tag will return to its original state if the submit fails and you're using :disable_with *David Heinemeier Hansson*
2019
2020 * Cleaned up, corrected, and mildly expanded ActionPack documentation. Closes #7190 *Jeremy McAnally*
2021
2022 * Small collection of ActionController documentation cleanups. Closes #7319 *Jeremy McAnally*
2023
2024 * Make sure the route expiry hash is constructed by comparing the to_param-ized values of each hash. *Jamis Buck*
2025
2026 * Allow configuration of the default action cache path for #caches_action calls. *Rick Olson*
2027
2028 class ListsController < ApplicationController
2029 caches_action :index, :cache_path => Proc.new { |controller|
2030 controller.params[:user_id] ?
2031 controller.send(:user_lists_url, c.params[:user_id]) :
2032 controller.send(:lists_url) }
2033 end
2034
2035 * Performance: patch cgi/session/pstore to require digest/md5 once rather than per #initialize. #7583 *Stefan Kaes*
2036
2037 * Cookie session store: ensure that new sessions doesn't reuse data from a deleted session in the same request. *Jeremy Kemper*
2038
2039 * Deprecation: verification with :redirect_to => :named_route shouldn't be deprecated. #7525 *Justin French*
2040
2041 * Cookie session store: raise ArgumentError when :session_key is blank. *Jeremy Kemper*
2042
2043 * Deprecation: remove deprecated request, redirect, and dependency methods. Remove deprecated instance variables. Remove deprecated url_for(:symbol, *args) and redirect_to(:symbol, *args) in favor of named routes. Remove uses_component_template_root for toplevel components directory. Privatize deprecated render_partial and render_partial_collection view methods. Remove deprecated link_to_image, link_image_to, update_element_function, start_form_tag, and end_form_tag helper methods. Remove deprecated human_size helper alias. *Jeremy Kemper*
2044
2045 * Consistent public/protected/private visibility for chained methods. #7813 *Dan Manges*
2046
2047 * Prefer MIME constants to strings. #7707 *Dan Kubb*
2048
2049 * Allow array and hash query parameters. Array route parameters are converted/to/a/path as before. #6765, #7047, #7462 *bgipsy, Jeremy McAnally, Dan Kubb, brendan*
2050
2051 \# Add a #dbman attr_reader for CGI::Session and make CGI::Session::CookieStore#generate_digest public so it's easy to generate digests using the cookie store's secret. [Rick Olson]
2052 * Added Request#url that returns the complete URL used for the request *David Heinemeier Hansson*
2053
2054 * Extract dynamic scaffolding into a plugin. #7700 *Josh Peek*
2055
2056 * Added user/password options for url_for to add http authentication in a URL *David Heinemeier Hansson*
2057
2058 * Fixed that FormTagHelper#text_area_tag should disregard :size option if it's not a string *Brendon Davidson*
2059
2060 * Set the original button value in an attribute of the button when using the :disable_with key with submit_tag, so that the original can be restored later. *Jamis Buck*
2061
2062 * session_enabled? works with session :off. #6680 *Jonathan del Strother*
2063
2064 * Added :port and :host handling to UrlRewriter (which unified url_for usage, regardless of whether it's called in view or controller) #7616 *alancfrancis*
2065
2066 * Allow send_file/send_data to use a registered mime type as the :type parameter #7620 *jonathan*
2067
2068 * Allow routing requirements on map.resource(s) #7633 [quixoten]. Example:
2069
2070 map.resources :network_interfaces, :requirements => { :id => /^\d+\.\d+\.\d+\.\d+$/ }
2071
2072 * Cookie session store: empty and unchanged sessions don't write a cookie. *Jeremy Kemper*
2073
2074 * Added helper(:all) as a way to include all helpers from app/helpers/**/*.rb in ApplicationController *David Heinemeier Hansson*
2075
2076 * Integration tests: introduce methods for other HTTP methods. #6353 *caboose*
2077
2078 * Routing: better support for escaped values in route segments. #7544 [Chris
2079 Roos]
2080 * Introduce a cookie-based session store as the Rails default. Sessions typically contain at most a user_id and flash message; both fit within the 4K cookie size limit. A secure message digest is included with the cookie to ensure data integrity (a user cannot alter his user_id without knowing the secret key included in the digest). If you have more than 4K of session data or don't want your data to be visible to the user, pick another session store. Cookie-based sessions are dramatically faster than the alternatives. *Jeremy Kemper*
2081
2082 Example config/environment.rb:
2083 # Use an application-wide secret key and the default SHA1 message digest.
2084 config.action_controller.session = { :secret => "can't touch this" }
2085
2086 # Store a secret key per user and employ a stronger message digest.
2087 config.action_controller.session = {
2088 :digest => 'SHA512',
2089 :secret => Proc.new { User.current.secret_key }
2090 }
2091
2092 * Added .erb and .builder as preferred aliases to the now deprecated .rhtml and .rxml extensions [Chad Fowler]. This is done to separate the renderer from the mime type. .erb templates are often used to render emails, atom, csv, whatever. So labeling them .rhtml doesn't make too much sense. The same goes for .rxml, which can be used to build everything from HTML to Atom to whatever. .rhtml and .rxml will continue to work until Rails 3.0, though. So this is a slow phasing out. All generators and examples will start using the new aliases, though.
2093
2094 * Added caching option to AssetTagHelper#stylesheet_link_tag and AssetTagHelper#javascript_include_tag [David Heinemeier Hansson]. Examples:
2095
2096 stylesheet_link_tag :all, :cache => true # when ActionController::Base.perform_caching is false =>
2097 <link href="/stylesheets/style1.css" media="screen" rel="Stylesheet" type="text/css" />
2098 <link href="/stylesheets/styleB.css" media="screen" rel="Stylesheet" type="text/css" />
2099 <link href="/stylesheets/styleX2.css" media="screen" rel="Stylesheet" type="text/css" />
2100
2101 stylesheet_link_tag :all, :cache => true # when ActionController::Base.perform_caching is true =>
2102 <link href="/stylesheets/all.css" media="screen" rel="Stylesheet" type="text/css" />
2103
2104 ...when caching is on, all.css is the concatenation of style1.css, styleB.css, and styleX2.css.
2105 Same deal for JavaScripts.
2106
2107 * Work around the two connection per host browser limit: use asset%d.myapp.com to distribute asset requests among asset[0123].myapp.com. Use a DNS wildcard or CNAMEs to map these hosts to your asset server. See http://www.die.net/musings/page_load_time/ for background. *Jeremy Kemper*
2108
2109 * Added default mime type for CSS (Mime::CSS) *David Heinemeier Hansson*
2110
2111 * Added that rendering will automatically insert the etag header on 200 OK responses. The etag is calculated using MD5 of the response body. If a request comes in that has a matching etag, the response will be changed to a 304 Not Modified and the response body will be set to an empty string. *David Heinemeier Hansson*
2112
2113 * Added X-Runtime to all responses with the request run time *David Heinemeier Hansson*
2114
2115 * Add Mime::Type convenience methods to check the current mime type. *Rick Olson*
2116
2117 request.format.html? # => true if Mime::HTML
2118 request.format.jpg? # => true if Mime::JPG
2119
2120 \# ActionController sample usage:
2121 \# the session will be disabled for non html/ajax requests
2122 session :off, :if => Proc.new { |req| !(req.format.html? || req.format.js?) }
2123
2124 * Performance: patch cgi/session to require digest/md5 once rather than per #create_new_id. *Stefan Kaes*
2125
2126 * Add a :url_based_filename => true option to ActionController::Streaming::send_file, which allows URL-based filenames. *Thomas Fuchs*
2127
2128 * Fix that FormTagHelper#submit_tag using :disable_with should trigger the onsubmit handler of its form if available *David Heinemeier Hansson*
2129
2130 * Fix #render_file so that TemplateError is called with the correct params and you don't get the WSOD. *Rick Olson*
2131
2132 * Fix issue with deprecation messing up #template_root= usage. Add #prepend_view_path and #append_view_path to allow modification of a copy of the
2133 superclass' view_paths. [Rick Olson]
2134 * Allow Controllers to have multiple view_paths instead of a single template_root. Closes #2754 *John Long*
2135
2136 * Add much-needed html-scanner tests. Fixed CDATA parsing bug. *Rick Olson*
2137
2138 * improve error message for Routing for named routes. Closes #7346 *Rob Sanheim*
2139
2140 * Added enhanced docs to routing assertions. Closes #7359 *Rob Sanheim*
2141
2142 * fix form_for example in ActionController::Resources documentation. Closes #7362 *gnarg*
2143
2144 * Make sure that the string returned by TextHelper#truncate is actually a string, not a char proxy -- that should only be used internally while working on a multibyte-safe way of truncating *David Heinemeier Hansson*
2145
2146 * Added FormBuilder#submit as a delegate for FormTagHelper#submit_tag *David Heinemeier Hansson*
2147
2148 * Allow Routes to generate all urls for a set of options by specifying :generate_all => true. Allows caching to properly set or expire all paths for a resource. References #1739. *Nicholas Seckar*
2149
2150 * Change the query parser to map empty GET params to "" rather than nil. Closes #5694. *Nicholas Seckar*
2151
2152 * date_select and datetime_select take a :default option. #7052 *Nik Wakelin*
2153 date_select "post", "written_on", :default => 3.days.from_now
2154 date_select "credit_card", "bill_due", :default => { :day => 20 }
2155
2156 * select :multiple => true suffixes the attribute name with [] unless already suffixed. #6977 *nik.kakelin, ben, julik*
2157
2158 * Improve routes documentation. #7095 *zackchandler*
2159
2160 * mail_to :encode => 'hex' also encodes the mailto: part of the href attribute as well as the linked email when no name is given. #2061 *Jarkko Laine, pfc.pille@gmx.net*
2161
2162 * Resource member routes require :id, eliminating the ambiguous overlap with collection routes. #7229 *dkubb*
2163
2164 * Remove deprecated assertions. *Jeremy Kemper*
2165
2166 * Change session restoration to allow namespaced models to be autoloaded. Closes #6348. *Nicholas Seckar*
2167
2168 * Fix doubly appearing parameters due to string and symbol mixups. Closes #2551. *Anthony Eden*
2169
2170 * Fix overly greedy rescues when loading helpers. Fixes #6268. *Nicholas Seckar*
2171
2172 * Fixed NumberHelper#number_with_delimiter to use "." always for splitting the original number, not the delimiter parameter #7389 *ceefour*
2173
2174 * Autolinking recognizes trailing and embedded . , : ; #7354 *Jarkko Laine*
2175
2176 * Make TextHelper::auto_link recognize URLs with colons in path correctly, fixes #7268. *imajes*
2177
2178 * Update to script.aculo.us 1.7.0. *Thomas Fuchs*
2179
2180 * Modernize cookie testing code, and increase coverage (Heckle++) #7101 *Kevin Clark*
2181
2182 * Improve Test Coverage for ActionController::Routing::Route#matches_controller_and_action? (Heckle++) #7115 *Kevin Clark*
2183
2184 * Heckling ActionController::Resources::Resource revealed that set_prefixes didn't break when :name_prefix was munged. #7081 *Kevin Clark*
2185
2186 * Fix #distance_of_time_in_words to report accurately against the Duration class. #7114 *eventualbuddha*
2187
2188 * Refactor #form_tag to allow easy extending. *Rick Olson*
2189
2190 * Update to Prototype 1.5.0. *Sam Stephenson*
2191
2192 * RecordInvalid, RecordNotSaved => 422 Unprocessable Entity, StaleObjectError => 409 Conflict. #7097 *dkubb*
2193
2194 * Allow fields_for to be nested inside form_for, so that the name and id get properly constructed *Jamis Buck*
2195
2196 * Allow inGroupsOf and eachSlice to be called through rjs. #7046 *Cody Fauser*
2197
2198 * Allow exempt_from_layout :rhtml. #6742, #7026 *Dan Manges, Squeegy*
2199
2200 * Recognize the .txt extension as Mime::TEXT *Rick Olson*
2201
2202 * Fix parsing of array[] CGI parameters so extra empty values aren't included. #6252 *Nicholas Seckar, aiwilliams, brentrowland*
2203
2204 * link_to_unless_current works with full URLs as well as paths. #6891 *Jarkko Laine, Manfred Stienstra, idrifter*
2205
2206 * Lookup the mime type for #auto_discovery_link_tag in the Mime::Type class. Closes #6941 *Josh Peek*
2207
2208 * Fix bug where nested resources ignore a parent singleton parent's path prefix. Closes #6940 *Dan Kubb*
2209
2210 * Fix no method error with error_messages_on. Closes #6935 *nik.wakelin Koz*
2211
2212 * Slight doc tweak to the ActionView::Helpers::PrototypeHelper#replace docs. Closes #6922 *Steven Bristol*
2213
2214 * Slight doc tweak to #prepend_filter. Closes #6493 *Jeremy Voorhis*
2215
2216 * Add more extensive documentation to the AssetTagHelper. Closes #6452 *Bob Silva*
2217
2218 * Clean up multiple calls to #stringify_keys in TagHelper, add better documentation and testing for TagHelper. Closes #6394 *Bob Silva*
2219
2220 * [DOCS] fix reference to ActionController::Macros::AutoComplete for #text_field_with_auto_complete. Closes #2578 *Jan Prill*
2221
2222 * Make sure html_document is reset between integration test requests. *ctm*
2223
2224 * Set session to an empty hash if :new_session => false and no session cookie or param is present. CGI::Session was raising an unrescued ArgumentError. *Josh Susser*
2225
2226 * Routing uses URI escaping for path components and CGI escaping for query parameters. *darix, Jeremy Kemper*
2227
2228 * Fix assert_redirected_to bug where redirecting from a nested to to a top-level controller incorrectly added the current controller's nesting. Closes #6128. *Rick Olson*
2229
2230 * Singleton resources: POST /singleton => create, GET /singleton/new => new. *Jeremy Kemper*
2231
2232 * Use 400 Bad Request status for unrescued ActiveRecord::RecordInvalid exceptions. *Jeremy Kemper*
2233
2234 * Silence log_error deprecation warnings from inspecting deprecated instance variables. *Nate Wiger*
2235
2236 * Only cache GET requests with a 200 OK response. #6514, #6743 *RSL, anamba*
2237
2238 * Add a 'referer' attribute to TestRequest. *Jamis Buck*
2239
2240 * Ensure render :json => ... skips the layout. Closes #6808 *Josh Peek*
2241
2242 * Fix HTML::Node to output double quotes instead of single quotes. Closes #6845 *mitreandy*
2243
2244 * Correctly report which filter halted the chain. #6699 *Martin Emde*
2245
2246 * Fix a bug in Routing where a parameter taken from the path of the current request could not be used as a query parameter for the next. Closes #6752. *Nicholas Seckar*
2247
2248 * Unrescued ActiveRecord::RecordNotFound responds with 404 instead of 500. *Jeremy Kemper*
2249
2250 * Improved auto_link to match more valid urls correctly *Tobias Lütke*
2251
2252 * Add singleton resources. *Rick Olson*
2253
2254 map.resource :account
2255
2256 GET /account
2257 GET /account;edit
2258 UPDATE /account
2259 DELETE /account
2260
2261 * respond_to recognizes JSON. render :json => @person.to_json automatically sets the content type and takes a :callback option to specify a client-side function to call using the rendered JSON as an argument. #4185 *Scott Raymond, eventualbuddha*
2262 # application/json response with body 'Element.show({:name: "David"})'
2263 respond_to do |format|
2264 format.json { render :json => { :name => "David" }.to_json, :callback => 'Element.show' }
2265 end
2266
2267 * Makes :discard_year work without breaking multi-attribute parsing in AR. #1260, #3800 *sean@ardismg.com, jmartin@desertflood.com, stephen@touset.org, Bob Silva*
2268
2269 * Adds html id attribute to date helper elements. #1050, #1382 *mortonda@dgrmm.net, David North, Bob Silva*
2270
2271 * Add :index and @auto_index capability to model driven date/time selects. #847, #2655 *moriq, Doug Fales, Bob Silva*
2272
2273 * Add :order to datetime_select, select_datetime, and select_date. #1427 *Timothee Peignier, Patrick Lenz, Bob Silva*
2274
2275 * Added time_select to work with time values in models. Update scaffolding. #2489, #2833 *Justin Palmer, Andre Caum, Bob Silva*
2276
2277 * Added :include_seconds to select_datetime, datetime_select and time_select. #2998 *csn, Bob Silva*
2278
2279 * All date/datetime selects can now accept an array of month names with :use_month_names. Allows for localization. #363 *tomasj, Bob Silva*
2280
2281 * Adds :time_separator to select_time and :date_separator to select_datetime. Preserves BC. #3811 *Bob Silva*
2282
2283 * Added map.root as an alias for map.connect '' *David Heinemeier Hansson*
2284
2285 * Added Request#format to return the format used for the request as a mime type. If no format is specified, the first Request#accepts type is used. This means you can stop using respond_to for anything else than responses [David Heinemeier Hansson]. Examples:
2286
2287 GET /posts/5.xml | request.format => Mime::XML
2288 GET /posts/5.xhtml | request.format => Mime::HTML
2289 GET /posts/5 | request.format => request.accepts.first (usually Mime::HTML for browsers)
2290
2291 * Added the option for extension aliases to mime type registration [David Heinemeier Hansson]. Example (already in the default routes):
2292
2293 Mime::Type.register "text/html", :html, %w( application/xhtml+xml ), %w( xhtml )
2294
2295 ...will respond on both .html and .xhtml.
2296
2297 * @response.redirect_url works with 201 Created responses: just return headers['Location'] rather than checking the response status. *Jeremy Kemper*
2298
2299 * Added CSV to Mime::SET so that respond_to csv will work *Cody Fauser*
2300
2301 * Fixed that HEAD should return the proper Content-Length header (that is, actually use @body.size, not just 0) *David Heinemeier Hansson*
2302
2303 * Added GET-masquarading for HEAD, so request.method will return :get even for HEADs. This will help anyone relying on case request.method to automatically work with HEAD and map.resources will also allow HEADs to all GET actions. Rails automatically throws away the response content in a reply to HEAD, so you don't even need to worry about that. If you, for whatever reason, still need to distinguish between GET and HEAD in some edge case, you can use Request#head? and even Request.headers["REQUEST_METHOD"] for get the "real" answer. Closes #6694 *David Heinemeier Hansson*
2304
2305 * Update Routing to complain when :controller is not specified by a route. Closes #6669. *Nicholas Seckar*
2306
2307 * Ensure render_to_string cleans up after itself when an exception is raised. #6658 *Rob Sanheim*
2308
2309 * Extract template_changed_since? from compile_template? so plugins may override its behavior for non-file-based templates. #6651 *Jeff Barczewski*
2310
2311 * Update to Prototype and script.aculo.us [5579]. *Thomas Fuchs*
2312
2313 * simple_format helper doesn't choke on nil. #6644 *jerry426*
2314
2315 * Update to Prototype 1.5.0_rc2 [5550] which makes it work in Opera again *Thomas Fuchs*
2316
2317 * Reuse named route helper module between Routing reloads. Use remove_method to delete named route methods after each load. Since the module is never collected, this fixes a significant memory leak. *Nicholas Seckar*
2318
2319 * ActionView::Base.erb_variable accessor names the buffer variable used to render templates. Defaults to _erbout; use _buf for erubis. *Rick Olson*
2320
2321 * assert_select_rjs :remove. *Dylan Egan*
2322
2323 * Always clear model associations from session. #4795 *sd@notso.net, andylien@gmail.com*
2324
2325 * Update to Prototype 1.5.0_rc2. *Sam Stephenson*
2326
2327 * Remove JavaScriptLiteral in favor of ActiveSupport::JSON::Variable. *Sam Stephenson*
2328
2329 * Sync ActionController::StatusCodes::STATUS_CODES with http://www.iana.org/assignments/http-status-codes. #6586 *dkubb*
2330
2331 * Multipart form values may have a content type without being treated as uploaded files if they do not provide a filename. #6401 *Andreas Schwarz, Jeremy Kemper*
2332
2333 * assert_response supports symbolic status codes. #6569 *Kevin Clark*
2334 assert_response :ok
2335 assert_response :not_found
2336 assert_response :forbidden
2337
2338 * Cache parsed query parameters. #6559 *Stefan Kaes*
2339
2340 * Deprecate JavaScriptHelper#update_element_function, which is superseeded by RJS *Thomas Fuchs*
2341
2342 * pluralize helper interprets nil as zero. #6474 *Tim Pope*
2343
2344 * Fix invalid test fixture exposed by stricter Ruby 1.8.5 multipart parsing. #6524 *Bob Silva*
2345
2346 * Set ActionView::Base.default_form_builder once rather than passing the :builder option to every form or overriding the form helper methods. *Jeremy Kemper*
2347
2348 * Deprecate expire_matched_fragments. Use expire_fragment instead. #6535 *Bob Silva*
2349
2350 * Update to latest Prototype, which doesn't serialize disabled form elements, adds clone() to arrays, empty/non-string Element.update() and adds a fixes excessive error reporting in WebKit beta versions *Thomas Fuchs*
2351
2352 * Deprecate start_form_tag and end_form_tag. Use form_tag / '</form>' from now on. *Rick Olson*
2353
2354 * Added block-usage to PrototypeHelper#form_remote_tag, document block-usage of FormTagHelper#form_tag *Rick Olson*
2355
2356 * Add a 0 margin/padding div around the hidden _method input tag that form_tag outputs. *Rick Olson*
2357
2358 * Added block-usage to TagHelper#content_tag [David Heinemeier Hansson]. Example:
2359
2360 <% content_tag :div, :class => "strong" %>
2361 Hello world!
2362 <% end %>
2363
2364 Will output:
2365 <div class="strong">Hello world!</div>
2366
2367 * Deprecated UrlHelper#link_to_image and UrlHelper#link_to :post => true #6409 *Bob Silva*
2368
2369 * Upgraded NumberHelper with number_to_phone support international formats to comply with ITU E.123 by supporting area codes with less than 3 digits, added precision argument to number_to_human_size (defaults to 1) #6421 *Bob Silva*
2370
2371 * Fixed that setting RAILS_ASSET_ID to "" should not add a trailing slash after assets #6454 *Bob Silva/chrismear*
2372
2373 * Force *_url named routes to show the host in ActionView *Rick Olson*
2374
2375 <%= url_for ... %> # no host
2376 <%= foo_path %> # no host
2377 <%= foo_url %> # host!
2378
2379 * Add support for converting blocks into function arguments to JavaScriptGenerator#call and JavaScriptProxy#call. *Sam Stephenson*
2380
2381 * Add JavaScriptGenerator#literal for wrapping a string in an object whose #to_json is the string itself. *Sam Stephenson*
2382
2383 * Add <%= escape_once html %> to escape html while leaving any currently escaped entities alone. Fix button_to double-escaping issue. *Rick Olson*
2384
2385 * Fix double-escaped entities, such as &amp;amp;, &amp;#123;, etc. *Rick Olson*
2386
2387 * Fix deprecation warnings when rendering the template error template. *Nicholas Seckar*
2388
2389 * Fix routing to correctly determine when generation fails. Closes #6300. [psross].
2390
2391 * Fix broken assert_generates when extra keys are being checked. *Jamis Buck*
2392
2393 * Replace KCODE checks with String#chars for truncate. Closes #6385 *Manfred Stienstra*
2394
2395 * Make page caching respect the format of the resource that is being requested even if the current route is the default route so that, e.g. posts.rss is not transformed by url_for to '/' and subsequently cached as '/index.html' when it should be cached as '/posts.rss'. *Marcel Molina Jr.*
2396
2397 * Use String#chars in TextHelper::excerpt. Closes #6386 *Manfred Stienstra*
2398
2399 * Install named routes into ActionView::Base instead of proxying them to the view via helper_method. Closes #5932. *Nicholas Seckar*
2400
2401 * Update to latest Prototype and script.aculo.us trunk versions *Thomas Fuchs*
2402
2403 * Fix relative URL root matching problems. *Mark Imbriaco*
2404
2405 * Fix filter skipping in controller subclasses. #5949, #6297, #6299 *Martin Emde*
2406
2407 * render_text may optionally append to the response body. render_javascript appends by default. This allows you to chain multiple render :update calls by setting @performed_render = false between them (awaiting a better public API). *Jeremy Kemper*
2408
2409 * Rename test assertion to prevent shadowing. Closes #6306. *psross*
2410
2411 * Fixed that NumberHelper#number_to_delimiter should respect precision of higher than two digits #6231 *Philip Hallstrom*
2412
2413 * Fixed that FormHelper#radio_button didn't respect an :id being passed in #6266 *evansj*
2414
2415 * Added an html_options hash parameter to javascript_tag() and update_page_tag() helpers #6311 [tzaharia]. Example:
2416
2417 update_page_tag :defer => 'true' { |page| ... }
2418
2419 Gives:
2420
2421 <script defer="true" type="text/javascript">...</script>
2422
2423 Which is needed for dealing with the IE6 DOM when it's not yet fully loaded.
2424
2425 * Fixed that rescue template path shouldn't be hardcoded, then it's easier to hook in your own #6295 *Mike Naberezny*
2426
2427 * Fixed escaping of backslashes in JavaScriptHelper#escape_javascript #6302 *sven@c3d2.de*
2428
2429 * Fixed that some 500 rescues would cause 500's themselves because the response had not yet been generated #6329 *cmselmer*
2430
2431 * respond_to :html doesn't assume .rhtml. #6281 *Hampton Catlin*
2432
2433 * Fixed some deprecation warnings in ActionPack *Rick Olson*
2434
2435 * assert_select_rjs decodes escaped unicode chars since the Javascript generators encode them. #6240 *japgolly*
2436
2437 * Deprecation: @cookies, @headers, @request, @response will be removed after 1.2. Use the corresponding method instead. *Jeremy Kemper*
2438
2439 * Make the :status parameter expand to the default message for that status code if it is an integer. Also support symbol statuses. [Jamis Buck]. Examples:
2440
2441 head :status => 404 # expands to "404 Not Found"
2442 head :status => :not_found # expands to "404 Not Found"
2443 head :status => :created # expands to "201 Created"
2444
2445 * Add head(options = {}) for responses that have no body. [Jamis Buck]. Examples:
2446
2447 head :status => 404 # return an empty response with a 404 status
2448 head :location => person_path(@person), :status => 201
2449
2450 * Fix bug that kept any before_filter except the first one from being able to halt the before_filter chain. *Rick Olson*
2451
2452 * strip_links is case-insensitive. #6285 *tagoh, Bob Silva*
2453
2454 * Clear the cache of possible controllers whenever Routes are reloaded. *Nicholas Seckar*
2455
2456 * Filters overhaul including meantime filter support using around filters + blocks. #5949 *Martin Emde, Roman Le Negrate, Stefan Kaes, Jeremy Kemper*
2457
2458 * Update RJS render tests. *sam*
2459
2460 * Update CGI process to allow sessions to contain namespaced models. Closes #4638. *dfelstead@site5.com*
2461
2462 * Fix routing to respect user provided requirements and defaults when assigning default routing options (such as :action => 'index'). Closes #5950. *Nicholas Seckar*
2463
2464 * Rescue Errno::ECONNRESET to handle an unexpectedly closed socket connection. Improves SCGI reliability. #3368, #6226 *sdsykes, fhanshaw@vesaria.com*
2465
2466 * Added that respond_to blocks will automatically set the content type to be the same as is requested [David Heinemeier Hansson]. Examples:
2467
2468 respond_to do |format|
2469 format.html { render :text => "I'm being sent as text/html" }
2470 format.rss { render :text => "I'm being sent as application/rss+xml" }
2471 format.atom { render :text => "I'm being sent as application/xml", :content_type => Mime::XML }
2472 end
2473
2474 * Added utf-8 as the default charset for all renders. You can change this default using ActionController::Base.default_charset=(encoding) *David Heinemeier Hansson*
2475
2476 * Added proper getters and setters for content type and charset [David Heinemeier Hansson]. Example of what we used to do:
2477
2478 response.headers["Content-Type"] = "application/atom+xml; charset=utf-8"
2479
2480 ...now:
2481
2482 response.content_type = Mime::ATOM
2483 response.charset = "utf-8"
2484
2485 * Updated prototype.js to 1.5.0_rc1 with latest fixes. *Rick Olson*
2486
2487 - XPATH support
2488 - Make Form.getElements() return elements in the correct order
2489 - fix broken Form.serialize return
2490
2491 * Declare file extensions exempt from layouts. #6219 *brandon*
2492 Example: ActionController::Base.exempt_from_layout 'rpdf'
2493
2494 * Add chained replace/update support for assert_select_rjs *Rick Olson*
2495
2496 Given RJS like...
2497
2498 page['test1'].replace "<div id=\"1\">foo</div>"
2499 page['test2'].replace_html "<div id=\"2\">foo</div>"
2500
2501 Test it with...
2502
2503 assert_select_rjs :chained_replace
2504 assert_select_rjs :chained_replace, "test1"
2505
2506 assert_select_rjs :chained_replace_html
2507 assert_select_rjs :chained_replace_html, "test2"
2508
2509 * Load helpers in alphabetical order for consistency. Resolve cyclic javascript_helper dependency. #6132, #6178 *choonkeat@gmail.com*
2510
2511 * Skip params with empty names, such as the &=Save query string from <input type="submit"/>. #2569 *Manfred Stienstra, raphinou@yahoo.com*
2512
2513 * Fix assert_tag so that :content => "foo" does not match substrings, but only exact strings. Use :content => /foo/ to match substrings. #2799 *Eric Hodel*
2514
2515 * Add descriptive messages to the exceptions thrown by cgi_methods. #6091, #6103 *Nicholas Seckar, Bob Silva*
2516
2517 * Update JavaScriptGenerator#show/hide/toggle/remove to new Prototype syntax for multiple ids, #6068 *petermichaux@gmail.com*
2518
2519 * Update UrlWriter to support :only_path. *Nicholas Seckar, Dave Thomas*
2520
2521 * Fixed JavaScriptHelper#link_to_function and JavaScriptHelper#button_to_function to have the script argument be optional [David Heinemeier Hansson]. So what used to require a nil, like this:
2522
2523 link_to("Hider", nil, :class => "hider_link") { |p| p[:something].hide }
2524
2525 ...can be written like this:
2526
2527 link_to("Hider", :class => "hider_link") { |p| p[:something].hide }
2528
2529 * Update to script.aculo.us 1.6.3 *Thomas Fuchs*
2530
2531 * Update to Prototype 1.5.0_rc1 *sam*
2532
2533 * Added access to nested attributes in RJS #4548 [richcollins@gmail.com]. Examples:
2534
2535 page['foo']['style'] # => $('foo').style;
2536 page['foo']['style']['color'] # => $('blank_slate').style.color;
2537 page['foo']['style']['color'] = 'red' # => $('blank_slate').style.color = 'red';
2538 page['foo']['style'].color = 'red' # => $('blank_slate').style.color = 'red';
2539
2540 * Fixed that AssetTagHelper#image_tag and others using compute_public_path should not modify the incoming source argument (closes #5102) *eule@space.ch*
2541
2542 * Deprecated the auto-appending of .png to AssetTagHelper#image_tag calls that doesn't have an extension *David Heinemeier Hansson*
2543
2544 * Fixed FormOptionsHelper#select to respect :selected value #5813
2545
2546 * Fixed TextHelper#simple_format to deal with multiple single returns within a single paragraph #5835 *moriq@moriq.com*
2547
2548 * Fixed TextHelper#pluralize to handle 1 as a string #5909 *rails@bencurtis.com*
2549
2550 * Improved resolution of DateHelper#distance_of_time_in_words for better precision #5994 *Bob Silva*
2551
2552 * Changed that uncaught exceptions raised any where in the application will cause RAILS_ROOT/public/500.html to be read and shown instead of just the static "Application error (Rails)" *David Heinemeier Hansson*
2553
2554 * Integration tests: thoroughly test ActionController::Integration::Session. #6022 *Kevin Clark*
2555 (tests skipped unless you `gem install mocha`)
2556
2557 * Added deprecation language for pagination which will become a plugin by Rails 2.0 *David Heinemeier Hansson*
2558
2559 * Added deprecation language for in_place_editor and auto_complete_field that both pieces will become plugins by Rails 2.0 *David Heinemeier Hansson*
2560
2561 * Deprecated all of ActionController::Dependencies. All dependency loading is now handled from Active Support *David Heinemeier Hansson*
2562
2563 * Added assert_select* for CSS selector-based testing (deprecates assert_tag) #5936 *assaf.arkin@gmail.com*
2564
2565 * radio_button_tag generates unique id attributes. #3353 *Bob Silva, somekool@gmail.com*
2566
2567 * strip_tags passes through blank args such as nil or "". #2229, #6702 *duncan@whomwah.com, dharana*
2568
2569 * Cleanup assert_tag :children counting. #2181 *jamie@bravenet.com*
2570
2571 * button_to accepts :method so you can PUT and DELETE with it. #6005 *Dan Webb*
2572
2573 * Update sanitize text helper to strip plaintext tags, and <img src="javascript:bang">. *Rick Olson*
2574
2575 * Update routing documentation. Closes #6017 *Nathan Witmer*
2576
2577 * Add routing tests to assert that RoutingError is raised when conditions aren't met. Closes #6016 *Nathan Witmer*
2578
2579 * Deprecation: update docs. #5998 *Jakob Skjerning, Kevin Clark*
2580
2581 * Make auto_link parse a greater subset of valid url formats. *Jamis Buck*
2582
2583 * Integration tests: headers beginning with X aren't excluded from the HTTP_ prefix, so X-Requested-With becomes HTTP_X_REQUESTED_WITH as expected. *Mike Clark*
2584
2585 * Tighten rescue clauses. #5985 *james@grayproductions.net*
2586
2587 * Fix send_data documentation typo. #5982 *brad@madriska.com*
2588
2589 * Switch to using FormEncodedPairParser for parsing request parameters. *Nicholas Seckar, David Heinemeier Hansson*
2590
2591 * respond_to .html now always renders #{action_name}.rhtml so that registered custom template handlers do not override it in priority. Custom mime types require a block and throw proper error now. *Tobias Lütke*
2592
2593 * Deprecation: test deprecated instance vars in partials. *Jeremy Kemper*
2594
2595 * Add UrlWriter to allow writing urls from Mailers and scripts. *Nicholas Seckar*
2596
2597 * Clean up and run the Active Record integration tests by default. #5854 *Kevin Clark, Jeremy Kemper*
2598
2599 * Correct example in cookies docs. #5832 *jessemerriman@warpmail.net*
2600
2601 * Updated to script.aculo.us 1.6.2 *Thomas Fuchs*
2602
2603 * Relax Routing's anchor pattern warning; it was preventing use of [^/] inside restrictions. *Nicholas Seckar*
2604
2605 * Add controller_paths variable to Routing. *Nicholas Seckar*
2606
2607 * Fix assert_redirected_to issue with named routes for module controllers. *Rick Olson*
2608
2609 * Tweak RoutingError message to show option diffs, not just missing named route significant keys. *Rick Olson*
2610
2611 * Invoke method_missing directly on hidden actions. Closes #3030. *Nicholas Seckar*
2612
2613 * Require Tempfile explicitly for TestUploadedFile due to changes in class auto loading. *Rick Olson*
2614
2615 * Add RoutingError exception when RouteSet fails to generate a path from a Named Route. *Rick Olson*
2616
2617 * Replace Reloadable with Reloadable::Deprecated. *Nicholas Seckar*
2618
2619 * Deprecation: check whether instance variables have been monkeyed with before assigning them to deprecation proxies. Raises a RuntimeError if so. *Jeremy Kemper*
2620
2621 * Add support for the param_name parameter to the auto_complete_field helper. #5026 *david.a.williams@gmail.com*
2622
2623 * Deprecation! @params, @session, @flash will be removed after 1.2. Use the corresponding instance methods instead. You'll get printed warnings during tests and logged warnings in dev mode when you access either instance variable directly. *Jeremy Kemper*
2624
2625 * Make Routing noisy when an anchor regexp is assigned to a segment. #5674 *François Beausoleil*
2626