Skip to content
This repository
Newer
Older
100644 5868 lines (3373 sloc) 300.292 kb
86748233 »
2012-03-02 Add CHANGELOG entry
1 ## Rails 3.2.3 (unreleased) ##
2
520571ac »
2012-03-03 Turn off verbose mode of rack-cache, we still have X-Rack-Cache to ch…
3 * Turn off verbose mode of rack-cache, we still have X-Rack-Cache to
4 check that info. Closes #5245. *Santiago Pastorino*
5
86748233 »
2012-03-02 Add CHANGELOG entry
6 * Fix #5238, rendered_format is not set when template is not rendered. *Piotr Sarnacki*
7
3bfd6516 »
2012-03-09 changelog updates [ci skip]
8 * Upgrade rack-cache to 1.2. *José Valim*
9
10 * ActionController::SessionManagement is deprecated. *Santiago Pastorino*
11
12 * Since the router holds references to many parts of the system like engines, controllers and the application itself, inspecting the route set can actually be really slow, therefore we default alias inspect to to_s. *José Valim*
13
14 * Add a new line after the textarea opening tag. Closes #393 *rafaelfranca*
15
16 * Always pass a respond block from to responder. We should let the responder to decide what to do with the given overridden response block, and not short circuit it. *sikachu*
17
18 * Fixes layout rendering regression from 3.2.2. *José Valim*
86748233 »
2012-03-02 Add CHANGELOG entry
19
2e5ec3b3 »
2012-01-27 Merge check box fixes from remote-tracking branch 'cantonio/checkbox-…
20 ## Rails 3.2.2 (unreleased) ##
21
82d6dedc »
2012-02-22 Fix CHANGELOG
22 * Format lookup for partials is derived from the format in which the template is being rendered. Closes #5025 part 2 *Santiago Pastorino*
110b43c8 »
2012-02-22 Add CHANGELOG entry
23
82d6dedc »
2012-02-22 Fix CHANGELOG
24 * Use the right format when a partial is missing. Closes #5025. *Santiago Pastorino*
b1229685 »
2012-02-21 Add CHANGELOG entry
25
567ac65b »
2012-02-03 Fix override API response bug in respond_with
26 * Default responder will now always use your overridden block in `respond_with` to render your response. *Prem Sichanugrist*
27
2e5ec3b3 »
2012-01-27 Merge check box fixes from remote-tracking branch 'cantonio/checkbox-…
28 * check_box helper with :disabled => true will generate a disabled hidden field to conform with the HTML convention where disabled fields are not submitted with the form.
29 This is a behavior change, previously the hidden tag had a value of the disabled checkbox.
30 *Tadas Tamosauskas*
31
86748233 »
2012-03-02 Add CHANGELOG entry
32
97e8d1d8 »
2012-01-26 CHANGELOG revision for v3.2.1
33 ## Rails 3.2.1 (January 26, 2012) ##
34
35 * Documentation improvements.
36
37 * Allow `form.select` to accept ranges (regression). *Jeremy Walker*
38
39 * `datetime_select` works with -/+ infinity dates. *Joe Van Dyk*
40
41
f36dcaf4 »
2012-01-20 Preparing for 3.2.0 release
42 ## Rails 3.2.0 (January 20, 2012) ##
281272ad »
2011-11-04 Convert CHANGELOGs to Markdown format.
43
ae7037eb »
2012-01-18 Update CHANGELOG and docs for config.assets.logger
44 * Setting config.assets.logger to false turn off Sprockets logger *Guillermo Iguaran*
45
ed0f0ad3 »
2012-01-17 Update changelog
46 * Add `config.action_dispatch.default_charset` to configure default charset for ActionDispatch::Response. *Carlos Antonio da Silva*
47
48 * Deprecate setting default charset at controller level, use the new `config.action_dispatch.default_charset` instead. *Carlos Antonio da Silva*
49
50 * Deprecate ActionController::UnknownAction in favour of AbstractController::ActionNotFound. *Carlos Antonio da Silva*
51
52 * Deprecate ActionController::DoubleRenderError in favour of AbstractController::DoubleRenderError. *Carlos Antonio da Silva*
53
54 * Deprecate method_missing handling for not found actions, use action_missing instead. *Carlos Antonio da Silva*
55
56 * Deprecate ActionController#rescue_action, ActionController#initialize_template_class, and ActionController#assign_shortcuts.
57 These methods were not being used internally anymore and are going to be removed in Rails 4. *Carlos Antonio da Silva*
58
c4c6bebe »
2012-01-17 Add option to configure Sprockets logger
59 * Add config.assets.logger to configure Sprockets logger *Rafael França*
60
c159b01b »
2012-01-13 Use a BodyProxy instead of including a Module that responds to close.
61 * Use a BodyProxy instead of including a Module that responds to
62 close. Closes #4441 if Active Record is disabled assets are delivered
63 correctly *Santiago Pastorino*
64
6f48fb3a »
2012-01-10 Add CHANGELOG entry
65 * Rails initialization with initialize_on_precompile = false should set assets_dir *Santiago Pastorino*
66
0d7d3a6e »
2012-01-03 Add font_path helper method
67 * Add font_path helper method *Santiago Pastorino*
68
a0fd9fb0 »
2011-12-28 Add CHANGELOG entry
69 * Depends on rack ~> 1.4.0 *Santiago Pastorino*
70
fc429980 »
2011-12-24 Update CHANGELOGs.
71 * Add :gzip option to `caches_page`. The default option can be configured globally using `page_cache_compression` *Andrey Sitnik*
72
6481bc5f »
2011-12-16 Update CHANGELOGs and guides.
73 * The ShowExceptions middleware now accepts a exceptions application that is responsible to render an exception when the application fails. The application is invoked with a copy of the exception in `env["action_dispatch.exception"]` and with the PATH_INFO rewritten to the status code. *José Valim*
74
3f65e7f7 »
2011-12-10 Add button_tag support to ActionView::Helpers::FormBuilder.
75 * Add `button_tag` support to ActionView::Helpers::FormBuilder.
76
77 This support mimics the default behavior of `submit_tag`.
78
79 Example:
80
81 <%= form_for @post do |f| %>
82 <%= f.button %>
83 <% end %>
84
ed0f0ad3 »
2012-01-17 Update changelog
85 * Date helpers accept a new option, `:use_two_digit_numbers = true`, that renders select boxes for months and days with a leading zero without changing the respective values.
dc43e402 »
2011-12-11 Added :use_two_digit_numbers option [Lennart Fridén & Kim Persson]
86 For example, this is useful for displaying ISO8601-style dates such as '2011-08-01'. *Lennart Fridén and Kim Persson*
87
22a6079a »
2011-12-09 Make ActiveSupport::Benchmarkable a default module for ActionControll…
88 * Make ActiveSupport::Benchmarkable a default module for ActionController::Base, so the #benchmark method is once again available in the controller context like it used to be *DHH*
89
5ad52152 »
2011-12-09 Deprecate implicit layout lookup in favor of inheriting the _layout c…
90 * Deprecated implied layout lookup in controllers whose parent had a explicit layout set:
91
92 class ApplicationController
93 layout "application"
94 end
95
96 class PostsController < ApplicationController
97 end
98
99 In the example above, Posts controller will no longer automatically look up for a posts layout.
100
101 If you need this functionality you could either remove `layout "application"` from ApplicationController or explicitly set it to nil in PostsController. *José Valim*
102
18ceed20 »
2011-12-06 Allow layout fallback when using `layout` method
103 * Rails will now use your default layout (such as "layouts/application") when you specify a layout with `:only` and `:except` condition, and those conditions fail. *Prem Sichanugrist*
104
105 For example, consider this snippet:
106
107 class CarsController
108 layout 'single_car', :only => :show
109 end
110
111 Rails will use 'layouts/single_car' when a request comes in `:show` action, and use 'layouts/application' (or 'layouts/cars', if exists) when a request comes in for any other actions.
112
e29773f8 »
2011-12-04 form_for with +:as+ option uses "action_as" as css class and id
113 * form_for with +:as+ option uses "#{action}_#{as}" as css class and id:
114
115 Before:
116
117 form_for(@user, :as => 'client') # => "<form class="client_new">..."
118
119 Now:
120
121 form_for(@user, :as => 'client') # => "<form class="new_client">..."
122
123 *Vasiliy Ermolovich*
124
07f90f6b »
2011-12-01 Merge branch 'exceptions' with the following features:
125 * Allow rescue responses to be configured through a railtie as in `config.action_dispatch.rescue_responses`. Please look at ActiveRecord::Railtie for an example *José Valim*
126
218c2729 »
2011-12-01 Allow fresh_when/stale? to take a record instead of an options hash […
127 * Allow fresh_when/stale? to take a record instead of an options hash *DHH*
128
1e51cd95 »
2011-12-01 Update CHANGELOG.
129 * Assets should use the request protocol by default or default to relative if no request is available *Jonathan del Strother*
130
131 * Log "Filter chain halted as CALLBACKNAME rendered or redirected" every time a before callback halts *José Valim*
38ab982c »
2011-11-30 Log 'Filter chain halted as CALLBACKNAME rendered or redirected' ever…
132
25592569 »
2011-11-28 update CHANGELOG
133 * You can provide a namespace for your form to ensure uniqueness of id attributes on form elements.
134 The namespace attribute will be prefixed with underscore on the generate HTML id. *Vasiliy Ermolovich*
135
136 Example:
137
138 <%= form_for(@offer, :namespace => 'namespace') do |f| %>
139 <%= f.label :version, 'Version' %>:
140 <%= f.text_field :version %>
141 <% end %>
142
654df86b »
2011-12-16 Show detailed exceptions no longer returns true if the request is loc…
143 * Refactor ActionDispatch::ShowExceptions. The controller is responsible for choosing to show exceptions when `consider_all_requests_local` is false.
3a1d5195 »
2011-11-22 deprecation warning, changelog entry
144
654df86b »
2011-12-16 Show detailed exceptions no longer returns true if the request is loc…
145 It's possible to override `show_detailed_exceptions?` in controllers to specify which requests should provide debugging information on errors. The default value is now false, meaning local requests in production will no longer show the detailed exceptions page unless `show_detailed_exceptions?` is overridden and set to `request.local?`.
3a1d5195 »
2011-11-22 deprecation warning, changelog entry
146
281272ad »
2011-11-04 Convert CHANGELOGs to Markdown format.
147 * Responders now return 204 No Content for API requests without a response body (as in the new scaffold) *José Valim*
148
149 * Added ActionDispatch::RequestId middleware that'll make a unique X-Request-Id header available to the response and enables the ActionDispatch::Request#uuid method. This makes it easy to trace requests from end-to-end in the stack and to identify individual requests in mixed logs like Syslog *DHH*
150
151 * Limit the number of options for select_year to 1000.
152
153 Pass the :max_years_allowed option to set your own limit.
154
155 *Libo Cannici*
156
157 * Passing formats or handlers to render :template and friends is deprecated. For example: *Nick Sutterer & José Valim*
158
159 render :template => "foo.html.erb"
160
161 Instead, you can provide :handlers and :formats directly as option:
162 render :template => "foo", :formats => [:html, :js], :handlers => :erb
163
164 * Changed log level of warning for missing CSRF token from :debug to :warn. *Mike Dillon*
165
166 * content_tag_for and div_for can now take the collection of records. It will also yield the record as the first argument if you set a receiving argument in your block *Prem Sichanugrist*
167
168 So instead of having to do this:
169
170 @items.each do |item|
171 content_tag_for(:li, item) do
172 Title: <%= item.title %>
173 end
174 end
175
176 You can now do this:
177
178 content_tag_for(:li, @items) do |item|
179 Title: <%= item.title %>
180 end
181
182 * send_file now guess the mime type *Esad Hajdarevic*
183
184 * Mime type entries for PDF, ZIP and other formats were added *Esad Hajdarevic*
185
186 * Generate hidden input before select with :multiple option set to true.
187 This is useful when you rely on the fact that when no options is set,
188 the state of select will be sent to rails application. Without hidden field
189 nothing is sent according to HTML spec *Bogdan Gusiev*
190
191 * Refactor ActionController::TestCase cookies *Andrew White*
192
193 Assigning cookies for test cases should now use cookies[], e.g:
194
195 cookies[:email] = 'user@example.com'
196 get :index
197 assert_equal 'user@example.com', cookies[:email]
198
199 To clear the cookies, use clear, e.g:
200
201 cookies.clear
202 get :index
203 assert_nil cookies[:email]
204
205 We now no longer write out HTTP_COOKIE and the cookie jar is
206 persistent between requests so if you need to manipulate the environment
207 for your test you need to do it before the cookie jar is created.
208
677f968b »
2011-12-08 Add information to the changelog about the changes to ActionControlle…
209 * ActionController::ParamsWrapper on ActiveRecord models now only wrap
210 attr_accessible attributes if they were set, if not, only the attributes
211 returned by the class method attribute_names will be wrapped. This fixes
212 the wrapping of nested attributes by adding them to attr_accessible.
213
9be2353f »
2011-12-06 Sync AP CHANGELOG with 3-1-stable
214 ## Rails 3.1.4 (unreleased) ##
215
216 * Allow to use asset_path on named_routes aliasing RailsHelper's
217 asset_path to path_to_asset *Adrian Pike*
218
219 * Assets should use the request protocol by default or default to
220 relative if no request is available *Jonathan del Strother*
221
603a679e »
2011-11-19 Don't html-escape the :count option to translate if it's a Numeric. F…
222 ## Rails 3.1.3 (unreleased) ##
223
224 * Fix using `tranlate` helper with a html translation which uses the `:count` option for
225 pluralization.
226
227 *Jon Leighton*
228
fc988115 »
2011-11-06 Implement a workaround for a bug in ruby-1.9.3p0.
229 ## Rails 3.1.2 (unreleased) ##
230
e8d57f36 »
2011-11-17 _html translation should escape interpolated arguments
231 * Fix XSS security vulnerability in the `translate` helper method. When using interpolation
232 in combination with HTML-safe translations, the interpolated input would not get HTML
233 escaped. *GH 3664*
234
235 Before:
236
237 translate('foo_html', :something => '<script>') # => "...<script>..."
238
239 After:
240
241 translate('foo_html', :something => '<script>') # => "...&lt;script&gt;..."
242
243 *Sergey Nartimov*
244
ca3b4689 »
2011-11-14 Sync changelog entry
245 * Upgrade sprockets dependency to ~> 2.1.0
246
da02f792 »
2011-11-14 Sync CHANGELOGs from 3-1-stable
247 * Ensure that the format isn't applied twice to the cache key, else it becomes impossible
248 to target with expire_action.
249
250 *Christopher Meiklejohn*
251
252 * Swallow error when can't unmarshall object from session.
253
254 *Bruno Zanchet*
255
fc988115 »
2011-11-06 Implement a workaround for a bug in ruby-1.9.3p0.
256 * Implement a workaround for a bug in ruby-1.9.3p0 where an error would be raised
257 while attempting to convert a template from one encoding to another.
258
259 Please see http://redmine.ruby-lang.org/issues/5564 for details of the bug.
260
261 The workaround is to load all conversions into memory ahead of time, and will
262 only happen if the ruby version is *exactly* 1.9.3p0. The hope is obviously that
263 the underlying problem will be resolved in the next patchlevel release of
264 1.9.3.
265
266 *Jon Leighton*
281272ad »
2011-11-04 Convert CHANGELOGs to Markdown format.
267
da02f792 »
2011-11-14 Sync CHANGELOGs from 3-1-stable
268 * Ensure users upgrading from 3.0.x to 3.1.x will properly upgrade their flash object in session (issues #3298 and #2509)
269
281272ad »
2011-11-04 Convert CHANGELOGs to Markdown format.
270 ## Rails 3.1.1 (unreleased) ##
271
272 * javascript_path and stylesheet_path now refer to /assets if asset pipelining
273 is on. [Santiago Pastorino]
274 * button_to support form option. Now you're able to pass for example
275 'data-type' => 'json'. [ihower]
276 * image_path and image_tag should use /assets if asset pipelining is turned
277 on. Closes #3126 [Santiago Pastorino and christos]
278 * Avoid use of existing precompiled assets during rake assets:precompile run.
279 Closes #3119 [Guillermo Iguaran]
280 * Copy assets to nondigested filenames too *Santiago Pastorino*
281
282 * Give precedence to `config.digest = false` over the existence of
283 manifest.yml asset digests [christos]
284 * escape options for the stylesheet_link_tag method *Alexey Vakhov*
285
286 * Re-launch assets:precompile task using (Rake.)ruby instead of Kernel.exec so
287 it works on Windows [cablegram]
288 * env var passed to process shouldn't be modified in process method. [Santiago
289 Pastorino]
290 * `rake assets:precompile` loads the application but does not initialize
291 it.
292 To the app developer, this means configuration add in
293 config/initializers/* will not be executed.
294 Plugins developers need to special case their initializers that are
295 meant to be run in the assets group by adding :group => :assets. *José Valim*
296
297 * Sprockets uses config.assets.prefix for asset_path *asee*
298
299 * FileStore key_file_path properly limit filenames to 255 characters. *phuibonhoa*
300
301 * Fix Hash#to_query edge case with html_safe strings. *brainopia*
302
303 * Allow asset tag helper methods to accept :digest => false option in order to completely avoid the digest generation.
304 Useful for linking assets from static html files or from emails when the user could probably look at an older html email with an older asset. [Santiago Pastorino]
305 * Don't mount Sprockets server at config.assets.prefix if config.assets.compile is false. *Mark J. Titorenko*
306
307 * Set relative url root in assets when controller isn't available for Sprockets (eg. Sass files using asset_path). Fixes #2435 *Guillermo Iguaran*
308
309 * Fix basic auth credential generation to not make newlines. GH #2882
310
311 * Fixed the behavior of asset pipeline when config.assets.digest and config.assets.compile are false and requested asset isn't precompiled.
312 Before the requested asset were compiled anyway ignoring that the config.assets.compile flag is false. *Guillermo Iguaran*
313
314 * CookieJar is now Enumerable. Fixes #2795
315
316 * Fixed AssetNotPrecompiled error raised when rake assets:precompile is compiling certain .erb files. See GH #2763 #2765 #2805 *Guillermo Iguaran*
317
318 * Manifest is correctly placed in assets path when default assets prefix is changed. Fixes #2776 *Guillermo Iguaran*
319
320 * Fixed stylesheet_link_tag and javascript_include_tag to respect additional options passed by the users when debug is on. *Guillermo Iguaran*
321
322
323 ## Rails 3.1.0 (August 30, 2011) ##
324
325 * Param values are `paramified` in controller tests. *David Chelimsky*
326
327 * x_sendfile_header now defaults to nil and config/environments/production.rb doesn't set a particular value for it. This allows servers to set it through X-Sendfile-Type. *Santiago Pastorino*
328
329 * The submit form helper does not generate an id "object_name_id" anymore. *fbrusatti*
330
331 * Make sure respond_with with :js tries to render a template in all cases *José Valim*
332
333 * json_escape will now return a SafeBuffer string if it receives SafeBuffer string *tenderlove*
334
335 * Make sure escape_js returns SafeBuffer string if it receives SafeBuffer string *Prem Sichanugrist*
336
337 * Fix escape_js to work correctly with the new SafeBuffer restriction *Paul Gallagher*
338
339 * Brought back alternative convention for namespaced models in i18n *thoefer*
340
341 Now the key can be either "namespace.model" or "namespace/model" until further deprecation.
342
343 * It is prohibited to perform a in-place SafeBuffer mutation *tenderlove*
344
345 The old behavior of SafeBuffer allowed you to mutate string in place via
346 method like `sub!`. These methods can add unsafe strings to a safe buffer,
347 and the safe buffer will continue to be marked as safe.
348
349 An example problem would be something like this:
350
351 <%= link_to('hello world', @user).sub!(/hello/, params[:xss]) %>
352
353 In the above example, an untrusted string (`params[:xss]`) is added to the
354 safe buffer returned by `link_to`, and the untrusted content is successfully
355 sent to the client without being escaped. To prevent this from happening
356 `sub!` and other similar methods will now raise an exception when they are called on a safe buffer.
357
358 In addition to the in-place versions, some of the versions of these methods which return a copy of the string will incorrectly mark strings as safe. For example:
359
360 <%= link_to('hello world', @user).sub(/hello/, params[:xss]) %>
361
362 The new versions will now ensure that *all* strings returned by these methods on safe buffers are marked unsafe.
363
364 You can read more about this change in http://groups.google.com/group/rubyonrails-security/browse_thread/thread/2e516e7acc96c4fb
365
366 * Warn if we cannot verify CSRF token authenticity *José Valim*
367
368 * Allow AM/PM format in datetime selectors *Aditya Sanghi*
369
370 * Only show dump of regular env methods on exception screen (not all the rack crap) *DHH*
371
372 * auto_link has been removed with no replacement. If you still use auto_link
373 please install the rails_autolink gem:
374 http://github.com/tenderlove/rails_autolink
375
376 *tenderlove*
377
378 * Added streaming support, you can enable it with: *José Valim*
379
380 class PostsController < ActionController::Base
381 stream :only => :index
382 end
383
384 Please read the docs at `ActionController::Streaming` for more information.
385
386 * Added `ActionDispatch::Request.ignore_accept_header` to ignore accept headers and only consider the format given as parameter *José Valim*
387
388 * Created `ActionView::Renderer` and specified an API for `ActionView::Context`, check those objects for more information *José Valim*
389
390 * Added `ActionController::ParamsWrapper` to wrap parameters into a nested hash, and will be turned on for JSON request in new applications by default *Prem Sichanugrist*
391
392 This can be customized by setting `ActionController::Base.wrap_parameters` in `config/initializer/wrap_parameters.rb`
393
394 * RJS has been extracted out to a gem. *fxn*
395
396 * Implicit actions named not_implemented can be rendered. *Santiago Pastorino*
397
398 * Wildcard route will always match the optional format segment by default. *Prem Sichanugrist*
399
400 For example if you have this route:
401
402 match '*pages' => 'pages#show'
403
404 by requesting '/foo/bar.json', your `params[:pages]` will be equals to "foo/bar" with the request format of JSON. If you want the old 3.0.x behavior back, you could supply `:format => false` like this:
405
406 match '*pages' => 'pages#show', :format => false
407
408 * Added Base.http_basic_authenticate_with to do simple http basic authentication with a single class method call *DHH*
409
410 class PostsController < ApplicationController
411 USER_NAME, PASSWORD = "dhh", "secret"
412
413 before_filter :authenticate, :except => [ :index ]
414
415 def index
416 render :text => "Everyone can see me!"
417 end
418
419 def edit
420 render :text => "I'm only accessible if you know the password"
421 end
422
423 private
424 def authenticate
425 authenticate_or_request_with_http_basic do |user_name, password|
426 user_name == USER_NAME && password == PASSWORD
427 end
428 end
429 end
430
431 ..can now be written as
432
433 class PostsController < ApplicationController
434 http_basic_authenticate_with :name => "dhh", :password => "secret", :except => :index
435
436 def index
437 render :text => "Everyone can see me!"
438 end
439
440 def edit
441 render :text => "I'm only accessible if you know the password"
442 end
443 end
444
445 * Allow you to add `force_ssl` into controller to force browser to transfer data via HTTPS protocol on that particular controller. You can also specify `:only` or `:except` to specific it to particular action. *DHH and Prem Sichanugrist*
446
447 * Allow FormHelper#form_for to specify the :method as a direct option instead of through the :html hash *DHH*
448
449 form_for(@post, remote: true, method: :delete) instead of form_for(@post, remote: true, html: { method: :delete })
450
451 * Make JavaScriptHelper#j() an alias for JavaScriptHelper#escape_javascript() -- note this then supersedes the Object#j() method that the JSON gem adds within templates using the JavaScriptHelper *DHH*
452
453 * Sensitive query string parameters (specified in config.filter_parameters) will now be filtered out from the request paths in the log file. *Prem Sichanugrist, fxn*
454
455 * URL parameters which return false for to_param now appear in the query string (previously they were removed) *Andrew White*
456
457 * URL parameters which return nil for to_param are now removed from the query string *Andrew White*
458
459 * ActionDispatch::MiddlewareStack now uses composition over inheritance. It is
460 no longer an array which means there may be methods missing that were not tested.
461 * Add an :authenticity_token option to form_tag for custom handling or to omit the token (pass :authenticity_token => false). *Jakub Kuźma, Igor Wiedler*
462
463 * HTML5 button_tag helper. *Rizwan Reza*
464
465 * Template lookup now searches further up in the inheritance chain. *Artemave*
466
467 * Brought back config.action_view.cache_template_loading, which allows to decide whether templates should be cached or not. *Piotr Sarnacki*
468
469 * url_for and named url helpers now accept :subdomain and :domain as options, *Josh Kalderimis*
470
471 * The redirect route method now also accepts a hash of options which will only change the parts of the url in question, or an object which responds to call, allowing for redirects to be reused (check the documentation for examples). *Josh Kalderimis*
472
473 * Added config.action_controller.include_all_helpers. By default 'helper :all' is done in ActionController::Base, which includes all the helpers by default. Setting include_all_helpers to false will result in including only application_helper and helper corresponding to controller (like foo_helper for foo_controller). *Piotr Sarnacki*
474
475 * Added a convenience idiom to generate HTML5 data-* attributes in tag helpers from a :data hash of options:
476
477 tag("div", :data => {:name => 'Stephen', :city_state => %w(Chicago IL)})
478 # => <div data-name="Stephen" data-city-state="[&quot;Chicago&quot;,&quot;IL&quot;]" />
479
480 Keys are dasherized. Values are JSON-encoded, except for strings and symbols. *Stephen Celis*
481
482 * Deprecate old template handler API. The new API simply requires a template handler to respond to call. *José Valim*
483
484 * :rhtml and :rxml were finally removed as template handlers. *José Valim*
485
486 * Moved etag responsibility from ActionDispatch::Response to the middleware stack. *José Valim*
487
488 * Rely on Rack::Session stores API for more compatibility across the Ruby world. This is backwards incompatible since Rack::Session expects #get_session to accept 4 arguments and requires #destroy_session instead of simply #destroy. *José Valim*
489
490 * file_field automatically adds :multipart => true to the enclosing form. *Santiago Pastorino*
491
492 * Renames csrf_meta_tag -> csrf_meta_tags, and aliases csrf_meta_tag for backwards compatibility. *fxn*
493
494 * Add Rack::Cache to the default stack. Create a Rails store that delegates to the Rails cache, so by default, whatever caching layer you are using will be used for HTTP caching. Note that Rack::Cache will be used if you use #expires_in, #fresh_when or #stale with :public => true. Otherwise, the caching rules will apply to the browser only. *Yehuda Katz, Carl Lerche*
495
496
497 ## Rails 3.0.7 (April 18, 2011) ##
498
499 * No changes.
500
501
502 * Rails 3.0.6 (April 5, 2011)
503
504 * Fixed XSS vulnerability in `auto_link`. `auto_link` no longer marks input as
505 html safe. Please make sure that calls to auto_link() are wrapped in a
506 sanitize(), or a raw() depending on the type of input passed to auto_link().
507 For example:
508
509 <%= sanitize(auto_link(some_user_input)) %>
510
511 Thanks to Torben Schulz for reporting this. The fix can be found here:
512 61ee3449674c591747db95f9b3472c5c3bd9e84d
513
514 * Fixes the output of `rake routes` to be correctly match to the behavior of the application, as the regular expression used to match the path is greedy and won't capture the format part by default *Prem Sichanugrist*
515
516 * Fixes an issue with number_to_human when converting values which are less than 1 but greater than -1 *Josh Kalderimis*
517
518 * Sensitive query string parameters (specified in config.filter_parameters) will now be filtered out from the request paths in the log file. *Prem Sichanugrist, fxn*
519
520 * URL parameters which return nil for to_param are now removed from the query string *Andrew White*
521
522 * Don't allow i18n to change the minor version, version now set to ~> 0.5.0 *Santiago Pastorino*
523
524 * Make TranslationHelper#translate use the :rescue_format option in I18n 0.5.0 *Sven Fuchs*
525
526 * Fix regression: javascript_include_tag shouldn't raise if you register an expansion key with nil or [] value *Santiago Pastorino*
527
528 * Fix Action caching bug where an action that has a non-cacheable response always renders a nil response body. It now correctly renders the response body. *Cheah Chu Yeow*
529
530
531 ## Rails 3.0.5 (February 26, 2011) ##
532
533 * No changes.
534
535
536 ## Rails 3.0.4 (February 8, 2011) ##
537
538 * No changes.
539
540
541 ## Rails 3.0.3 (November 16, 2010) ##
542
543 * When ActiveRecord::Base objects are sent to predicate methods, the id of the object should be sent to ARel, not the ActiveRecord::Base object.
544
545 * :constraints routing should only do sanity checks against regular expressions. String arguments are OK.
546
547
548 ## Rails 3.0.2 (November 15, 2010) ##
549
550 * The helper number_to_currency accepts a new :negative_format option to be able to configure how to render negative amounts. *Don Wilson*
551
552
553 ## Rails 3.0.1 (October 15, 2010) ##
554
555 * No Changes, just a version bump.
556
557
558 ## Rails 3.0.0 (August 29, 2010) ##
559
560 * password_field renders with nil value by default making the use of passwords secure by default, if you want to render you should do for instance f.password_field(:password, :value => @user.password) *Santiago Pastorino*
561
562 * Symbols and strings in routes should yield the same behavior. Note this may break existing apps that were using symbols with the new routes API. *José Valim*
563
564 * Add clear_helpers as a way to clean up all helpers added to this controller, maintaining just the helper with the same name as the controller. *José Valim*
565
566 * Support routing constraints in functional tests. *Andrew White*
567
568 * Add a header that tells Internet Explorer (all versions) to use the best available standards support. *Yehuda Katz*
569
570 * Allow stylesheet/javascript extensions to be changed through railties. *Josh Kalderimis*
571
572 * link_to, button_to, and tag/tag_options now rely on html_escape instead of escape_once. *fxn*
573
574 * url_for returns always unescaped strings, and the :escape option is gone. *fxn*
575
576 * Added accept-charset parameter and _snowman hidden field to force the contents
577 of Rails POSTed forms to be in UTF-8 *Yehuda Katz*
578
579 * Upgrade to Rack 1.2.1 *Jeremy Kemper*
580
581 * Allow :path to be given to match/get/post/put/delete instead of :path_names in the new router *Carlos Antônio da Silva*
582
583 * Added resources_path_names to the new router DSL *José Valim*
584
585 * Allow options to be given to the namespace method in the new router *Carlos Antônio da Silva*
586
587 * Deprecate :name_prefix in the new router DSL *José Valim*
588
589 * Add shallow routes back to the new router *Diego Carrion, Andrew White*
590
591 resources :posts do
592 shallow do
593 resources :comments
594 end
595 end
596
597 You can now use comment_path for /comments/1 instead of post_comment_path for /posts/1/comments/1.
598
599 * Add support for multi-subdomain session by setting cookie host in session cookie so you can share session between www.example.com, example.com and user.example.com. #4818 *Guillermo Álvarez*
600
601 * Removed textilize, textilize_without_paragraph and markdown helpers. *Santiago Pastorino*
602
603 * Remove middleware laziness *José Valim*
604
605 * Make session stores rely on request.cookie_jar and change set_session semantics to return the cookie value instead of a boolean. *José Valim*
606
607 * OAuth 2: HTTP Token Authorization support to complement Basic and Digest Authorization. *Rick Olson*
608
609 * Fixed inconsistencies in form builder and view helpers #4432 *Neeraj Singh*
610
611 * Both :xml and :json renderers now forwards the given options to the model, allowing you to invoke them as render :xml => @projects, :include => :tasks *José Valim, Yehuda Katz*
612
613 * Renamed the field error CSS class from fieldWithErrors to field_with_errors for consistency. *Jeremy Kemper*
614
615 * Add support for shorthand routes like /projects/status(.:format) #4423 *Diego Carrion*
616
617 * Changed translate helper so that it doesn’t mark every translation as safe HTML. Only keys with a "_html" suffix and keys named "html" are considered to be safe HTML. All other translations are left untouched. *Craig Davey*
618
619 * New option :as added to form_for allows to change the object name. The old <% form_for :client, @post %> becomes <% form_for @post, :as => :client %> *spastorino*
620
621 * Removed verify method in controllers. *JV*
622 It's now available as a plugin at http://github.com/rails/verification
623
624 * Removed input, form, error_messages_for and error_message_on from views. *JV*
625 It's now available as a plugin at http://github.com/rails/dynamic_form
626
627 * Routes can be scoped by controller module. *Jeremy Kemper*
628
629 # /session => Auth::SessionsController
630 scope :module => 'auth' do
631 resource :session
632 end
633
634 * Added #favicon_link_tag, it uses #image_path so in particular the favicon gets an asset ID *fxn*
635
636 * Fixed that default locale templates should be used if the current locale template is missing *DHH*
637
638 * Added all the new HTML5 form types as individual form tag methods (search, url, number, etc) #3646 *Stephen Celis*
639
640 * Changed the object used in routing constraints to be an instance of
641 ActionDispatch::Request rather than Rack::Request *YK*
642
643 * Changed ActionDispatch::Request#method to return a String, to be compatible
644 with Rack::Request. Added ActionDispatch::Request#method_symbol to
645 return a symbol form of the request method. *YK*
646
647 * Changed ActionDispatch::Request#method to return the original
648 method and #request_method to return the overridden method in the
649 case of methodoverride being used (this means that #method returns
650 "HEAD" and #request_method returns "GET" in HEAD requests). This
651 is for compatibility with Rack::Request *YK*
652
653 * #concat is now deprecated in favor of using <%= %> helpers *YK*
654
655 * Block helpers now return Strings, so you can use <%= form_for @foo do |f| %>.
656 <% form_for do |f| %> still works with deprecation notices *YK*
657
658 * Add a new #mount method on the router that does not anchor the PATH_INFO
659 at the end *YK & CL*
660
661 * Create a new LookupContext object that is responsible for performantly
662 finding a template for a given pattern *JV*
663
664 * Removed relative_url_for in favor of respecting SCRIPT_NAME *YK & CL*
665
666 * Changed file streaming to use Rack::Sendfile middleware *YK*
667
668 * ActionDispatch::Request#content_type returns a String to be compatible with
669 Rack::Request. Use #content_mime_type for the Mime::Type instance *YK*
670
671 * Updated Prototype to 1.6.1 and Scriptaculous to 1.8.3 *ML*
672
673 * Change the preferred way that URL helpers are included into a class*YK & CL*
674
675 # for all helpers including named routes
676 include Rails.application.router.url_helpers
677
678 # for just url_for
679 include Rails.application.router.url_for
680
681 * Fixed that PrototypeHelper#update_page should return html_safe *DHH*
682
683 * Fixed that much of DateHelper wouldn't return html_safe? strings *DHH*
684
685 * Fixed that fragment caching should return a cache hit as html_safe (or it would all just get escaped) *DHH*
686
687 * Added that ActionController::Base now does helper :all instead of relying on the default ApplicationController in Rails to do it *DHH*
688
689 * Added ActionDispatch::Request#authorization to access the http authentication header regardless of its proxy hiding *DHH*
690
691 * Added :alert, :notice, and :flash as options to ActionController::Base#redirect_to that'll automatically set the proper flash before the redirection [DHH]. Examples:
692
693 flash[:notice] = 'Post was created'
694 redirect_to(@post)
695
696 ...becomes:
697
698 redirect_to(@post, :notice => 'Post was created')
699
700 * Added ActionController::Base#notice/= and ActionController::Base#alert/= as a convenience accessors in both the controller and the view for flash[:notice]/= and flash[:alert]/= *DHH*
701
702
703 * Introduce grouped_collection_select helper. #1249 *Dan Codeape, Erik Ostrom*
704
705 * Make sure javascript_include_tag/stylesheet_link_tag does not append ".js" or ".css" onto external urls. #1664 *Matthew Rudy Jacobs*
706
707 * Ruby 1.9: fix Content-Length for multibyte send_data streaming. #2661 *Sava Chankov*
708
709 * Ruby 1.9: ERB template encoding using a magic comment at the top of the file. *Jeremy Kemper*
710 <%# encoding: utf-8 %>
711
712 * Change integration test helpers to accept Rack environment instead of just HTTP Headers *Pratik Naik*
713
714 Before : get '/path', {}, 'Accept' => 'text/javascript'
715 After : get '/path', {}, 'HTTP_ACCEPT' => 'text/javascript'
716
717 * Instead of checking Rails.env.test? in Failsafe middleware, check env["rails.raise_exceptions"] *Bryan Helmkamp*
718
719 * Fixed that TestResponse.cookies was returning cookies unescaped #1867 *Doug McInnes*
720
721
722 ## 2.3.2 Final (March 15, 2009) ##
723
724 * Fixed that redirection would just log the options, not the final url (which lead to "Redirected to #<Post:0x23150b8>") *DHH*
725
726 * Don't check authenticity tokens for any AJAX requests *Ross Kaffenberger/Bryan Helmkamp*
727
728 * Added ability to pass in :public => true to fresh_when, stale?, and expires_in to make the request proxy cachable #2095 *Gregg Pollack*
729
730 * Fixed that passing a custom form builder would be forwarded to nested fields_for calls #2023 *Eloy Duran/Nate Wiger*
731
732 * Form option helpers now support disabled option tags and the use of lambdas for selecting/disabling option tags from collections #837 *Tekin*
733
734 * Added partial scoping to TranslationHelper#translate, so if you call translate(".foo") from the people/index.html.erb template, you'll actually be calling I18n.translate("people.index.foo") *DHH*
735
736 * Fix a syntax error in current_page?() that was prevent matches against URL's with multiple query parameters #1385, #1868 *chris finne/Andrew White*
737
738 * Added localized rescue template when I18n.locale is set (ex: public/404.da.html) #1835 *José Valim*
739
740 * Make the form_for and fields_for helpers support the new Active Record nested update options. #1202 *Eloy Duran*
741
742 <% form_for @person do |person_form| %>
743 ...
744 <% person_form.fields_for :projects do |project_fields| %>
745 <% if project_fields.object.active? %>
746 Name: <%= project_fields.text_field :name %>
747 <% end %>
748 <% end %>
749 <% end %>
750
751
752 * Added grouped_options_for_select helper method for wrapping option tags in optgroups. #977 *Jon Crawford*
753
754 * Implement HTTP Digest authentication. #1230 [Gregg Kellogg, Pratik Naik] Example :
755
756 class DummyDigestController < ActionController::Base
757 USERS = { "lifo" => 'world' }
758
759 before_filter :authenticate
760
761 def index
762 render :text => "Hello Secret"
763 end
764
765 private
766
767 def authenticate
768 authenticate_or_request_with_http_digest("Super Secret") do |username|
769 # Return the user's password
770 USERS[username]
771 end
772 end
773 end
774
775 * Improved i18n support for the number_to_human_size helper. Changes the storage_units translation data; update your translations accordingly. #1634 *Yaroslav Markin*
776 storage_units:
777 # %u is the storage unit, %n is the number (default: 2 MB)
778 format: "%n %u"
779 units:
780 byte:
781 one: "Byte"
782 other: "Bytes"
783 kb: "KB"
784 mb: "MB"
785 gb: "GB"
786 tb: "TB"
787
788 * Added :silence option to BenchmarkHelper#benchmark and turned log_level into a hash parameter and deprecated the old use *DHH*
789
790 * Fixed the AssetTagHelper cache to use the computed asset host as part of the cache key instead of just assuming the its a string #1299 *DHH*
791
792 * Make ActionController#render(string) work as a shortcut for render :file/:template/:action => string. [#1435] [Pratik Naik] Examples:
793
794 \# Instead of render(:action => 'other_action')
795 render('other_action') # argument has no '/'
796 render(:other_action)
797
798 \# Instead of render(:template => 'controller/action')
799 render('controller/action') # argument must not begin with a '/', but contain a '/'
800
801 \# Instead of render(:file => '/Users/lifo/home.html.erb')
802 render('/Users/lifo/home.html.erb') # argument must begin with a '/'
803
804 * Add :prompt option to date/time select helpers. #561 *Sam Oliver*
805
806 * Fixed that send_file shouldn't set an etag #1578 *Hongli Lai*
807
808 * Allow users to opt out of the spoofing checks in Request#remote_ip. Useful for sites whose traffic regularly triggers false positives. *Darren Boyd*
809
810 * Deprecated formatted_polymorphic_url. *Jeremy Kemper*
811
812 * Added the option to declare an asset_host as an object that responds to call (see http://github.com/dhh/asset-hosting-with-minimum-ssl for an example) *David Heinemeier Hansson*
813
814 * Added support for multiple routes.rb files (useful for plugin engines). This also means that draw will no longer clear the route set, you have to do that by hand (shouldn't make a difference to you unless you're doing some funky stuff) *David Heinemeier Hansson*
815
816 * Dropped formatted_* routes in favor of just passing in :format as an option. This cuts resource routes generation in half #1359 *aaronbatalion*
817
818 * Remove support for old double-encoded cookies from the cookie store. These values haven't been generated since before 2.1.0, and any users who have visited the app in the intervening 6 months will have had their cookie upgraded. *Michael Koziarski*
819
820 * Allow helpers directory to be overridden via ActionController::Base.helpers_dir #1424 *Sam Pohlenz*
821
822 * Remove deprecated ActionController::Base#assign_default_content_type_and_charset
823
824 * Changed the default of ActionView#render to assume partials instead of files when not given an options hash [David Heinemeier Hansson]. Examples:
825
826 # Instead of <%= render :partial => "account" %>
827 <%= render "account" %>
828
829 # Instead of <%= render :partial => "account", :locals => { :account => @buyer } %>
830 <%= render "account", :account => @buyer %>
831
832 # @account is an Account instance, so it uses the RecordIdentifier to replace
833 # <%= render :partial => "accounts/account", :locals => { :account => @account } %>
834 <%= render(@account) %>
835
836 # @posts is an array of Post instances, so it uses the RecordIdentifier to replace
837 # <%= render :partial => "posts/post", :collection => @posts %>
838 <%= render(@posts) %>
839
840 * Remove deprecated render_component. Please use the plugin from http://github.com/rails/render_component/tree/master *Pratik Naik*
841
842 * Fixed RedCloth and BlueCloth shouldn't preload. Instead just assume that they're available if you want to use textilize and markdown and let autoload require them *David Heinemeier Hansson*
843
844
845 ## 2.2.2 (November 21st, 2008) ##
846
847 * I18n: translate number_to_human_size. Add storage_units: [Bytes, KB, MB, GB, TB] to your translations. #1448 *Yaroslav Markin*
848
849 * Restore backwards compatible functionality for setting relative_url_root. Include deprecation
850
851 * Switched the CSRF module to use the request content type to decide if the request is forgeable. #1145 *Jeff Cohen*
852
853 * Added :only and :except to map.resources to let people cut down on the number of redundant routes in an application. Typically only useful for huge routesets. #1215 *Tom Stuart*
854
855 map.resources :products, :only => :show do |product|
856 product.resources :images, :except => :destroy
857 end
858
859 * Added render :js for people who want to render inline JavaScript replies without using RJS *David Heinemeier Hansson*
860
861 * Fixed that polymorphic_url should compact given array #1317 *hiroshi*
862
863 * Fixed the sanitize helper to avoid double escaping already properly escaped entities #683 *antonmos/Ryan McGeary*
864
865 * Fixed that FormTagHelper generated illegal html if name contained square brackets #1238 *Vladimir Dobriakov*
866
867 * Fix regression bug that made date_select and datetime_select raise a Null Pointer Exception when a nil date/datetime was passed and only month and year were displayed #1289 *Bernardo Padua/Tor Erik*
868
869 * Simplified the logging format for parameters (don't include controller, action, and format as duplicates) *David Heinemeier Hansson*
870
871 * Remove the logging of the Session ID when the session store is CookieStore *David Heinemeier Hansson*
872
873 * Fixed regex in redirect_to to fully support URI schemes #1247 *Seth Fitzsimmons*
874
875 * Fixed bug with asset timestamping when using relative_url_root #1265 *Joe Goldwasser*
876
877
878 ## 2.2.0 RC1 (October 24th, 2008) ##
879
880 * Fix incorrect closing CDATA delimiter and that HTML::Node.parse would blow up on unclosed CDATA sections *packagethief*
881
882 * Added stale? and fresh_when methods to provide a layer of abstraction above request.fresh? and friends [David Heinemeier Hansson]. Example:
883
884 class ArticlesController < ApplicationController
885 def show_with_respond_to_block
886 @article = Article.find(params[:id])
887
888
889 # If the request sends headers that differs from the options provided to stale?, then
890 # the request is indeed stale and the respond_to block is triggered (and the options
891 # to the stale? call is set on the response).
892 #
893 # If the request headers match, then the request is fresh and the respond_to block is
894 # not triggered. Instead the default render will occur, which will check the last-modified
895 # and etag headers and conclude that it only needs to send a "304 Not Modified" instead
896 # of rendering the template.
897 if stale?(:last_modified => @article.published_at.utc, :etag => @article)
898 respond_to do |wants|
899 # normal response processing
900 end
901 end
902 end
903
904 def show_with_implied_render
905 @article = Article.find(params[:id])
906
907 # Sets the response headers and checks them against the request, if the request is stale
908 # (i.e. no match of either etag or last-modified), then the default render of the template happens.
909 # If the request is fresh, then the default render will return a "304 Not Modified"
910 # instead of rendering the template.
911 fresh_when(:last_modified => @article.published_at.utc, :etag => @article)
912 end
913 end
914
915
916 * Added inline builder yield to atom_feed_helper tags where appropriate [Sam Ruby]. Example:
917
918 entry.summary :type => 'xhtml' do |xhtml|
919 xhtml.p pluralize(order.line_items.count, "line item")
920 xhtml.p "Shipped to #{order.address}"
921 xhtml.p "Paid by #{order.pay_type}"
922 end
923
924 * Make PrototypeHelper#submit_to_remote a wrapper around PrototypeHelper#button_to_remote. *Tarmo Tänav*
925
926 * Set HttpOnly for the cookie session store's cookie. #1046
927
928 * Added FormTagHelper#image_submit_tag confirm option #784 *Alastair Brunton*
929
930 * Fixed FormTagHelper#submit_tag with :disable_with option wouldn't submit the button's value when was clicked #633 *Jose Fernandez*
931
932 * Stopped logging template compiles as it only clogs up the log *David Heinemeier Hansson*
933
934 * Changed the X-Runtime header to report in milliseconds *David Heinemeier Hansson*
935
936 * Changed BenchmarkHelper#benchmark to report in milliseconds *David Heinemeier Hansson*
937
938 * Changed logging format to be millisecond based and skip misleading stats [David Heinemeier Hansson]. Went from:
939
940 Completed in 0.10000 (4 reqs/sec) | Rendering: 0.04000 (40%) | DB: 0.00400 (4%) | 200 OK [http://example.com]
941
942 ...to:
943
944 Completed in 100ms (View: 40, DB: 4) | 200 OK [http://example.com]
945
946 * Add support for shallow nesting of routes. #838 *S. Brent Faulkner*
947
948 Example :
949
950 map.resources :users, :shallow => true do |user|
951 user.resources :posts
952 end
953
954 - GET /users/1/posts (maps to PostsController#index action as usual)
955 named route "user_posts" is added as usual.
956
957 - GET /posts/2 (maps to PostsController#show action as if it were not nested)
958 Additionally, named route "post" is added too.
959
960 * Added button_to_remote helper. #3641 *Donald Piret, Tarmo Tänav*
961
962 * Deprecate render_component. Please use render_component plugin from http://github.com/rails/render_component/tree/master *Pratik Naik*
963
964 * Routes may be restricted to lists of HTTP methods instead of a single method or :any. #407 *Brennan Dunn, Gaius Centus Novus*
965 map.resource :posts, :collection => { :search => [:get, :post] }
966 map.session 'session', :requirements => { :method => [:get, :post, :delete] }
967
968 * Deprecated implicit local assignments when rendering partials *Josh Peek*
969
970 * Introduce current_cycle helper method to return the current value without bumping the cycle. #417 *Ken Collins*
971
972 * Allow polymorphic_url helper to take url options. #880 *Tarmo Tänav*
973
974 * Switched integration test runner to use Rack processor instead of CGI *Josh Peek*
975
976 * Made AbstractRequest.if_modified_sense return nil if the header could not be parsed *Jamis Buck*
977
978 * Added back ActionController::Base.allow_concurrency flag *Josh Peek*
979
980 * AbstractRequest.relative_url_root is no longer automatically configured by a HTTP header. It can now be set in your configuration environment with config.action_controller.relative_url_root *Josh Peek*
981
982 * Update Prototype to 1.6.0.2 #599 *Patrick Joyce*
983
984 * Conditional GET utility methods. *Jeremy Kemper*
985 response.last_modified = @post.updated_at
986 response.etag = [:admin, @post, current_user]
987
988 if request.fresh?(response)
989 head :not_modified
990 else
991 # render ...
992 end
993
994 * All 2xx requests are considered successful *Josh Peek*
995
996 * Fixed that AssetTagHelper#compute_public_path shouldn't cache the asset_host along with the source or per-request proc's won't run *David Heinemeier Hansson*
997
998 * Removed config.action_view.cache_template_loading, use config.cache_classes instead *Josh Peek*
999
1000 * Get buffer for fragment cache from template's @output_buffer *Josh Peek*
1001
1002 * Set config.action_view.warn_cache_misses = true to receive a warning if you perform an action that results in an expensive disk operation that could be cached *Josh Peek*
1003
1004 * Refactor template preloading. New abstractions include Renderable mixins and a refactored Template class *Josh Peek*
1005
1006 * Changed ActionView::TemplateHandler#render API method signature to render(template, local_assigns = {}) *Josh Peek*
1007
1008 * Changed PrototypeHelper#submit_to_remote to PrototypeHelper#button_to_remote to stay consistent with link_to_remote (submit_to_remote still works as an alias) #8994 *clemens*
1009
1010 * Add :recursive option to javascript_include_tag and stylesheet_link_tag to be used along with :all. #480 *Damian Janowski*
1011
1012 * Allow users to disable the use of the Accept header *Michael Koziarski*
1013
1014 The accept header is poorly implemented by browsers and causes strange
1015 errors when used on public sites where crawlers make requests too. You can use formatted urls (e.g. /people/1.xml) to support API clients in a much simpler way.
1016 To disable the header you need to set:
1017 config.action_controller.use_accept_header = false
1018 * Do not stat template files in production mode before rendering. You will no longer be able to modify templates in production mode without restarting the server *Josh Peek*
1019
1020 * Deprecated TemplateHandler line offset *Josh Peek*
1021
1022 * Allow caches_action to accept cache store options. #416. [José Valim]. Example:
1023
1024 caches_action :index, :redirected, :if => Proc.new { |c| !c.request.format.json? }, :expires_in => 1.hour
1025
1026 * Remove define_javascript_functions, javascript_include_tag and friends are far superior. *Michael Koziarski*
1027
1028 * Deprecate :use_full_path render option. The supplying the option no longer has an effect *Josh Peek*
1029
1030 * Add :as option to render a collection of partials with a custom local variable name. #509 *Simon Jefford, Pratik Naik*
1031
1032 render :partial => 'other_people', :collection => @people, :as => :person
1033
1034 This will let you access objects of @people as 'person' local variable inside 'other_people' partial template.
1035
1036 * time_zone_select: support for regexp matching of priority zones. Resolves #195 *Ernie Miller*
1037
1038 * Made ActionView::Base#render_file private *Josh Peek*
1039
1040 * Refactor and simplify the implementation of assert_redirected_to. Arguments are now normalised relative to the controller being tested, not the root of the application. *Michael Koziarski*
1041
1042 This could cause some erroneous test failures if you were redirecting between controllers
1043 in different namespaces and wrote your assertions relative to the root of the application.
1044
1045 * Remove follow_redirect from controller functional tests.
1046
1047 If you want to follow redirects you can use integration tests. The functional test version was only useful if you were using redirect_to :id=>...
1048 * Fix polymorphic_url with singleton resources. #461 *Tammer Saleh*
1049
1050 * Replaced TemplateFinder abstraction with ViewLoadPaths *Josh Peek*
1051
1052 * Added block-call style to link_to [Sam Stephenson/David Heinemeier Hansson]. Example:
1053
1054 <% link_to(@profile) do %>
1055 <strong><%= @profile.name %></strong> -- <span>Check it out!!</span>
1056 <% end %>
1057
1058 * Performance: integration test benchmarking and profiling. *Jeremy Kemper*
1059
1060 * Make caching more aware of mime types. Ensure request format is not considered while expiring cache. *Jonathan del Strother*
1061
1062 * Drop ActionController::Base.allow_concurrency flag *Josh Peek*
1063
1064 * More efficient concat and capture helpers. Remove ActionView::Base.erb_variable. *Jeremy Kemper*
1065
1066 * Added page.reload functionality. Resolves #277. *Sean Huber*
1067
1068 * Fixed Request#remote_ip to only raise hell if the HTTP_CLIENT_IP and HTTP_X_FORWARDED_FOR doesn't match (not just if they're both present) *Mark Imbriaco, Bradford Folkens*
1069
1070 * Allow caches_action to accept a layout option *José Valim*
1071
1072 * Added Rack processor *Ezra Zygmuntowicz, Josh Peek*
1073
1074
1075 ## 2.1.0 (May 31st, 2008) ##
1076
1077 * InstanceTag#default_time_from_options overflows to DateTime *Geoff Buesing*
1078
1079 * Fixed that forgery protection can be used without session tracking (Peter Jones) *#139*
1080
1081 * Added session(:on) to turn session management back on in a controller subclass if the superclass turned it off (Peter Jones) *#136*
1082
1083 * Change the request forgery protection to go by Content-Type instead of request.format so that you can't bypass it by POSTing to "#{request.uri}.xml" *Rick Olson*
1084 * InstanceTag#default_time_from_options with hash args uses Time.current as default; respects hash settings when time falls in system local spring DST gap *Geoff Buesing*
1085
1086 * select_date defaults to Time.zone.today when config.time_zone is set *Geoff Buesing*
1087
1088 * Fixed that TextHelper#text_field would corrypt when raw HTML was used as the value (mchenryc, Kevin Glowacz) *#80*
1089
1090 * Added ActionController::TestCase#rescue_action_in_public! to control whether the action under test should use the regular rescue_action path instead of simply raising the exception inline (great for error testing) *David Heinemeier Hansson*
1091
1092 * Reduce number of instance variables being copied from controller to view. *Pratik Naik*
1093
1094 * select_datetime and select_time default to Time.zone.now when config.time_zone is set *Geoff Buesing*
1095
1096 * datetime_select defaults to Time.zone.now when config.time_zone is set *Geoff Buesing*
1097
1098 * Remove ActionController::Base#view_controller_internals flag. *Pratik Naik*
1099
1100 * Add conditional options to caches_page method. *Paul Horsfall*
1101
1102 * Move missing template logic to ActionView. *Pratik Naik*
1103
1104 * Introduce ActionView::InlineTemplate class. *Pratik Naik*
1105
1106 * Automatically parse posted JSON content for Mime::JSON requests. *Rick Olson*
1107
1108 POST /posts
1109 {"post": {"title": "Breaking News"}}
1110
1111 def create
1112 @post = Post.create params[:post]
1113 # ...
1114 end
1115
1116 * add json_escape ERB util to escape html entities in json strings that are output in HTML pages. *Rick Olson*
1117
1118 * Provide a helper proxy to access helper methods from outside views. Closes #10839 *Josh Peek*
1119 e.g. ApplicationController.helpers.simple_format(text)
1120
1121 * Improve documentation. *Xavier Noria, leethal, jerome*
1122
1123 * Ensure RJS redirect_to doesn't html-escapes string argument. Closes #8546 *Josh Peek, eventualbuddha, Pratik Naik*
1124
1125 * Support render :partial => collection of heterogeneous elements. #11491 *Zach Dennis*
1126
1127 * Avoid remote_ip spoofing. *Brian Candler*
1128
1129 * Added support for regexp flags like ignoring case in the :requirements part of routes declarations #11421 *NeilW*
1130
1131 * Fixed that ActionController::Base#read_multipart would fail if boundary was exactly 10240 bytes #10886 *ariejan*
1132
1133 * Fixed HTML::Tokenizer (used in sanitize helper) didn't handle unclosed CDATA tags #10071 *esad, packagethief*
1134
1135 * Improve documentation. *Ryan Bigg, Jan De Poorter, Cheah Chu Yeow, Xavier Shay, Jack Danger Canty, Emilio Tagua, Xavier Noria, Sunny Ripert*
1136
1137 * Fixed that FormHelper#radio_button would produce invalid ids #11298 *harlancrystal*
1138
1139 * Added :confirm option to submit_tag #11415 *Emilio Tagua*
1140
1141 * Fixed NumberHelper#number_with_precision to properly round in a way that works equally on Mac, Windows, Linux (closes #11409, #8275, #10090, #8027) *zhangyuanyi*
1142
1143 * Allow the #simple_format text_helper to take an html_options hash for each paragraph. #2448 *François Beausoleil, Chris O'Sullivan*
1144
1145 * Fix regression from filter refactoring where re-adding a skipped filter resulted in it being called twice. *Rick Olson*
1146
1147 * Refactor filters to use Active Support callbacks. #11235 *Josh Peek*
1148
1149 * Fixed that polymorphic routes would modify the input array #11363 *thomas.lee*
1150
1151 * Added :format option to NumberHelper#number_to_currency to enable better localization support #11149 *lylo*
1152
1153 * Fixed that TextHelper#excerpt would include one character too many #11268 *Irfy*
1154
1155 * Fix more obscure nested parameter hash parsing bug. #10797 *thomas.lee*
1156
1157 * Added ActionView::Helpers::register_javascript/stylesheet_expansion to make it easier for plugin developers to inject multiple assets. #10350 *lotswholetime*
1158
1159 * Fix nested parameter hash parsing bug. #10797 *thomas.lee*
1160
1161 * Allow using named routes in ActionController::TestCase before any request has been made. Closes #11273 *Eloy Duran*
1162
1163 * Fixed that sweepers defined by cache_sweeper will be added regardless of the perform_caching setting. Instead, control whether the sweeper should be run with the perform_caching setting. This makes testing easier when you want to turn perform_caching on/off *David Heinemeier Hansson*
1164
1165 * Make MimeResponds::Responder#any work without explicit types. Closes #11140 *jaw6*
1166
1167 * Better error message for type conflicts when parsing params. Closes #7962 *spicycode, matt*
1168
1169 * Remove unused ActionController::Base.template_class. Closes #10787 *Pratik Naik*
1170
1171 * Moved template handlers related code from ActionView::Base to ActionView::Template. *Pratik Naik*
1172
1173 * Tests for div_for and content_tag_for helpers. Closes #11223 *Chris O'Sullivan*
1174
1175 * Allow file uploads in Integration Tests. Closes #11091 *RubyRedRick*
1176
1177 * Refactor partial rendering into a PartialTemplate class. *Pratik Naik*
1178
1179 * Added that requests with JavaScript as the priority mime type in the accept header and no format extension in the parameters will be treated as though their format was :js when it comes to determining which template to render. This makes it possible for JS requests to automatically render action.js.rjs files without an explicit respond_to block *David Heinemeier Hansson*
1180
1181 * Tests for distance_of_time_in_words with TimeWithZone instances. Closes #10914 *Ernesto Jimenez*
1182
1183 * Remove support for multivalued (e.g., '&'-delimited) cookies. *Jamis Buck*
1184
1185 * Fix problem with render :partial collections, records, and locals. #11057 *lotswholetime*
1186
1187 * Added support for naming concrete classes in sweeper declarations *David Heinemeier Hansson*
1188
1189 * Remove ERB trim variables from trace template in case ActionView::Base.erb_trim_mode is changed in the application. #10098 *Tim Pope, Chris Kampmeier*
1190
1191 * Fix typo in form_helper documentation. #10650 *Xavier Shay, Chris Kampmeier*
1192
1193 * Fix bug with setting Request#format= after the getter has cached the value. #10889 *cch1*
1194
1195 * Correct inconsistencies in RequestForgeryProtection docs. #11032 *Mislav Marohnić*
1196
1197 * Introduce a Template class to ActionView. #11024 *Pratik Naik*
1198
1199 * Introduce the :index option for form_for and fields_for to simplify multi-model forms (see http://railscasts.com/episodes/75). #9883 *rmm5t*
1200
1201 * Introduce map.resources :cards, :as => 'tarjetas' to use a custom resource name in the URL: cards_path == '/tarjetas'. #10578 *blj*
1202
1203 * TestSession supports indifferent access. #7372 *tamc, Arsen7, mhackett, julik, jean.helou*
1204
1205 * Make assert_routing aware of the HTTP method used. #8039 *mpalmer*
1206 e.g. assert_routing({ :method => 'put', :path => '/product/321' }, { :controller => "product", :action => "update", :id => "321" })
1207
1208 * Make map.root accept a single symbol as an argument to declare an alias. #10818 *bscofield*
1209
1210 e.g. map.dashboard '/dashboard', :controller=>'dashboard'
1211 map.root :dashboard
1212
1213 * Handle corner case with image_tag when passed 'messed up' image names. #9018 *Duncan Beevers, mpalmer*
1214
1215 * Add label_tag helper for generating elements. #10802 *DefV*
1216
1217 * Introduce TemplateFinder to handle view paths and lookups. #10800 *Pratik Naik*
1218
1219 * Performance: optimize route recognition. Large speedup for apps with many resource routes. #10835 *oleganza*
1220
1221 * Make render :partial recognise form builders and use the _form partial. #10814 *Damian Janowski*
1222
1223 * Allow users to declare other namespaces when using the atom feed helpers. #10304 *david.calavera*
1224
1225 * Introduce send_file :x_sendfile => true to send an X-Sendfile response header. *Jeremy Kemper*
1226
1227 * Fixed ActionView::Helpers::ActiveRecordHelper::form for when protect_from_forgery is used #10739 *Jeremy Evans*
1228
1229 * Provide nicer access to HTTP Headers. Instead of request.env["HTTP_REFERRER"] you can now use request.headers["Referrer"]. *Michael Koziarski*
1230
1231 * UrlWriter respects relative_url_root. #10748 *Cheah Chu Yeow*
1232
1233 * The asset_host block takes the controller request as an optional second argument. Example: use a single asset host for SSL requests. #10549 *Cheah Chu Yeow, Peter B, Tom Taylor*
1234
1235 * Support render :text => nil. #6684 *tjennings, PotatoSalad, Cheah Chu Yeow*
1236
1237 * assert_response failures include the exception message. #10688 *Seth Rasmussen*
1238
1239 * All fragment cache keys are now by default prefixed with the "views/" namespace *David Heinemeier Hansson*
1240
1241 * Moved the caching stores from ActionController::Caching::Fragments::* to ActiveSupport::Cache::*. If you're explicitly referring to a store, like ActionController::Caching::Fragments::MemoryStore, you need to update that reference with ActiveSupport::Cache::MemoryStore *David Heinemeier Hansson*
1242
1243 * Deprecated ActionController::Base.fragment_cache_store for ActionController::Base.cache_store *David Heinemeier Hansson*
1244
1245 * Made fragment caching in views work for rjs and builder as well #6642 *Dee Zsombor*
1246
1247 * Fixed rendering of partials with layout when done from site layout #9209 *antramm*
1248
1249 * Fix atom_feed_helper to comply with the atom spec. Closes #10672 *Xavier Shay*
1250
1251 * The tags created do not contain a date (http://feedvalidator.org/docs/error/InvalidTAG.html)
1252 * IDs are not guaranteed unique
1253 * A default self link was not provided, contrary to the documentation
1254 * NOTE: This changes tags for existing atom entries, but at least they validate now.
1255
1256 * Correct indentation in tests. Closes #10671 *Luca Guidi*
1257
1258 * Fix that auto_link looks for ='s in url paths (Amazon urls have them). Closes #10640 *Brad Greenlee*
1259
1260 * Ensure that test case setup is run even if overridden. #10382 *Josh Peek*
1261
1262 * Fix HTML Sanitizer to allow trailing spaces in CSS style attributes. Closes #10566 *wesley.moxam*
1263
1264 * Add :default option to time_zone_select. #10590 *Matt Aimonetti*
1265
1266
1267 ## 2.0.2 (December 16th, 2007) ##
1268
1269 * Added delete_via_redirect and put_via_redirect to integration testing #10497 *philodespotos*
1270
1271 * Allow headers['Accept'] to be set by hand when calling xml_http_request #10461 *BMorearty*
1272
1273 * Added OPTIONS to list of default accepted HTTP methods #10449 *holoway*
1274
1275 * Added option to pass proc to ActionController::Base.asset_host for maximum configurability #10521 [Cheah Chu Yeow]. Example:
1276
1277 ActionController::Base.asset_host = Proc.new { |source|
1278 if source.starts_with?('/images')
1279 "http://images.example.com"
1280 else
1281 "http://assets.example.com"
1282 end
1283 }
1284
1285 * Fixed that ActionView#file_exists? would be incorrect if @first_render is set #10569 *dbussink*
1286
1287 * Added that Array#to_param calls to_param on all it's elements #10473 *brandon*
1288
1289 * Ensure asset cache directories are automatically created. #10337 *Josh Peek, Cheah Chu Yeow*
1290
1291 * render :xml and :json preserve custom content types. #10388 *jmettraux, Cheah Chu Yeow*
1292
1293 * Refactor Action View template handlers. #10437, #10455 *Josh Peek*
1294
1295 * Fix DoubleRenderError message and leave out mention of returning false from filters. Closes #10380 *Frederick Cheung*
1296
1297 * Clean up some cruft around ActionController::Base#head. Closes #10417 *ssoroka*
1298
1299
1300 ## 2.0.1 (December 7th, 2007) ##
1301
1302 * Fixed send_file/binary_content for testing #8044 *tolsen*
1303
1304 * When a NonInferrableControllerError is raised, make the proposed fix clearer in the error message. Closes #10199 *Jack Danger Canty*
1305
1306 * Update Prototype to 1.6.0.1. *sam*
1307
1308 * Update script.aculo.us to 1.8.0.1. *madrobby*
1309
1310 * Add 'disabled' attribute to <OPTION> separators used in time zone and country selects. Closes #10354 *Josh Susser*
1311
1312 * Added the same record identification guessing rules to fields_for as form_for has *David Heinemeier Hansson*
1313
1314 * Fixed that verification violations with no specified action didn't halt the chain (now they do with a 400 Bad Request) *David Heinemeier Hansson*
1315
1316 * Raise UnknownHttpMethod exception for unknown HTTP methods. Closes #10303 *Tarmo Tänav*
1317
1318 * Update to Prototype -r8232. *sam*
1319
1320 * Make sure the optimisation code for routes doesn't get used if :host, :anchor or :port are provided in the hash arguments. [pager, Michael Koziarski] #10292
1321
1322 * Added protection from trailing slashes on page caching #10229 *devrieda*
1323
1324 * Asset timestamps are appended, not prepended. Closes #10276 *Mike Naberezny*
1325
1326 * Minor inconsistency in description of render example. Closes #10029 *ScottSchram*
1327
1328 * Add #prepend_view_path and #append_view_path instance methods on ActionController::Base for consistency with the class methods. *Rick Olson*
1329
1330 * Refactor sanitizer helpers into HTML classes and make it easy to swap them out with custom implementations. Closes #10129. *Rick Olson*
1331
1332 * Add deprecation for old subtemplate syntax for ActionMailer templates, use render :partial *Rick Olson*
1333
1334 * Fix TemplateError so it doesn't bomb on exceptions while running tests *Rick Olson*
1335
1336 * Fixed that named routes living under resources shouldn't have double slashes #10198 *Isaac Feliu*
1337
1338 * Make sure that cookie sessions use a secret that is at least 30 chars in length. *Michael Koziarski*
1339
1340 * Fixed that partial rendering should look at the type of the first render to determine its own type if no other clues are available (like when using text.plain.erb as the extension in AM) #10130 *java*
1341
1342 * Fixed that has_many :through associations should render as collections too #9051 *mathie/Jack Danger Canty*
1343
1344 * Added :mouseover short-cut to AssetTagHelper#image_tag for doing easy image swaps #6893 *joost*
1345
1346 * Fixed handling of non-domain hosts #9479 *purp*
1347
1348 * Fix syntax error in documentation example for cycle method. Closes #8735 *foca*
1349
1350 * Document :with option for link_to_remote. Closes #8765 *Ryan Bates*
1351
1352 * Document :minute_step option for time_select. Closes #8814 *brupm*
1353
1354 * Explain how to use the :href option for link_to_remote to degrade gracefully in the absence of JavaScript. Closes #8911 *vlad*
1355
1356 * Disambiguate :size option for text area tag. Closes #8955 *redbeard*
1357
1358 * Fix broken tag in assert_tag documentation. Closes #9037 *mfazekas*
1359
1360 * Add documentation for route conditions. Closes #9041 *innu, Manfred Stienstra*
1361
1362 * Fix typo left over from previous typo fix in url helper. Closes #9414 *Henrik N*
1363
1364 * Fixed that ActionController::CgiRequest#host_with_port() should handle standard port #10082 *moro*
1365
1366 * Update Prototype to 1.6.0 and script.aculo.us to 1.8.0. *sam, madrobby*
1367
1368 * Expose the cookie jar as a helper method (before the view would just get the raw cookie hash) *David Heinemeier Hansson*
1369
1370 * Integration tests: get_ and post_via_redirect take a headers hash. #9130 *simonjefford*
1371
1372 * Simplfy #view_paths implementation. ActionView templates get the exact object, not a dup. *Rick Olson*
1373
1374 * Update tests for ActiveSupport's JSON escaping change. *Rick Olson*
1375
1376 * FormHelper's auto_index should use #to_param instead of #id_before_type_cast. Closes #9994 *mattly*
1377
1378 * Doc typo fixes for ActiveRecordHelper. Closes #9973 *mikong*
1379
1380 * Make example parameters in restful routing docs idiomatic. Closes #9993 *Jack Danger Canty*
1381
1382 * Make documentation comment for mime responders match documentation example. Closes #9357 *yon*
1383
1384 * Introduce a new test case class for functional tests. ActionController::TestCase. *Michael Koziarski*
1385
1386 * Fix incorrect path in helper rdoc. Closes #9926 *viktor tron*
1387
1388 * Partials also set 'object' to the default partial variable. #8823 *Nick Retallack, Jeremy Kemper*
1389
1390 * Request profiler. *Jeremy Kemper*
1391 $ cat login_session.rb
1392 get_with_redirect '/'
1393 say "GET / => #{path}"
1394 post_with_redirect '/sessions', :username => 'john', :password => 'doe'
1395 say "POST /sessions => #{path}"
1396 $ ./script/performance/request -n 10 login_session.rb
1397
1398 * Disabled checkboxes don't submit a form value. #9301 *vladr, robinjfisher*
1399
1400 * Added tests for options to ActiveRecordHelper#form. Closes #7213 *richcollins, mikong, Mislav Marohnić*
1401
1402 * Changed before_filter halting to happen automatically on render or redirect but no longer on simply returning false *David Heinemeier Hansson*
1403
1404 * Ensure that cookies handle array values correctly. Closes #9937 *queso*
1405
1406 * Make sure resource routes don't clash with internal helpers like javascript_path, image_path etc. #9928 *Geoff Buesing*
1407
1408 * caches_page uses a single after_filter instead of one per action. #9891 *Pratik Naik*
1409
1410 * Update Prototype to 1.6.0_rc1 and script.aculo.us to 1.8.0 preview 0. *sam, madrobby*
1411
1412 * Dispatcher: fix that to_prepare should only run once in production. #9889 *Nathaniel Talbott*
1413
1414 * Memcached sessions: add session data on initialization; don't silently discard exceptions; add unit tests. #9823 *kamk*
1415
1416 * error_messages_for also takes :message and :header_message options which defaults to the old "There were problems with the following fields:" and "<count> errors prohibited this <object_name> from being saved". #8270 *rmm5t, zach-inglis-lt3*
1417
1418 * Make sure that custom inflections are picked up by map.resources. #9815 *Mislav Marohnić*
1419
1420 * Changed SanitizeHelper#sanitize to only allow the custom attributes and tags when specified in the call *David Heinemeier Hansson*
1421
1422 * Extracted sanitization methods from TextHelper to SanitizeHelper *David Heinemeier Hansson*
1423
1424 * rescue_from accepts :with => lambda { |exception| ... } or a normal block. #9827 *Pratik Naik*
1425
1426 * Add :status to redirect_to allowing users to choose their own response code without manually setting headers. #8297 *Coda Hale, chasgrundy*
1427
1428 * Add link_to :back which uses your referrer with a fallback to a javascript link. #7366 *eventualbuddha, Tarmo Tänav*
1429
1430 * error_messages_for and friends also work with local variables. #9699 *Frederick Cheung*
1431
1432 * Fix url_for, redirect_to, etc. with :controller => :symbol instead of 'string'. #8562, #9525 *Justin Lynn, Tarmo Tänav, shoe*
1433
1434 * Use #require_library_or_gem to load the memcache library for the MemCache session and fragment cache stores. Closes #8662. *Rick Olson*
1435
1436 * Move ActionController::Routing.optimise_named_routes to ActionController::Base.optimise_named_routes. Now you can set it in the config. *Rick Olson*
1437
1438 config.action_controller.optimise_named_routes = false
1439
1440 * ActionController::Routing::DynamicSegment#interpolation_chunk should call #to_s on all values before calling URI.escape. *Rick Olson*
1441
1442 * Only accept session ids from cookies, prevents session fixation attacks. *bradediger*
1443
1444
1445 ## 2.0.0 Preview Release (September 29th, 2007) Includes duplicates of changes from 1.12.2 - 1.13.3 ##
1446
1447 * Fixed that render template did not honor exempt_from_layout #9698 *pezra*
1448
1449 * Better error messages if you leave out the :secret option for request forgery protection. Closes #9670 *Rick Olson*
1450
1451 * Allow ability to disable request forgery protection, disable it in test mode by default. Closes #9693 *Pratik Naik*
1452
1453 * Avoid calling is_missing on LoadErrors. Closes #7460. *ntalbott*
1454
1455 * Move Railties' Dispatcher to ActionController::Dispatcher, introduce before_ and after_dispatch callbacks, and warm up to non-CGI requests. *Jeremy Kemper*
1456
1457 * The tag helper may bypass escaping. *Jeremy Kemper*
1458
1459 * Cache asset ids. *Jeremy Kemper*
1460
1461 * Optimized named routes respect AbstractRequest.relative_url_root. #9612 *Daniel Morrison, Jeremy Kemper*
1462
1463 * Introduce ActionController::Base.rescue_from to declare exception-handling methods. Cleaner style than the case-heavy rescue_action_in_public. #9449 *Norbert Crombach*
1464
1465 * Rename some RequestForgeryProtection methods. The class method is now #protect_from_forgery, and the default parameter is now 'authenticity_token'. *Rick Olson*
1466
1467 * Merge csrf_killer plugin into rails. Adds RequestForgeryProtection model that verifies session-specific _tokens for non-GET requests. *Rick Olson*
1468
1469 * Secure #sanitize, #strip_tags, and #strip_links helpers against xss attacks. Closes #8877. *Rick Olson, Pratik Naik, Jacques Distler*
1470
1471 This merges and renames the popular white_list helper (along with some css sanitizing from Jacques Distler version of the same plugin).
1472 Also applied updated versions of #strip_tags and #strip_links from #8877.
1473
1474 * Remove use of & logic operator. Closes #8114. *watson*
1475
1476 * Fixed JavaScriptHelper#escape_javascript to also escape closing tags #8023 *Ruy Asan*
1477
1478 * Fixed TextHelper#word_wrap for multiline strings with extra carrier returns #8663 *seth*
1479
1480 * Fixed that setting the :host option in url_for would automatically turn off :only_path (since :host would otherwise not be shown) #9586 *Bounga*
1481
1482 * Added FormHelper#label. #8641, #9850 *jcoglan, Jarkko Laine*
1483
1484 * Added AtomFeedHelper (slightly improved from the atom_feed_helper plugin) *David Heinemeier Hansson*
1485
1486 * Prevent errors when generating routes for uncountable resources, (i.e. sheep where plural == singluar). map.resources :sheep now creates sheep_index_url for the collection and sheep_url for the specific item. *Michael Koziarski*
1487
1488 * Added support for HTTP Only cookies (works in IE6+ and FF 2.0.5+) as an improvement for XSS attacks #8895 *Pratik Naik, Mark Somerville*
1489
1490 * Don't warn when a path segment precedes a required segment. Closes #9615. *Nicholas Seckar*
1491
1492 * Fixed CaptureHelper#content_for to work with the optional content parameter instead of just the block #9434 [sandofsky/wildchild].
1493
1494 * Added Mime::Type.register_alias for dealing with different formats using the same mime type [David Heinemeier Hansson]. Example:
1495
1496 class PostsController < ApplicationController
1497 before_filter :adjust_format_for_iphone
1498
1499 def index
1500 @posts = Post.find(:all)
1501
1502 respond_to do |format|
1503 format.html # => renders index.html.erb and uses "text/html" as the content type
1504 format.iphone # => renders index.iphone.erb and uses "text/html" as the content type
1505 end
1506 end
1507
1508
1509 private
1510 def adjust_format_for_iphone
1511 if request.env["HTTP_USER_AGENT"] && request.env["HTTP_USER_AGENT"][/iPhone/]
1512 request.format = :iphone
1513 end
1514 end
1515 end
1516
1517 * Added that render :json will automatically call .to_json unless it's being passed a string [David Heinemeier Hansson].
1518
1519 * Autolink behaves well with emails embedded in URLs. #7313 *Jeremy McAnally, Tarmo Tänav*
1520
1521 * Fixed that default layouts did not take the format into account #9564 *Pratik Naik*
1522
1523 * Fixed optimized route segment escaping. #9562 *wildchild, Jeremy Kemper*
1524
1525 * Added block acceptance to JavaScriptHelper#javascript_tag. #7527 *Bob Silva, Tarmo Tänav, rmm5t*
1526
1527 * root_path returns '/' not ''. #9563 *Pratik Naik*
1528
1529 * Fixed that setting request.format should also affect respond_to blocks *David Heinemeier Hansson*
1530
1531 * Add option to force binary mode on tempfile used for fixture_file_upload. #6380 *Jonathan Viney*
1532
1533 * Fixed that resource namespaces wouldn't stick to all nested resources #9399 *pixeltrix*
1534
1535 * Moved ActionController::Macros::AutoComplete into the auto_complete plugin on the official Rails svn. #9512 *Pratik Naik*
1536
1537 * Moved ActionController::Macros::InPlaceEditing into the in_place_editor plugin on the official Rails svn. #9513 *Pratik Naik*
1538
1539 * Removed deprecated form of calling xml_http_request/xhr without the first argument being the http verb *David Heinemeier Hansson*
1540
1541 * Removed deprecated methods [David Heinemeier Hansson]:
1542
1543 - ActionController::Base#keep_flash (use flash.keep instead)
1544 - ActionController::Base#expire_matched_fragments (just call expire_fragment with a regular expression)
1545 - ActionController::Base.template_root/= methods (use ActionController#Base.view_paths/= instead)
1546 - ActionController::Base.cookie (use ActionController#Base.cookies[]= instead)
1547
1548 * Removed the deprecated behavior of appending ".png" to image_tag/image_path calls without an existing extension *David Heinemeier Hansson*
1549
1550 * Removed ActionController::Base.scaffold -- it went through the whole idea of scaffolding (card board walls you remove and tweak one by one). Use the scaffold generator instead (it does resources too now!) *David Heinemeier Hansson*
1551
1552 * Optimise named route generation when using positional arguments. *Michael Koziarski*
1553
1554 This change delivers significant performance benefits for the most
1555 common usage scenarios for modern rails applications by avoiding the
1556 costly trip through url_for. Initial benchmarks indicate this is
1557 between 6 and 20 times as fast.
1558
1559 * Explicitly require active_record/query_cache before using it. *Jeremy Kemper*
1560
1561 * Fix layout overriding response status. #9476 *lotswholetime*
1562
1563 * Add field_set_tag for generating field_sets, closes #9477. *Damian Janowski*
1564
1565 * Allow additional parameters to be passed to named route helpers when using positional arguments. Closes #8930 *Ian White*
1566
1567 * Make render :partial work with a :collection of Hashes, previously this wasn't possible due to backwards compatibility restrictions. *Pratik Naik*
1568
1569 * request.host works with IPv6 addresses. #9458 *yuya*
1570
1571 * Fix bug where action caching sets the content type to the ActionCachePath object. Closes #9282 *mindforge*
1572
1573 * Find layouts even if they're not in the first view_paths directory. Closes #9258 *caio*
1574
1575 * Major improvement to the documentation for the options / select form helpers. Closes #9038 *Chris Kampmeier, jardeon, wesg*
1576
1577 * Fix number_to_human_size when using different precisions. Closes #7536. *RichardStrand, mpalmer*
1578
1579 * Added partial layouts (see example in action_view/lib/partials.rb) *David Heinemeier Hansson*
1580
1581 * Allow you to set custom :conditions on resource routes. *Rick Olson*
1582
1583 * Fixed that file.content_type for uploaded files would include a trailing \r #9053 *Brad Greenlee*
1584
1585 * url_for now accepts a series of symbols representing the namespace of the record *Josh Knowles*
1586
1587 * Make :trailing_slash work with query parameters for url_for. Closes #4004 *nov*
1588
1589 * Make sure missing template exceptions actually say which template they were looking for. Closes #8683 *dasil003*
1590
1591 * Fix errors with around_filters which do not yield, restore 1.1 behaviour with after filters. Closes #8891 *Stefan Kaes*
1592
1593 After filters will *no longer* be run if an around_filter fails to yield, users relying on
1594 this behaviour are advised to put the code in question after a yield statement in an around filter.
1595
1596
1597 * Allow you to delete cookies with options. Closes #3685 *Josh Peek, Chris Wanstrath*
1598
1599 * Allow you to render views with periods in the name. Closes #8076 *Norbert Crombach*
1600
1601 render :partial => 'show.html.erb'
1602
1603 * Improve capture helper documentation. #8796 *Chris Kampmeier*
1604
1605 * Prefix nested resource named routes with their action name, e.g. new_group_user_path(@group) instead of group_new_user_path(@group). The old nested action named route is deprecated in Rails 1.2.4. #8558 *David Chelimsky*
1606
1607 * Allow sweepers to be created solely for expiring after controller actions, not model changes *David Heinemeier Hansson*
1608
1609 * Added assigns method to ActionController::Caching::Sweeper to easily access instance variables on the controller *David Heinemeier Hansson*
1610
1611 * Give the legacy X-POST_DATA_FORMAT header greater precedence during params parsing for backward compatibility. *Jeremy Kemper*
1612
1613 * Fixed that link_to with an href of # when using :method will not allow for click-through without JavaScript #7037 *Steven Bristol, Josh Peek*
1614
1615 * Fixed that radio_button_tag should generate unique ids #3353 *Bob Silva, Rebecca, Josh Peek*
1616
1617 * Fixed that HTTP authentication should work if the header is called REDIRECT_X_HTTP_AUTHORIZATION as well #6754 *Mislav Marohnić*
1618
1619 * Don't mistakenly interpret the request uri as the query string. #8731 *Pratik Naik, Jeremy Kemper*
1620
1621 * Make ActionView#view_paths an attr_accessor for real this time. Also, don't perform an unnecessary #compact on the @view_paths array in #initialize. Closes #8582 *dasil003, julik, Rick Olson*
1622
1623 * Tolerate missing content type on multipart file uploads. Fix for Safari 3. *Jeremy Kemper*
1624
1625 * Deprecation: remove pagination. Install the classic_pagination plugin for forward compatibility, or move to the superior will_paginate plugin. #8157 *Josh Peek*
1626
1627 * Action caching is limited to GET requests returning 200 OK status. #3335 *tom@craz8.com, halfbyte, Dan Kubb, Josh Peek*
1628
1629 * Improve Text Helper test coverage. #7274 *Rob Sanheim, Josh Peek*
1630
1631 * Improve helper test coverage. #7208, #7212, #7215, #7233, #7234, #7235, #7236, #7237, #7238, #7241, #7243, #7244 *Rich Collins, Josh Peek*
1632
1633 * Improve UrlRewriter tests. #7207 *Rich Collins*
1634
1635 * Resources: url_for([parent, child]) generates /parents/1/children/2 for the nested resource. Likewise with the other simply helpful methods like form_for and link_to. #6432 *mhw, Jonathan Vaught, lotswholetime*
1636
1637 * Assume html format when rendering partials in RJS. #8076 *Rick Olson*
1638
1639 * Don't double-escape url_for in views. #8144 *Rich Collins, Josh Peek*
1640
1641 * Allow JSON-style values for the :with option of observe_field. Closes #8557 *kommen*
1642
1643 * Remove RAILS_ROOT from backtrace paths. #8540 *Tim Pope*
1644
1645 * Routing: map.resource :logo routes to LogosController so the controller may be reused for multiple nestings or namespaces. *Jeremy Kemper*
1646
1647 * render :partial recognizes Active Record associations as Arrays. #8538 *Kamal Fariz Mahyuddin*
1648
1649 * Routing: drop semicolon and comma as route separators. *Jeremy Kemper*
1650
1651 * request.remote_ip understands X-Forwarded-For addresses with nonstandard whitespace. #7386 *moses*
1652
1653 * Don't prepare response when rendering a component. #8493 *jsierles*
1654
1655 * Reduce file stat calls when checking for template changes. #7736 *alex*
1656
1657 * Added custom path cache_page/expire_page parameters in addition to the options hashes [David Heinemeier Hansson]. Example:
1658
1659 def index
1660 caches_page(response.body, "/index.html")
1661 end
1662
1663 * Action Caching speedup. #8231 *Stefan Kaes*
1664
1665 * Wordsmith resources documentation. #8484 *marclove*
1666
1667 * Fix syntax error in code example for routing documentation. #8377. *Norbert Crombach*
1668
1669 * Routing: respond with 405 Method Not Allowed status when the route path matches but the HTTP method does not. #6953 *Josh Peek, defeated, Dan Kubb, Coda Hale*
1670
1671 * Add support for assert_select_rjs with :show and :hide. #7780 *dchelimsky*
1672
1673 * Make assert_select's failure messages clearer about what failed. #7779 *dchelimsky*
1674
1675 * Introduce a default respond_to block for custom types. #8174 *Josh Peek*
1676
1677 * auto_complete_field takes a :method option so you can GET or POST. #8120 *zapnap*
1678
1679 * Added option to suppress :size when using :maxlength for FormTagHelper#text_field #3112 *Tim Pope*
1680
1681 * catch possible WSOD when trying to render a missing partial. Closes #8454 *Jonathan del Strother*
1682
1683 * Rewind request body after reading it, if possible. #8438 *s450r1*
1684
1685 * Resource namespaces are inherited by their has_many subresources. #8280 *marclove, Geoff Garside*
1686
1687 * Fix filtered parameter logging with nil parameter values. #8422 *choonkeat*
1688
1689 * Integration tests: alias xhr to xml_http_request and add a request_method argument instead of always using POST. #7124 *Nik Wakelin, François Beausoleil, Wizard*
1690
1691 * Document caches_action. #5419 *Jarkko Laine*
1692
1693 * Update to Prototype 1.5.1. *Sam Stephenson*
1694
1695 * Allow routes to be decalred under namespaces [Tobias Lütke]:
1696
1697 map.namespace :admin do |admin|
1698 admin.root :controller => "products"
1699 admin.feed 'feed.xml', :controller => 'products', :action => 'feed', :format => 'xml'
1700 end
1701
1702 * Update to script.aculo.us 1.7.1_beta3. *Thomas Fuchs*
1703
1704 * observe_form always sends the serialized form. #5271 *Manfred Stienstra, normelton@gmail.com*
1705
1706 * Parse url-encoded and multipart requests ourselves instead of delegating to CGI. *Jeremy Kemper*
1707
1708 * select :include_blank option can be set to a string instead of true, which just uses an empty string. #7664 *Wizard*
1709
1710 * Added url_for usage on render :location, which allows for record identification [David Heinemeier Hansson]. Example:
1711
1712 render :xml => person, :status => :created, :location => person
1713
1714 ...expands the location to person_url(person).
1715
1716 * Introduce the request.body stream. Lazy-read to parse parameters rather than always setting RAW_POST_DATA. Reduces the memory footprint of large binary PUT requests. *Jeremy Kemper*
1717
1718 * Add some performance enhancements to ActionView.
1719
1720 * Cache base_paths in @@cached_base_paths
1721 * Cache template extensions in @@cached_template_extension
1722 * Remove unnecessary rescues
1723
1724 * Assume that rendered partials go by the HTML format by default
1725
1726 def my_partial
1727 render :update do |page|
1728 # in this order
1729 # _foo.html.erb
1730 # _foo.erb
1731 # _foo.rhtml
1732 page.replace :foo, :partial => 'foo'
1733 end
1734 end
1735
1736 * Added record identifications to FormHelper#form_for and PrototypeHelper#remote_form_for [David Heinemeier Hansson]. Examples:
1737
1738 <% form_for(@post) do |f| %>
1739 ...
1740 <% end %>
1741
1742 This will expand to be the same as:
1743
1744 <% form_for :post, @post, :url => post_path(@post), :html => { :method => :put, :class => "edit_post", :id => "edit_post_45" } do |f| %>
1745 ...
1746 <% end %>
1747
1748 And for new records:
1749
1750 <% form_for(Post.new) do |f| %>
1751 ...
1752 <% end %>
1753
1754 This will expand to be the same as:
1755
1756 <% form_for :post, @post, :url => posts_path, :html => { :class => "new_post", :id => "new_post" } do |f| %>
1757 ...
1758 <% end %>
1759
1760 * Rationalize route path escaping according to RFC 2396 section 3.3. #7544, #8307. *Jeremy Kemper, Chris Roos, begemot, jugend*
1761
1762 * Added record identification with polymorphic routes for ActionController::Base#url_for and ActionView::Base#url_for [David Heinemeier Hansson]. Examples:
1763
1764 redirect_to(post) # => redirect_to(posts_url(post)) => Location: http://example.com/posts/1
1765 link_to(post.title, post) # => link_to(post.title, posts_url(post)) => <a href="/posts/1">Hello world</a>
1766
1767 Any method that calls url_for on its parameters will automatically benefit from this.
1768
1769 * Removed deprecated parameters_for_method_reference concept (legacy from before named routes) *David Heinemeier Hansson*
1770
1771 * Add ActionController::Routing::Helpers, a module to contain common URL helpers such as polymorphic_url. *Nicholas Seckar*
1772
1773 * Included the HttpAuthentication plugin as part of core (ActionController::HttpAuthentication::Basic) *David Heinemeier Hansson*
1774
1775 * Modernize documentation for form helpers. *Jeremy McAnally*
1776
1777 * Add brief introduction to REST to the resources documentation. *fearoffish*
1778
1779 * Fix various documentation typos throughout ActionPack. *Henrik N*
1780
1781 * Enhance documentation and add examples for url_for. *Jeremy McAnally*
1782
1783 * Fix documentation typo in routes. *Norbert Crombach, pam*
1784
1785 * Sweep flash when filter chain is halted. *Caio Chassot <lists@v2studio.com>*
1786
1787 * Fixed that content_tag with a block will just return the result instead of concate it if not used in a ERb view #7857, #7432 *michael.niessner*
1788
1789 * Replace the current block/continuation filter chain handling by an implementation based on a simple loop. #8226 *Stefan Kaes*
1790
1791 * Update UrlWriter to accept :anchor parameter. Closes #6771. *Chris McGrath*
1792
1793 * Added RecordTagHelper for using RecordIdentifier conventions on divs and other container elements [David Heinemeier Hansson]. Example:
1794
1795 <% div_for(post) do %> <div id="post_45" class="post">
1796 <%= post.body %> What a wonderful world!
1797 <% end %> </div>
1798
1799 * Added page[record] accessor to JavaScriptGenerator that relies on RecordIdentifier to find the right dom id [David Heinemeier Hansson]. Example:
1800
1801 format.js do
1802 # Calls: new Effect.fade('post_45');
1803 render(:update) { |page| page[post].visual_effect(:fade) }
1804 end
1805
1806 * Added RecordIdentifier to enforce view conventions on records for dom ids, classes, and partial paths *David Heinemeier Hansson*
1807
1808 * Added map.namespace to deal with the common situation of admin sections and the like *David Heinemeier Hansson*
1809
1810 Before:
1811
1812 map.resources :products, :path_prefix => "admin", :controller => "admin/products", :collection => { :inventory => :get }, :member => { :duplicate => :post }
1813 map.resources :tags, :name_prefix => 'admin_product_', :path_prefix => "admin/products/:product_id", :controller => "admin/product_tags"
1814 map.resources :images, :name_prefix => 'admin_product_', :path_prefix => "admin/products/:product_id", :controller => "admin/product_images"
1815 map.resources :variants, :name_prefix => 'admin_product_', :path_prefix => "admin/products/:product_id", :controller => "admin/product_variants"
1816
1817 After:
1818
1819 map.namespace(:admin) do |admin|
1820 admin.resources :products,
1821 :collection => { :inventory => :get },
1822 :member => { :duplicate => :post },
1823 :has_many => [ :tags, :images, :variants ]
1824 end
1825
1826 * Added :name_prefix as standard for nested resources [David Heinemeier Hansson]. WARNING: May be backwards incompatible with your app
1827
1828 Before:
1829
1830 map.resources :emails do |emails|
1831 emails.resources :comments, :name_prefix => "email_"
1832 emails.resources :attachments, :name_prefix => "email_"
1833 end
1834
1835 After:
1836
1837 map.resources :emails do |emails|
1838 emails.resources :comments
1839 emails.resources :attachments
1840 end
1841
1842 This does mean that if you intended to have comments_url go to /emails/5/comments, then you'll have to set :name_prefix to nil explicitly.
1843
1844 * Added :has_many and :has_one for declaring plural and singular resources beneath the current *David Heinemeier Hansson*
1845
1846 Before:
1847
1848 map.resources :notes do |notes|
1849 notes.resources :comments
1850 notes.resources :attachments
1851 notes.resource :author
1852 end
1853
1854 After:
1855
1856 map.resources :notes, :has_many => [ :comments, :attachments ], :has_one => :author
1857
1858 * Added that render :xml will try to call to_xml if it can [David Heinemeier Hansson]. Makes these work:
1859
1860 render :xml => post
1861 render :xml => comments
1862
1863 * Added :location option to render so that the common pattern of rendering a response after creating a new resource is now a 1-liner *David Heinemeier Hansson*
1864
1865 render :xml => post.to_xml, :status => :created, :location => post_url(post)
1866
1867 * Ensure that render_text only adds string content to the body of the response *David Heinemeier Hansson*
1868
1869 * Return the string representation from an Xml Builder when rendering a partial. Closes #5044 *Tim Pope*
1870
1871 * Fixed that parameters from XML should also be presented in a hash with indifferent access *David Heinemeier Hansson*
1872
1873 * Tweak template format rules so that the ACCEPT header is only used if it's text/javascript. This is so ajax actions without a :format param get recognized as Mime::JS. *Rick Olson*
1874
1875 * The default respond_to blocks don't set a specific extension anymore, so that both 'show.rjs' and 'show.js.rjs' will work. *Rick Olson*
1876
1877 * Allow layouts with extension of .html.erb. Closes #8032 *Josh Knowles*
1878
1879 * Change default respond_to templates for xml and rjs formats. *Rick Olson*
1880
1881 * Default xml template goes from #{action_name}.rxml => #{action_name}.xml.builder.
1882 * Default rjs template goes from #{action_name}.rjs => #{action_name}.js.rjs.
1883
1884 You can still specify your old templates:
1885
1886 respond_to do |format|
1887 format.xml do
1888 render :action => "#{action_name}.rxml"
1889 end
1890 end
1891
1892 * Fix WSOD due to modification of a formatted template extension so that requests to templates like 'foo.html.erb' fail on the second hit. *Rick Olson*
1893
1894 * Fix WSOD when template compilation fails *Rick Olson*
1895
1896 * Change ActionView template defaults. Look for templates using the request format first, such as "show.html.erb" or "show.xml.builder", before looking for the old defaults like "show.erb" or "show.builder" *Rick Olson*
1897
1898 * Highlight helper highlights one or many terms in a single pass. *Jeremy Kemper*
1899
1900 * Dropped the use of ; as a separator of non-crud actions on resources and went back to the vanilla slash. It was a neat idea, but lots of the non-crud actions turned out not to be RPC (as the ; was primarily intended to discourage), but legitimate sub-resources, like /parties/recent, which didn't deserve the uglification of /parties;recent. Further more, the semicolon caused issues with caching and HTTP authentication in Safari. Just Not Worth It *David Heinemeier Hansson*
1901
1902 * Added that FormTagHelper#submit_tag will return to its original state if the submit fails and you're using :disable_with *David Heinemeier Hansson*
1903
1904 * Cleaned up, corrected, and mildly expanded ActionPack documentation. Closes #7190 *Jeremy McAnally*
1905
1906 * Small collection of ActionController documentation cleanups. Closes #7319 *Jeremy McAnally*
1907
1908 * Make sure the route expiry hash is constructed by comparing the to_param-ized values of each hash. *Jamis Buck*
1909
1910 * Allow configuration of the default action cache path for #caches_action calls. *Rick Olson*
1911
1912 class ListsController < ApplicationController
1913 caches_action :index, :cache_path => Proc.new { |controller|
1914 controller.params[:user_id] ?
1915 controller.send(:user_lists_url, c.params[:user_id]) :
1916 controller.send(:lists_url) }
1917 end
1918
1919 * Performance: patch cgi/session/pstore to require digest/md5 once rather than per #initialize. #7583 *Stefan Kaes*
1920
1921 * Cookie session store: ensure that new sessions doesn't reuse data from a deleted session in the same request. *Jeremy Kemper*
1922
1923 * Deprecation: verification with :redirect_to => :named_route shouldn't be deprecated. #7525 *Justin French*
1924
1925 * Cookie session store: raise ArgumentError when :session_key is blank. *Jeremy Kemper*
1926
1927 * Deprecation: remove deprecated request, redirect, and dependency methods. Remove deprecated instance variables. Remove deprecated url_for(:symbol, *args) and redirect_to(:symbol, *args) in favor of named routes. Remove uses_component_template_root for toplevel components directory. Privatize deprecated render_partial and render_partial_collection view methods. Remove deprecated link_to_image, link_image_to, update_element_function, start_form_tag, and end_form_tag helper methods. Remove deprecated human_size helper alias. *Jeremy Kemper*
1928
1929 * Consistent public/protected/private visibility for chained methods. #7813 *Dan Manges*
1930
1931 * Prefer MIME constants to strings. #7707 *Dan Kubb*
1932
1933 * Allow array and hash query parameters. Array route parameters are converted/to/a/path as before. #6765, #7047, #7462 *bgipsy, Jeremy McAnally, Dan Kubb, brendan*
1934
1935 \# Add a #dbman attr_reader for CGI::Session and make CGI::Session::CookieStore#generate_digest public so it's easy to generate digests using the cookie store's secret. [Rick Olson]
1936 * Added Request#url that returns the complete URL used for the request *David Heinemeier Hansson*
1937
1938 * Extract dynamic scaffolding into a plugin. #7700 *Josh Peek*
1939
1940 * Added user/password options for url_for to add http authentication in a URL *David Heinemeier Hansson*
1941
1942 * Fixed that FormTagHelper#text_area_tag should disregard :size option if it's not a string *Brendon Davidson*
1943
1944 * Set the original button value in an attribute of the button when using the :disable_with key with submit_tag, so that the original can be restored later. *Jamis Buck*
1945
1946 * session_enabled? works with session :off. #6680 *Jonathan del Strother*
1947
1948 * Added :port and :host handling to UrlRewriter (which unified url_for usage, regardless of whether it's called in view or controller) #7616 *alancfrancis*
1949
1950 * Allow send_file/send_data to use a registered mime type as the :type parameter #7620 *jonathan*
1951
1952 * Allow routing requirements on map.resource(s) #7633 [quixoten]. Example:
1953
1954 map.resources :network_interfaces, :requirements => { :id => /^\d+\.\d+\.\d+\.\d+$/ }
1955
1956 * Cookie session store: empty and unchanged sessions don't write a cookie. *Jeremy Kemper*
1957
1958 * Added helper(:all) as a way to include all helpers from app/helpers/**/*.rb in ApplicationController *David Heinemeier Hansson*
1959
1960 * Integration tests: introduce methods for other HTTP methods. #6353 *caboose*
1961
1962 * Routing: better support for escaped values in route segments. #7544 [Chris
1963 Roos]
1964 * Introduce a cookie-based session store as the Rails default. Sessions typically contain at most a user_id and flash message; both fit within the 4K cookie size limit. A secure message digest is included with the cookie to ensure data integrity (a user cannot alter his user_id without knowing the secret key included in the digest). If you have more than 4K of session data or don't want your data to be visible to the user, pick another session store. Cookie-based sessions are dramatically faster than the alternatives. *Jeremy Kemper*
1965
1966 Example config/environment.rb:
1967 # Use an application-wide secret key and the default SHA1 message digest.
1968 config.action_controller.session = { :secret => "can't touch this" }
1969
1970 # Store a secret key per user and employ a stronger message digest.
1971 config.action_controller.session = {
1972 :digest => 'SHA512',
1973 :secret => Proc.new { User.current.secret_key }
1974 }
1975
1976 * Added .erb and .builder as preferred aliases to the now deprecated .rhtml and .rxml extensions [Chad Fowler]. This is done to separate the renderer from the mime type. .erb templates are often used to render emails, atom, csv, whatever. So labeling them .rhtml doesn't make too much sense. The same goes for .rxml, which can be used to build everything from HTML to Atom to whatever. .rhtml and .rxml will continue to work until Rails 3.0, though. So this is a slow phasing out. All generators and examples will start using the new aliases, though.
1977
1978 * Added caching option to AssetTagHelper#stylesheet_link_tag and AssetTagHelper#javascript_include_tag [David Heinemeier Hansson]. Examples:
1979
1980 stylesheet_link_tag :all, :cache => true # when ActionController::Base.perform_caching is false =>
1981 <link href="/stylesheets/style1.css" media="screen" rel="Stylesheet" type="text/css" />
1982 <link href="/stylesheets/styleB.css" media="screen" rel="Stylesheet" type="text/css" />
1983 <link href="/stylesheets/styleX2.css" media="screen" rel="Stylesheet" type="text/css" />
1984
1985 stylesheet_link_tag :all, :cache => true # when ActionController::Base.perform_caching is true =>
1986 <link href="/stylesheets/all.css" media="screen" rel="Stylesheet" type="text/css" />
1987
1988 ...when caching is on, all.css is the concatenation of style1.css, styleB.css, and styleX2.css.
1989 Same deal for JavaScripts.
1990
1991 * Work around the two connection per host browser limit: use asset%d.myapp.com to distribute asset requests among asset[0123].myapp.com. Use a DNS wildcard or CNAMEs to map these hosts to your asset server. See http://www.die.net/musings/page_load_time/ for background. *Jeremy Kemper*
1992
1993 * Added default mime type for CSS (Mime::CSS) *David Heinemeier Hansson*
1994
1995 * Added that rendering will automatically insert the etag header on 200 OK responses. The etag is calculated using MD5 of the response body. If a request comes in that has a matching etag, the response will be changed to a 304 Not Modified and the response body will be set to an empty string. *David Heinemeier Hansson*
1996
1997 * Added X-Runtime to all responses with the request run time *David Heinemeier Hansson*
1998
1999 * Add Mime::Type convenience methods to check the current mime type. *Rick Olson*
2000
2001 request.format.html? # => true if Mime::HTML
2002 request.format.jpg? # => true if Mime::JPG
2003
2004 \# ActionController sample usage:
2005 \# the session will be disabled for non html/ajax requests
2006 session :off, :if => Proc.new { |req| !(req.format.html? || req.format.js?) }
2007
2008 * Performance: patch cgi/session to require digest/md5 once rather than per #create_new_id. *Stefan Kaes*
2009
2010 * Add a :url_based_filename => true option to ActionController::Streaming::send_file, which allows URL-based filenames. *Thomas Fuchs*
2011
2012 * Fix that FormTagHelper#submit_tag using :disable_with should trigger the onsubmit handler of its form if available *David Heinemeier Hansson*
2013
2014 * Fix #render_file so that TemplateError is called with the correct params and you don't get the WSOD. *Rick Olson*
2015
2016 * Fix issue with deprecation messing up #template_root= usage. Add #prepend_view_path and #append_view_path to allow modification of a copy of the
2017 superclass' view_paths. [Rick Olson]
2018 * Allow Controllers to have multiple view_paths instead of a single template_root. Closes #2754 *John Long*
2019
2020 * Add much-needed html-scanner tests. Fixed CDATA parsing bug. *Rick Olson*
2021
2022 * improve error message for Routing for named routes. Closes #7346 *Rob Sanheim*
2023
2024 * Added enhanced docs to routing assertions. Closes #7359 *Rob Sanheim*
2025
2026 * fix form_for example in ActionController::Resources documentation. Closes #7362 *gnarg*
2027
2028 * Make sure that the string returned by TextHelper#truncate is actually a string, not a char proxy -- that should only be used internally while working on a multibyte-safe way of truncating *David Heinemeier Hansson*
2029
2030 * Added FormBuilder#submit as a delegate for FormTagHelper#submit_tag *David Heinemeier Hansson*
2031
2032 * Allow Routes to generate all urls for a set of options by specifying :generate_all => true. Allows caching to properly set or expire all paths for a resource. References #1739. *Nicholas Seckar*
2033
2034 * Change the query parser to map empty GET params to "" rather than nil. Closes #5694. *Nicholas Seckar*
2035
2036 * date_select and datetime_select take a :default option. #7052 *Nik Wakelin*
2037 date_select "post", "written_on", :default => 3.days.from_now
2038 date_select "credit_card", "bill_due", :default => { :day => 20 }
2039
2040 * select :multiple => true suffixes the attribute name with [] unless already suffixed. #6977 *nik.kakelin, ben, julik*
2041
2042 * Improve routes documentation. #7095 *zackchandler*
2043
2044 * mail_to :encode => 'hex' also encodes the mailto: part of the href attribute as well as the linked email when no name is given. #2061 *Jarkko Laine, pfc.pille@gmx.net*
2045
2046 * Resource member routes require :id, eliminating the ambiguous overlap with collection routes. #7229 *dkubb*
2047
2048 * Remove deprecated assertions. *Jeremy Kemper*
2049
2050 * Change session restoration to allow namespaced models to be autoloaded. Closes #6348. *Nicholas Seckar*
2051
2052 * Fix doubly appearing parameters due to string and symbol mixups. Closes #2551. *Anthony Eden*
2053
2054 * Fix overly greedy rescues when loading helpers. Fixes #6268. *Nicholas Seckar*
2055
2056 * Fixed NumberHelper#number_with_delimiter to use "." always for splitting the original number, not the delimiter parameter #7389 *ceefour*
2057
2058 * Autolinking recognizes trailing and embedded . , : ; #7354 *Jarkko Laine*
2059
2060 * Make TextHelper::auto_link recognize URLs with colons in path correctly, fixes #7268. *imajes*
2061
2062 * Update to script.aculo.us 1.7.0. *Thomas Fuchs*
2063
2064 * Modernize cookie testing code, and increase coverage (Heckle++) #7101 *Kevin Clark*
2065
2066 * Improve Test Coverage for ActionController::Routing::Route#matches_controller_and_action? (Heckle++) #7115 *Kevin Clark*
2067
2068 * Heckling ActionController::Resources::Resource revealed that set_prefixes didn't break when :name_prefix was munged. #7081 *Kevin Clark*
2069
2070 * Fix #distance_of_time_in_words to report accurately against the Duration class. #7114 *eventualbuddha*
2071
2072 * Refactor #form_tag to allow easy extending. *Rick Olson*
2073
2074 * Update to Prototype 1.5.0. *Sam Stephenson*
2075
2076 * RecordInvalid, RecordNotSaved => 422 Unprocessable Entity, StaleObjectError => 409 Conflict. #7097 *dkubb*
2077
2078 * Allow fields_for to be nested inside form_for, so that the name and id get properly constructed *Jamis Buck*
2079
2080 * Allow inGroupsOf and eachSlice to be called through rjs. #7046 *Cody Fauser*
2081
2082 * Allow exempt_from_layout :rhtml. #6742, #7026 *Dan Manges, Squeegy*
2083
2084 * Recognize the .txt extension as Mime::TEXT *Rick Olson*
2085
2086 * Fix parsing of array[] CGI parameters so extra empty values aren't included. #6252 *Nicholas Seckar, aiwilliams, brentrowland*
2087
2088 * link_to_unless_current works with full URLs as well as paths. #6891 *Jarkko Laine, Manfred Stienstra, idrifter*
2089
2090 * Lookup the mime type for #auto_discovery_link_tag in the Mime::Type class. Closes #6941 *Josh Peek*
2091
2092 * Fix bug where nested resources ignore a parent singleton parent's path prefix. Closes #6940 *Dan Kubb*
2093
2094 * Fix no method error with error_messages_on. Closes #6935 *nik.wakelin Koz*
2095
2096 * Slight doc tweak to the ActionView::Helpers::PrototypeHelper#replace docs. Closes #6922 *Steven Bristol*
2097
2098 * Slight doc tweak to #prepend_filter. Closes #6493 *Jeremy Voorhis*
2099
2100 * Add more extensive documentation to the AssetTagHelper. Closes #6452 *Bob Silva*
2101
2102 * Clean up multiple calls to #stringify_keys in TagHelper, add better documentation and testing for TagHelper. Closes #6394 *Bob Silva*
2103
2104 * [DOCS] fix reference to ActionController::Macros::AutoComplete for #text_field_with_auto_complete. Closes #2578 *Jan Prill*
2105
2106 * Make sure html_document is reset between integration test requests. *ctm*
2107
2108 * Set session to an empty hash if :new_session => false and no session cookie or param is present. CGI::Session was raising an unrescued ArgumentError. *Josh Susser*
2109
2110 * Routing uses URI escaping for path components and CGI escaping for query parameters. *darix, Jeremy Kemper*
2111
2112 * Fix assert_redirected_to bug where redirecting from a nested to to a top-level controller incorrectly added the current controller's nesting. Closes #6128. *Rick Olson*
2113
2114 * Singleton resources: POST /singleton => create, GET /singleton/new => new. *Jeremy Kemper*
2115
2116 * Use 400 Bad Request status for unrescued ActiveRecord::RecordInvalid exceptions. *Jeremy Kemper*
2117
2118 * Silence log_error deprecation warnings from inspecting deprecated instance variables. *Nate Wiger*
2119
2120 * Only cache GET requests with a 200 OK response. #6514, #6743 *RSL, anamba*
2121
2122 * Add a 'referer' attribute to TestRequest. *Jamis Buck*
2123
2124 * Ensure render :json => ... skips the layout. Closes #6808 *Josh Peek*
2125
2126 * Fix HTML::Node to output double quotes instead of single quotes. Closes #6845 *mitreandy*
2127
2128 * Correctly report which filter halted the chain. #6699 *Martin Emde*
2129
2130 * Fix a bug in Routing where a parameter taken from the path of the current request could not be used as a query parameter for the next. Closes #6752. *Nicholas Seckar*
2131
2132 * Unrescued ActiveRecord::RecordNotFound responds with 404 instead of 500. *Jeremy Kemper*
2133
2134 * Improved auto_link to match more valid urls correctly *Tobias Lütke*
2135
2136 * Add singleton resources. *Rick Olson*
2137
2138 map.resource :account
2139
2140 GET /account
2141 GET /account;edit
2142 UPDATE /account
2143 DELETE /account
2144
2145 * respond_to recognizes JSON. render :json => @person.to_json automatically sets the content type and takes a :callback option to specify a client-side function to call using the rendered JSON as an argument. #4185 *Scott Raymond, eventualbuddha*
2146 # application/json response with body 'Element.show({:name: "David"})'
2147 respond_to do |format|
2148 format.json { render :json => { :name => "David" }.to_json, :callback => 'Element.show' }
2149 end
2150
2151 * Makes :discard_year work without breaking multi-attribute parsing in AR. #1260, #3800 *sean@ardismg.com, jmartin@desertflood.com, stephen@touset.org, Bob Silva*
2152
2153 * Adds html id attribute to date helper elements. #1050, #1382 *mortonda@dgrmm.net, David North, Bob Silva*
2154
2155 * Add :index and @auto_index capability to model driven date/time selects. #847, #2655 *moriq, Doug Fales, Bob Silva*
2156
2157 * Add :order to datetime_select, select_datetime, and select_date. #1427 *Timothee Peignier, Patrick Lenz, Bob Silva*
2158
2159 * Added time_select to work with time values in models. Update scaffolding. #2489, #2833 *Justin Palmer, Andre Caum, Bob Silva*
2160
2161 * Added :include_seconds to select_datetime, datetime_select and time_select. #2998 *csn, Bob Silva*
2162
2163 * All date/datetime selects can now accept an array of month names with :use_month_names. Allows for localization. #363 *tomasj, Bob Silva*
2164
2165 * Adds :time_separator to select_time and :date_separator to select_datetime. Preserves BC. #3811 *Bob Silva*
2166
2167 * Added map.root as an alias for map.connect '' *David Heinemeier Hansson*
2168
2169 * Added Request#format to return the format used for the request as a mime type. If no format is specified, the first Request#accepts type is used. This means you can stop using respond_to for anything else than responses [David Heinemeier Hansson]. Examples:
2170
2171 GET /posts/5.xml | request.format => Mime::XML
2172 GET /posts/5.xhtml | request.format => Mime::HTML
2173 GET /posts/5 | request.format => request.accepts.first (usually Mime::HTML for browsers)
2174
2175 * Added the option for extension aliases to mime type registration [David Heinemeier Hansson]. Example (already in the default routes):
2176
2177 Mime::Type.register "text/html", :html, %w( application/xhtml+xml ), %w( xhtml )
2178
2179 ...will respond on both .html and .xhtml.
2180
2181 * @response.redirect_url works with 201 Created responses: just return headers['Location'] rather than checking the response status. *Jeremy Kemper*
2182
2183 * Added CSV to Mime::SET so that respond_to csv will work *Cody Fauser*
2184
2185 * Fixed that HEAD should return the proper Content-Length header (that is, actually use @body.size, not just 0) *David Heinemeier Hansson*
2186
2187 * Added GET-masquarading for HEAD, so request.method will return :get even for HEADs. This will help anyone relying on case request.method to automatically work with HEAD and map.resources will also allow HEADs to all GET actions. Rails automatically throws away the response content in a reply to HEAD, so you don't even need to worry about that. If you, for whatever reason, still need to distinguish between GET and HEAD in some edge case, you can use Request#head? and even Request.headers["REQUEST_METHOD"] for get the "real" answer. Closes #6694 *David Heinemeier Hansson*
2188
2189 * Update Routing to complain when :controller is not specified by a route. Closes #6669. *Nicholas Seckar*
2190
2191 * Ensure render_to_string cleans up after itself when an exception is raised. #6658 *Rob Sanheim*
2192
2193 * Extract template_changed_since? from compile_template? so plugins may override its behavior for non-file-based templates. #6651 *Jeff Barczewski*
2194
2195 * Update to Prototype and script.aculo.us [5579]. *Thomas Fuchs*
2196
2197 * simple_format helper doesn't choke on nil. #6644 *jerry426*
2198
2199 * Update to Prototype 1.5.0_rc2 [5550] which makes it work in Opera again *Thomas Fuchs*
2200
2201 * Reuse named route helper module between Routing reloads. Use remove_method to delete named route methods after each load. Since the module is never collected, this fixes a significant memory leak. *Nicholas Seckar*
2202
2203 * ActionView::Base.erb_variable accessor names the buffer variable used to render templates. Defaults to _erbout; use _buf for erubis. *Rick Olson*
2204
2205 * assert_select_rjs :remove. *Dylan Egan*
2206
2207 * Always clear model associations from session. #4795 *sd@notso.net, andylien@gmail.com*
2208
2209 * Update to Prototype 1.5.0_rc2. *Sam Stephenson*
2210
2211 * Remove JavaScriptLiteral in favor of ActiveSupport::JSON::Variable. *Sam Stephenson*
2212
2213 * Sync ActionController::StatusCodes::STATUS_CODES with http://www.iana.org/assignments/http-status-codes. #6586 *dkubb*
2214
2215 * Multipart form values may have a content type without being treated as uploaded files if they do not provide a filename. #6401 *Andreas Schwarz, Jeremy Kemper*
2216
2217 * assert_response supports symbolic status codes. #6569 *Kevin Clark*
2218 assert_response :ok
2219 assert_response :not_found
2220 assert_response :forbidden
2221
2222 * Cache parsed query parameters. #6559 *Stefan Kaes*
2223
2224 * Deprecate JavaScriptHelper#update_element_function, which is superseeded by RJS *Thomas Fuchs*
2225
2226 * pluralize helper interprets nil as zero. #6474 *Tim Pope*
2227
2228 * Fix invalid test fixture exposed by stricter Ruby 1.8.5 multipart parsing. #6524 *Bob Silva*
2229
2230 * Set ActionView::Base.default_form_builder once rather than passing the :builder option to every form or overriding the form helper methods. *Jeremy Kemper*
2231
2232 * Deprecate expire_matched_fragments. Use expire_fragment instead. #6535 *Bob Silva*
2233
2234 * Update to latest Prototype, which doesn't serialize disabled form elements, adds clone() to arrays, empty/non-string Element.update() and adds a fixes excessive error reporting in WebKit beta versions *Thomas Fuchs*
2235
2236 * Deprecate start_form_tag and end_form_tag. Use form_tag / '</form>' from now on. *Rick Olson*
2237
2238 * Added block-usage to PrototypeHelper#form_remote_tag, document block-usage of FormTagHelper#form_tag *Rick Olson*
2239
2240 * Add a 0 margin/padding div around the hidden _method input tag that form_tag outputs. *Rick Olson*
2241
2242 * Added block-usage to TagHelper#content_tag [David Heinemeier Hansson]. Example:
2243
2244 <% content_tag :div, :class => "strong" %>
2245 Hello world!
2246 <% end %>
2247
2248 Will output:
2249 <div class="strong">Hello world!</div>
2250
2251 * Deprecated UrlHelper#link_to_image and UrlHelper#link_to :post => true #6409 *Bob Silva*
2252
2253 * Upgraded NumberHelper with number_to_phone support international formats to comply with ITU E.123 by supporting area codes with less than 3 digits, added precision argument to number_to_human_size (defaults to 1) #6421 *Bob Silva*
2254
2255 * Fixed that setting RAILS_ASSET_ID to "" should not add a trailing slash after assets #6454 *Bob Silva/chrismear*
2256
2257 * Force *_url named routes to show the host in ActionView *Rick Olson*
2258
2259 <%= url_for ... %> # no host
2260 <%= foo_path %> # no host
2261 <%= foo_url %> # host!
2262
2263 * Add support for converting blocks into function arguments to JavaScriptGenerator#call and JavaScriptProxy#call. *Sam Stephenson*
2264
2265 * Add JavaScriptGenerator#literal for wrapping a string in an object whose #to_json is the string itself. *Sam Stephenson*
2266
2267 * Add <%= escape_once html %> to escape html while leaving any currently escaped entities alone. Fix button_to double-escaping issue. *Rick Olson*
2268
2269 * Fix double-escaped entities, such as &amp;amp;, &amp;#123;, etc. *Rick Olson*
2270
2271 * Fix deprecation warnings when rendering the template error template. *Nicholas Seckar*
2272
2273 * Fix routing to correctly determine when generation fails. Closes #6300. [psross].
2274
2275 * Fix broken assert_generates when extra keys are being checked. *Jamis Buck*
2276
2277 * Replace KCODE checks with String#chars for truncate. Closes #6385 *Manfred Stienstra*
2278
2279 * Make page caching respect the format of the resource that is being requested even if the current route is the default route so that, e.g. posts.rss is not transformed by url_for to '/' and subsequently cached as '/index.html' when it should be cached as '/posts.rss'. *Marcel Molina Jr.*
2280
2281 * Use String#chars in TextHelper::excerpt. Closes #6386 *Manfred Stienstra*
2282
2283 * Install named routes into ActionView::Base instead of proxying them to the view via helper_method. Closes #5932. *Nicholas Seckar*
2284
2285 * Update to latest Prototype and script.aculo.us trunk versions *Thomas Fuchs*
2286
2287 * Fix relative URL root matching problems. *Mark Imbriaco*
2288
2289 * Fix filter skipping in controller subclasses. #5949, #6297, #6299 *Martin Emde*
2290
2291 * render_text may optionally append to the response body. render_javascript appends by default. This allows you to chain multiple render :update calls by setting @performed_render = false between them (awaiting a better public API). *Jeremy Kemper*
2292
2293 * Rename test assertion to prevent shadowing. Closes #6306. *psross*
2294
2295 * Fixed that NumberHelper#number_to_delimiter should respect precision of higher than two digits #6231 *Philip Hallstrom*
2296
2297 * Fixed that FormHelper#radio_button didn't respect an :id being passed in #6266 *evansj*
2298
2299 * Added an html_options hash parameter to javascript_tag() and update_page_tag() helpers #6311 [tzaharia]. Example:
2300
2301 update_page_tag :defer => 'true' { |page| ... }
2302
2303 Gives:
2304
2305 <script defer="true" type="text/javascript">...</script>
2306
2307 Which is needed for dealing with the IE6 DOM when it's not yet fully loaded.
2308
2309 * Fixed that rescue template path shouldn't be hardcoded, then it's easier to hook in your own #6295 *Mike Naberezny*
2310
2311 * Fixed escaping of backslashes in JavaScriptHelper#escape_javascript #6302 *sven@c3d2.de*
2312
2313 * Fixed that some 500 rescues would cause 500's themselves because the response had not yet been generated #6329 *cmselmer*
2314
2315 * respond_to :html doesn't assume .rhtml. #6281 *Hampton Catlin*
2316
2317 * Fixed some deprecation warnings in ActionPack *Rick Olson*
2318
2319 * assert_select_rjs decodes escaped unicode chars since the Javascript generators encode them. #6240 *japgolly*
2320
2321 * Deprecation: @cookies, @headers, @request, @response will be removed after 1.2. Use the corresponding method instead. *Jeremy Kemper*
2322
2323 * Make the :status parameter expand to the default message for that status code if it is an integer. Also support symbol statuses. [Jamis Buck]. Examples:
2324
2325 head :status => 404 # expands to "404 Not Found"
2326 head :status => :not_found # expands to "404 Not Found"
2327 head :status => :created # expands to "201 Created"
2328
2329 * Add head(options = {}) for responses that have no body. [Jamis Buck]. Examples:
2330
2331 head :status => 404 # return an empty response with a 404 status
2332 head :location => person_path(@person), :status => 201
2333
2334 * Fix bug that kept any before_filter except the first one from being able to halt the before_filter chain. *Rick Olson*
2335
2336 * strip_links is case-insensitive. #6285 *tagoh, Bob Silva*
2337
2338 * Clear the cache of possible controllers whenever Routes are reloaded. *Nicholas Seckar*
2339
2340 * Filters overhaul including meantime filter support using around filters + blocks. #5949 *Martin Emde, Roman Le Negrate, Stefan Kaes, Jeremy Kemper*
2341
2342 * Update RJS render tests. *sam*
2343
2344 * Update CGI process to allow sessions to contain namespaced models. Closes #4638. *dfelstead@site5.com*
2345
2346 * Fix routing to respect user provided requirements and defaults when assigning default routing options (such as :action => 'index'). Closes #5950. *Nicholas Seckar*
2347
2348 * Rescue Errno::ECONNRESET to handle an unexpectedly closed socket connection. Improves SCGI reliability. #3368, #6226 *sdsykes, fhanshaw@vesaria.com*
2349
2350 * Added that respond_to blocks will automatically set the content type to be the same as is requested [David Heinemeier Hansson]. Examples:
2351
2352 respond_to do |format|
2353 format.html { render :text => "I'm being sent as text/html" }
2354 format.rss { render :text => "I'm being sent as application/rss+xml" }
2355 format.atom { render :text => "I'm being sent as application/xml", :content_type => Mime::XML }
2356 end
2357
2358 * Added utf-8 as the default charset for all renders. You can change this default using ActionController::Base.default_charset=(encoding) *David Heinemeier Hansson*
2359
2360 * Added proper getters and setters for content type and charset [David Heinemeier Hansson]. Example of what we used to do:
2361
2362 response.headers["Content-Type"] = "application/atom+xml; charset=utf-8"
2363
2364 ...now:
2365
2366 response.content_type = Mime::ATOM
2367 response.charset = "utf-8"
2368
2369 * Updated prototype.js to 1.5.0_rc1 with latest fixes. *Rick Olson*
2370
2371 - XPATH support
2372 - Make Form.getElements() return elements in the correct order
2373 - fix broken Form.serialize return
2374
2375 * Declare file extensions exempt from layouts. #6219 *brandon*
2376 Example: ActionController::Base.exempt_from_layout 'rpdf'
2377
2378 * Add chained replace/update support for assert_select_rjs *Rick Olson*
2379
2380 Given RJS like...
2381
2382 page['test1'].replace "<div id=\"1\">foo</div>"
2383 page['test2'].replace_html "<div id=\"2\">foo</div>"
2384
2385 Test it with...
2386
2387 assert_select_rjs :chained_replace
2388 assert_select_rjs :chained_replace, "test1"
2389
2390 assert_select_rjs :chained_replace_html
2391 assert_select_rjs :chained_replace_html, "test2"
2392
2393 * Load helpers in alphabetical order for consistency. Resolve cyclic javascript_helper dependency. #6132, #6178 *choonkeat@gmail.com*
2394
2395 * Skip params with empty names, such as the &=Save query string from <input type="submit"/>. #2569 *Manfred Stienstra, raphinou@yahoo.com*
2396
2397 * Fix assert_tag so that :content => "foo" does not match substrings, but only exact strings. Use :content => /foo/ to match substrings. #2799 *Eric Hodel*
2398
2399 * Add descriptive messages to the exceptions thrown by cgi_methods. #6091, #6103 *Nicholas Seckar, Bob Silva*
2400
2401 * Update JavaScriptGenerator#show/hide/toggle/remove to new Prototype syntax for multiple ids, #6068 *petermichaux@gmail.com*
2402
2403 * Update UrlWriter to support :only_path. *Nicholas Seckar, Dave Thomas*
2404
2405 * Fixed JavaScriptHelper#link_to_function and JavaScriptHelper#button_to_function to have the script argument be optional [David Heinemeier Hansson]. So what used to require a nil, like this:
2406
2407 link_to("Hider", nil, :class => "hider_link") { |p| p[:something].hide }
2408
2409 ...can be written like this:
2410
2411 link_to("Hider", :class => "hider_link") { |p| p[:something].hide }
2412
2413 * Update to script.aculo.us 1.6.3 *Thomas Fuchs*
2414
2415 * Update to Prototype 1.5.0_rc1 *sam*
2416
2417 * Added access to nested attributes in RJS #4548 [richcollins@gmail.com]. Examples:
2418
2419 page['foo']['style'] # => $('foo').style;
2420 page['foo']['style']['color'] # => $('blank_slate').style.color;
2421 page['foo']['style']['color'] = 'red' # => $('blank_slate').style.color = 'red';
2422 page['foo']['style'].color = 'red' # => $('blank_slate').style.color = 'red';
2423
2424 * Fixed that AssetTagHelper#image_tag and others using compute_public_path should not modify the incoming source argument (closes #5102) *eule@space.ch*
2425
2426 * Deprecated the auto-appending of .png to AssetTagHelper#image_tag calls that doesn't have an extension *David Heinemeier Hansson*
2427
2428 * Fixed FormOptionsHelper#select to respect :selected value #5813
2429
2430 * Fixed TextHelper#simple_format to deal with multiple single returns within a single paragraph #5835 *moriq@moriq.com*
2431
2432 * Fixed TextHelper#pluralize to handle 1 as a string #5909 *rails@bencurtis.com*
2433
2434 * Improved resolution of DateHelper#distance_of_time_in_words for better precision #5994 *Bob Silva*
2435
2436 * Changed that uncaught exceptions raised any where in the application will cause RAILS_ROOT/public/500.html to be read and shown instead of just the static "Application error (Rails)" *David Heinemeier Hansson*
2437
2438 * Integration tests: thoroughly test ActionController::Integration::Session. #6022 *Kevin Clark*
2439 (tests skipped unless you `gem install mocha`)
2440
2441 * Added deprecation language for pagination which will become a plugin by Rails 2.0 *David Heinemeier Hansson*
2442
2443 * Added deprecation language for in_place_editor and auto_complete_field that both pieces will become plugins by Rails 2.0 *David Heinemeier Hansson*
2444
2445 * Deprecated all of ActionController::Dependencies. All dependency loading is now handled from Active Support *David Heinemeier Hansson*
2446
2447 * Added assert_select* for CSS selector-based testing (deprecates assert_tag) #5936 *assaf.arkin@gmail.com*
2448
2449 * radio_button_tag generates unique id attributes. #3353 *Bob Silva, somekool@gmail.com*
2450
2451 * strip_tags passes through blank args such as nil or "". #2229, #6702 *duncan@whomwah.com, dharana*
2452
2453 * Cleanup assert_tag :children counting. #2181 *jamie@bravenet.com*
2454
2455 * button_to accepts :method so you can PUT and DELETE with it. #6005 *Dan Webb*
2456
2457 * Update sanitize text helper to strip plaintext tags, and <img src="javascript:bang">. *Rick Olson*
2458
2459 * Update routing documentation. Closes #6017 *Nathan Witmer*
2460
2461 * Add routing tests to assert that RoutingError is raised when conditions aren't met. Closes #6016 *Nathan Witmer*
2462
2463 * Deprecation: update docs. #5998 *Jakob Skjerning, Kevin Clark*
2464
2465 * Make auto_link parse a greater subset of valid url formats. *Jamis Buck*
2466
2467 * Integration tests: headers beginning with X aren't excluded from the HTTP_ prefix, so X-Requested-With becomes HTTP_X_REQUESTED_WITH as expected. *Mike Clark*
2468
2469 * Tighten rescue clauses. #5985 *james@grayproductions.net*
2470
2471 * Fix send_data documentation typo. #5982 *brad@madriska.com*
2472
2473 * Switch to using FormEncodedPairParser for parsing request parameters. *Nicholas Seckar, David Heinemeier Hansson*
2474
2475 * respond_to .html now always renders #{action_name}.rhtml so that registered custom template handlers do not override it in priority. Custom mime types require a block and throw proper error now. *Tobias Lütke*
2476
2477 * Deprecation: test deprecated instance vars in partials. *Jeremy Kemper*
2478
2479 * Add UrlWriter to allow writing urls from Mailers and scripts. *Nicholas Seckar*
2480
2481 * Clean up and run the Active Record integration tests by default. #5854 *Kevin Clark, Jeremy Kemper*
2482
2483 * Correct example in cookies docs. #5832 *jessemerriman@warpmail.net*
2484
2485 * Updated to script.aculo.us 1.6.2 *Thomas Fuchs*
2486
2487 * Relax Routing's anchor pattern warning; it was preventing use of [^/] inside restrictions. *Nicholas Seckar*
2488
2489 * Add controller_paths variable to Routing. *Nicholas Seckar*
2490
2491 * Fix assert_redirected_to issue with named routes for module controllers. *Rick Olson*
2492
2493 * Tweak RoutingError message to show option diffs, not just missing named route significant keys. *Rick Olson*
2494
2495 * Invoke method_missing directly on hidden actions. Closes #3030. *Nicholas Seckar*
2496
2497 * Require Tempfile explicitly for TestUploadedFile due to changes in class auto loading. *Rick Olson*
2498
2499 * Add RoutingError exception when RouteSet fails to generate a path from a Named Route. *Rick Olson*
2500
2501 * Replace Reloadable with Reloadable::Deprecated. *Nicholas Seckar*
2502
2503 * Deprecation: check whether instance variables have been monkeyed with before assigning them to deprecation proxies. Raises a RuntimeError if so. *Jeremy Kemper*
2504
2505 * Add support for the param_name parameter to the auto_complete_field helper. #5026 *david.a.williams@gmail.com*
2506
2507 * Deprecation! @params, @session, @flash will be removed after 1.2. Use the corresponding instance methods instead. You'll get printed warnings during tests and logged warnings in dev mode when you access either instance variable directly. *Jeremy Kemper*
2508
2509 * Make Routing noisy when an anchor regexp is assigned to a segment. #5674 *François Beausoleil*
2510
2511 * Added months and years to the resolution of DateHelper#distance_of_time_in_words, such that "60 days ago" becomes "2 months ago" #5611 *pjhyett@gmail.com*
2512
2513 * Short documentation to mention use of Mime::Type.register. #5710 *choonkeat@gmail.com*
2514
2515 * Make controller_path available as an instance method. #5724 *jmckible@gmail.com*
2516
2517 * Update query parser to support adjacent hashes. *Nicholas Seckar*
2518
2519 * Make action caching aware of different formats for the same action so that, e.g. foo.xml is cached separately from foo.html. Implicitly set content type when reading in cached content with mime revealing extensions so the entire onous isn't on the webserver. *Marcel Molina Jr.*
2520
2521 * Restrict Request Method hacking with ?_method to POST requests. *Rick Olson*
2522
2523 * Fix bug when passing multiple options to SimplyRestful, like :new => { :preview => :get, :draft => :get }. *Rick Olson, Josh Susser, Lars Pind*
2524
2525 * Dup the options passed to map.resources so that multiple resources get the same options. *Rick Olson*
2526
2527 * Fixed the new_#{resource}_url route and added named route tests for Simply Restful. *Rick Olson*
2528
2529 * Added map.resources from the Simply Restful plugin [David Heinemeier Hansson]. Examples (the API has changed to use plurals!):
2530
2531 map.resources :messages
2532 map.resources :messages, :comments
2533 map.resources :messages, :new => { :preview => :post }
2534
2535 * Fixed that integration simulation of XHRs should set Accept header as well *Edward Frederick*
2536
2537 * TestRequest#reset_session should restore a TestSession, not a hash *Michael Koziarski*
2538
2539 * Don't search a load-path of '.' for controller files *Jamis Buck*
2540
2541 * Update integration.rb to require test_process explicitly instead of via Dependencies. *Nicholas Seckar*
2542
2543 * Fixed that you can still access the flash after the flash has been reset in reset_session. Closes #5584 *lmarlow*
2544
2545 * Allow form_for and fields_for to work with indexed form inputs. *Jeremy Kemper, Matt Lyon*
2546
2547 <% form_for 'post[]', @post do |f| -%>
2548 <% end -%>
2549
2550 * Remove leak in development mode by replacing define_method with module_eval. *Nicholas Seckar*
2551
2552 * Provide support for decimal columns to form helpers. Closes #5672. *Dave Thomas*
2553
2554 * Update documentation for erb trim syntax. #5651 *matt@mattmargolis.net*
2555
2556 * Pass :id => nil or :class => nil to error_messages_for to supress that html attribute. #3586 *olivier_ansaldi@yahoo.com*
2557
2558 * Reset @html_document between requests so assert_tag works. #4810 *Jarkko Laine, easleydp@gmail.com*