Skip to content
This repository
Newer
Older
100644 5857 lines (3367 sloc) 299.613 kb
86748233 »
2012-03-02 Add CHANGELOG entry
1 ## Rails 3.2.3 (unreleased) ##
2
520571ac »
2012-03-03 Turn off verbose mode of rack-cache, we still have X-Rack-Cache to ch…
3 * Turn off verbose mode of rack-cache, we still have X-Rack-Cache to
4 check that info. Closes #5245. *Santiago Pastorino*
5
86748233 »
2012-03-02 Add CHANGELOG entry
6 * Fix #5238, rendered_format is not set when template is not rendered. *Piotr Sarnacki*
7
8
2e5ec3b3 »
2012-01-27 Merge check box fixes from remote-tracking branch 'cantonio/checkbox-…
9 ## Rails 3.2.2 (unreleased) ##
10
82d6dedc »
2012-02-22 Fix CHANGELOG
11 * Format lookup for partials is derived from the format in which the template is being rendered. Closes #5025 part 2 *Santiago Pastorino*
110b43c8 »
2012-02-22 Add CHANGELOG entry
12
82d6dedc »
2012-02-22 Fix CHANGELOG
13 * Use the right format when a partial is missing. Closes #5025. *Santiago Pastorino*
b1229685 »
2012-02-21 Add CHANGELOG entry
14
567ac65b »
2012-02-03 Fix override API response bug in respond_with
15 * Default responder will now always use your overridden block in `respond_with` to render your response. *Prem Sichanugrist*
16
2e5ec3b3 »
2012-01-27 Merge check box fixes from remote-tracking branch 'cantonio/checkbox-…
17 * check_box helper with :disabled => true will generate a disabled hidden field to conform with the HTML convention where disabled fields are not submitted with the form.
18 This is a behavior change, previously the hidden tag had a value of the disabled checkbox.
19 *Tadas Tamosauskas*
20
86748233 »
2012-03-02 Add CHANGELOG entry
21
97e8d1d8 »
2012-01-26 CHANGELOG revision for v3.2.1
22 ## Rails 3.2.1 (January 26, 2012) ##
23
24 * Documentation improvements.
25
26 * Allow `form.select` to accept ranges (regression). *Jeremy Walker*
27
28 * `datetime_select` works with -/+ infinity dates. *Joe Van Dyk*
29
30
f36dcaf4 »
2012-01-20 Preparing for 3.2.0 release
31 ## Rails 3.2.0 (January 20, 2012) ##
281272ad »
2011-11-04 Convert CHANGELOGs to Markdown format.
32
ae7037eb »
2012-01-18 Update CHANGELOG and docs for config.assets.logger
33 * Setting config.assets.logger to false turn off Sprockets logger *Guillermo Iguaran*
34
ed0f0ad3 »
2012-01-17 Update changelog
35 * Add `config.action_dispatch.default_charset` to configure default charset for ActionDispatch::Response. *Carlos Antonio da Silva*
36
37 * Deprecate setting default charset at controller level, use the new `config.action_dispatch.default_charset` instead. *Carlos Antonio da Silva*
38
39 * Deprecate ActionController::UnknownAction in favour of AbstractController::ActionNotFound. *Carlos Antonio da Silva*
40
41 * Deprecate ActionController::DoubleRenderError in favour of AbstractController::DoubleRenderError. *Carlos Antonio da Silva*
42
43 * Deprecate method_missing handling for not found actions, use action_missing instead. *Carlos Antonio da Silva*
44
45 * Deprecate ActionController#rescue_action, ActionController#initialize_template_class, and ActionController#assign_shortcuts.
46 These methods were not being used internally anymore and are going to be removed in Rails 4. *Carlos Antonio da Silva*
47
c4c6bebe »
2012-01-17 Add option to configure Sprockets logger
48 * Add config.assets.logger to configure Sprockets logger *Rafael França*
49
c159b01b »
2012-01-13 Use a BodyProxy instead of including a Module that responds to close.
50 * Use a BodyProxy instead of including a Module that responds to
51 close. Closes #4441 if Active Record is disabled assets are delivered
52 correctly *Santiago Pastorino*
53
6f48fb3a »
2012-01-10 Add CHANGELOG entry
54 * Rails initialization with initialize_on_precompile = false should set assets_dir *Santiago Pastorino*
55
0d7d3a6e »
2012-01-03 Add font_path helper method
56 * Add font_path helper method *Santiago Pastorino*
57
a0fd9fb0 »
2011-12-28 Add CHANGELOG entry
58 * Depends on rack ~> 1.4.0 *Santiago Pastorino*
59
fc429980 »
2011-12-24 Update CHANGELOGs.
60 * Add :gzip option to `caches_page`. The default option can be configured globally using `page_cache_compression` *Andrey Sitnik*
61
6481bc5f »
2011-12-16 Update CHANGELOGs and guides.
62 * The ShowExceptions middleware now accepts a exceptions application that is responsible to render an exception when the application fails. The application is invoked with a copy of the exception in `env["action_dispatch.exception"]` and with the PATH_INFO rewritten to the status code. *José Valim*
63
3f65e7f7 »
2011-12-10 Add button_tag support to ActionView::Helpers::FormBuilder.
64 * Add `button_tag` support to ActionView::Helpers::FormBuilder.
65
66 This support mimics the default behavior of `submit_tag`.
67
68 Example:
69
70 <%= form_for @post do |f| %>
71 <%= f.button %>
72 <% end %>
73
ed0f0ad3 »
2012-01-17 Update changelog
74 * Date helpers accept a new option, `:use_two_digit_numbers = true`, that renders select boxes for months and days with a leading zero without changing the respective values.
dc43e402 »
2011-12-11 Added :use_two_digit_numbers option [Lennart Fridén & Kim Persson]
75 For example, this is useful for displaying ISO8601-style dates such as '2011-08-01'. *Lennart Fridén and Kim Persson*
76
22a6079a »
2011-12-09 Make ActiveSupport::Benchmarkable a default module for ActionControll…
77 * Make ActiveSupport::Benchmarkable a default module for ActionController::Base, so the #benchmark method is once again available in the controller context like it used to be *DHH*
78
5ad52152 »
2011-12-09 Deprecate implicit layout lookup in favor of inheriting the _layout c…
79 * Deprecated implied layout lookup in controllers whose parent had a explicit layout set:
80
81 class ApplicationController
82 layout "application"
83 end
84
85 class PostsController < ApplicationController
86 end
87
88 In the example above, Posts controller will no longer automatically look up for a posts layout.
89
90 If you need this functionality you could either remove `layout "application"` from ApplicationController or explicitly set it to nil in PostsController. *José Valim*
91
18ceed20 »
2011-12-06 Allow layout fallback when using `layout` method
92 * Rails will now use your default layout (such as "layouts/application") when you specify a layout with `:only` and `:except` condition, and those conditions fail. *Prem Sichanugrist*
93
94 For example, consider this snippet:
95
96 class CarsController
97 layout 'single_car', :only => :show
98 end
99
100 Rails will use 'layouts/single_car' when a request comes in `:show` action, and use 'layouts/application' (or 'layouts/cars', if exists) when a request comes in for any other actions.
101
e29773f8 »
2011-12-04 form_for with +:as+ option uses "action_as" as css class and id
102 * form_for with +:as+ option uses "#{action}_#{as}" as css class and id:
103
104 Before:
105
106 form_for(@user, :as => 'client') # => "<form class="client_new">..."
107
108 Now:
109
110 form_for(@user, :as => 'client') # => "<form class="new_client">..."
111
112 *Vasiliy Ermolovich*
113
07f90f6b »
2011-12-01 Merge branch 'exceptions' with the following features:
114 * Allow rescue responses to be configured through a railtie as in `config.action_dispatch.rescue_responses`. Please look at ActiveRecord::Railtie for an example *José Valim*
115
218c2729 »
2011-12-01 Allow fresh_when/stale? to take a record instead of an options hash […
116 * Allow fresh_when/stale? to take a record instead of an options hash *DHH*
117
1e51cd95 »
2011-12-01 Update CHANGELOG.
118 * Assets should use the request protocol by default or default to relative if no request is available *Jonathan del Strother*
119
120 * Log "Filter chain halted as CALLBACKNAME rendered or redirected" every time a before callback halts *José Valim*
38ab982c »
2011-11-30 Log 'Filter chain halted as CALLBACKNAME rendered or redirected' ever…
121
25592569 »
2011-11-28 update CHANGELOG
122 * You can provide a namespace for your form to ensure uniqueness of id attributes on form elements.
123 The namespace attribute will be prefixed with underscore on the generate HTML id. *Vasiliy Ermolovich*
124
125 Example:
126
127 <%= form_for(@offer, :namespace => 'namespace') do |f| %>
128 <%= f.label :version, 'Version' %>:
129 <%= f.text_field :version %>
130 <% end %>
131
654df86b »
2011-12-16 Show detailed exceptions no longer returns true if the request is loc…
132 * Refactor ActionDispatch::ShowExceptions. The controller is responsible for choosing to show exceptions when `consider_all_requests_local` is false.
3a1d5195 »
2011-11-22 deprecation warning, changelog entry
133
654df86b »
2011-12-16 Show detailed exceptions no longer returns true if the request is loc…
134 It's possible to override `show_detailed_exceptions?` in controllers to specify which requests should provide debugging information on errors. The default value is now false, meaning local requests in production will no longer show the detailed exceptions page unless `show_detailed_exceptions?` is overridden and set to `request.local?`.
3a1d5195 »
2011-11-22 deprecation warning, changelog entry
135
281272ad »
2011-11-04 Convert CHANGELOGs to Markdown format.
136 * Responders now return 204 No Content for API requests without a response body (as in the new scaffold) *José Valim*
137
138 * Added ActionDispatch::RequestId middleware that'll make a unique X-Request-Id header available to the response and enables the ActionDispatch::Request#uuid method. This makes it easy to trace requests from end-to-end in the stack and to identify individual requests in mixed logs like Syslog *DHH*
139
140 * Limit the number of options for select_year to 1000.
141
142 Pass the :max_years_allowed option to set your own limit.
143
144 *Libo Cannici*
145
146 * Passing formats or handlers to render :template and friends is deprecated. For example: *Nick Sutterer & José Valim*
147
148 render :template => "foo.html.erb"
149
150 Instead, you can provide :handlers and :formats directly as option:
151 render :template => "foo", :formats => [:html, :js], :handlers => :erb
152
153 * Changed log level of warning for missing CSRF token from :debug to :warn. *Mike Dillon*
154
155 * content_tag_for and div_for can now take the collection of records. It will also yield the record as the first argument if you set a receiving argument in your block *Prem Sichanugrist*
156
157 So instead of having to do this:
158
159 @items.each do |item|
160 content_tag_for(:li, item) do
161 Title: <%= item.title %>
162 end
163 end
164
165 You can now do this:
166
167 content_tag_for(:li, @items) do |item|
168 Title: <%= item.title %>
169 end
170
171 * send_file now guess the mime type *Esad Hajdarevic*
172
173 * Mime type entries for PDF, ZIP and other formats were added *Esad Hajdarevic*
174
175 * Generate hidden input before select with :multiple option set to true.
176 This is useful when you rely on the fact that when no options is set,
177 the state of select will be sent to rails application. Without hidden field
178 nothing is sent according to HTML spec *Bogdan Gusiev*
179
180 * Refactor ActionController::TestCase cookies *Andrew White*
181
182 Assigning cookies for test cases should now use cookies[], e.g:
183
184 cookies[:email] = 'user@example.com'
185 get :index
186 assert_equal 'user@example.com', cookies[:email]
187
188 To clear the cookies, use clear, e.g:
189
190 cookies.clear
191 get :index
192 assert_nil cookies[:email]
193
194 We now no longer write out HTTP_COOKIE and the cookie jar is
195 persistent between requests so if you need to manipulate the environment
196 for your test you need to do it before the cookie jar is created.
197
677f968b »
2011-12-08 Add information to the changelog about the changes to ActionControlle…
198 * ActionController::ParamsWrapper on ActiveRecord models now only wrap
199 attr_accessible attributes if they were set, if not, only the attributes
200 returned by the class method attribute_names will be wrapped. This fixes
201 the wrapping of nested attributes by adding them to attr_accessible.
202
9be2353f »
2011-12-06 Sync AP CHANGELOG with 3-1-stable
203 ## Rails 3.1.4 (unreleased) ##
204
205 * Allow to use asset_path on named_routes aliasing RailsHelper's
206 asset_path to path_to_asset *Adrian Pike*
207
208 * Assets should use the request protocol by default or default to
209 relative if no request is available *Jonathan del Strother*
210
603a679e »
2011-11-19 Don't html-escape the :count option to translate if it's a Numeric. F…
211 ## Rails 3.1.3 (unreleased) ##
212
213 * Fix using `tranlate` helper with a html translation which uses the `:count` option for
214 pluralization.
215
216 *Jon Leighton*
217
fc988115 »
2011-11-06 Implement a workaround for a bug in ruby-1.9.3p0.
218 ## Rails 3.1.2 (unreleased) ##
219
e8d57f36 »
2011-11-17 _html translation should escape interpolated arguments
220 * Fix XSS security vulnerability in the `translate` helper method. When using interpolation
221 in combination with HTML-safe translations, the interpolated input would not get HTML
222 escaped. *GH 3664*
223
224 Before:
225
226 translate('foo_html', :something => '<script>') # => "...<script>..."
227
228 After:
229
230 translate('foo_html', :something => '<script>') # => "...&lt;script&gt;..."
231
232 *Sergey Nartimov*
233
ca3b4689 »
2011-11-14 Sync changelog entry
234 * Upgrade sprockets dependency to ~> 2.1.0
235
da02f792 »
2011-11-14 Sync CHANGELOGs from 3-1-stable
236 * Ensure that the format isn't applied twice to the cache key, else it becomes impossible
237 to target with expire_action.
238
239 *Christopher Meiklejohn*
240
241 * Swallow error when can't unmarshall object from session.
242
243 *Bruno Zanchet*
244
fc988115 »
2011-11-06 Implement a workaround for a bug in ruby-1.9.3p0.
245 * Implement a workaround for a bug in ruby-1.9.3p0 where an error would be raised
246 while attempting to convert a template from one encoding to another.
247
248 Please see http://redmine.ruby-lang.org/issues/5564 for details of the bug.
249
250 The workaround is to load all conversions into memory ahead of time, and will
251 only happen if the ruby version is *exactly* 1.9.3p0. The hope is obviously that
252 the underlying problem will be resolved in the next patchlevel release of
253 1.9.3.
254
255 *Jon Leighton*
281272ad »
2011-11-04 Convert CHANGELOGs to Markdown format.
256
da02f792 »
2011-11-14 Sync CHANGELOGs from 3-1-stable
257 * Ensure users upgrading from 3.0.x to 3.1.x will properly upgrade their flash object in session (issues #3298 and #2509)
258
281272ad »
2011-11-04 Convert CHANGELOGs to Markdown format.
259 ## Rails 3.1.1 (unreleased) ##
260
261 * javascript_path and stylesheet_path now refer to /assets if asset pipelining
262 is on. [Santiago Pastorino]
263 * button_to support form option. Now you're able to pass for example
264 'data-type' => 'json'. [ihower]
265 * image_path and image_tag should use /assets if asset pipelining is turned
266 on. Closes #3126 [Santiago Pastorino and christos]
267 * Avoid use of existing precompiled assets during rake assets:precompile run.
268 Closes #3119 [Guillermo Iguaran]
269 * Copy assets to nondigested filenames too *Santiago Pastorino*
270
271 * Give precedence to `config.digest = false` over the existence of
272 manifest.yml asset digests [christos]
273 * escape options for the stylesheet_link_tag method *Alexey Vakhov*
274
275 * Re-launch assets:precompile task using (Rake.)ruby instead of Kernel.exec so
276 it works on Windows [cablegram]
277 * env var passed to process shouldn't be modified in process method. [Santiago
278 Pastorino]
279 * `rake assets:precompile` loads the application but does not initialize
280 it.
281 To the app developer, this means configuration add in
282 config/initializers/* will not be executed.
283 Plugins developers need to special case their initializers that are
284 meant to be run in the assets group by adding :group => :assets. *José Valim*
285
286 * Sprockets uses config.assets.prefix for asset_path *asee*
287
288 * FileStore key_file_path properly limit filenames to 255 characters. *phuibonhoa*
289
290 * Fix Hash#to_query edge case with html_safe strings. *brainopia*
291
292 * Allow asset tag helper methods to accept :digest => false option in order to completely avoid the digest generation.
293 Useful for linking assets from static html files or from emails when the user could probably look at an older html email with an older asset. [Santiago Pastorino]
294 * Don't mount Sprockets server at config.assets.prefix if config.assets.compile is false. *Mark J. Titorenko*
295
296 * Set relative url root in assets when controller isn't available for Sprockets (eg. Sass files using asset_path). Fixes #2435 *Guillermo Iguaran*
297
298 * Fix basic auth credential generation to not make newlines. GH #2882
299
300 * Fixed the behavior of asset pipeline when config.assets.digest and config.assets.compile are false and requested asset isn't precompiled.
301 Before the requested asset were compiled anyway ignoring that the config.assets.compile flag is false. *Guillermo Iguaran*
302
303 * CookieJar is now Enumerable. Fixes #2795
304
305 * Fixed AssetNotPrecompiled error raised when rake assets:precompile is compiling certain .erb files. See GH #2763 #2765 #2805 *Guillermo Iguaran*
306
307 * Manifest is correctly placed in assets path when default assets prefix is changed. Fixes #2776 *Guillermo Iguaran*
308
309 * Fixed stylesheet_link_tag and javascript_include_tag to respect additional options passed by the users when debug is on. *Guillermo Iguaran*
310
311
312 ## Rails 3.1.0 (August 30, 2011) ##
313
314 * Param values are `paramified` in controller tests. *David Chelimsky*
315
316 * x_sendfile_header now defaults to nil and config/environments/production.rb doesn't set a particular value for it. This allows servers to set it through X-Sendfile-Type. *Santiago Pastorino*
317
318 * The submit form helper does not generate an id "object_name_id" anymore. *fbrusatti*
319
320 * Make sure respond_with with :js tries to render a template in all cases *José Valim*
321
322 * json_escape will now return a SafeBuffer string if it receives SafeBuffer string *tenderlove*
323
324 * Make sure escape_js returns SafeBuffer string if it receives SafeBuffer string *Prem Sichanugrist*
325
326 * Fix escape_js to work correctly with the new SafeBuffer restriction *Paul Gallagher*
327
328 * Brought back alternative convention for namespaced models in i18n *thoefer*
329
330 Now the key can be either "namespace.model" or "namespace/model" until further deprecation.
331
332 * It is prohibited to perform a in-place SafeBuffer mutation *tenderlove*
333
334 The old behavior of SafeBuffer allowed you to mutate string in place via
335 method like `sub!`. These methods can add unsafe strings to a safe buffer,
336 and the safe buffer will continue to be marked as safe.
337
338 An example problem would be something like this:
339
340 <%= link_to('hello world', @user).sub!(/hello/, params[:xss]) %>
341
342 In the above example, an untrusted string (`params[:xss]`) is added to the
343 safe buffer returned by `link_to`, and the untrusted content is successfully
344 sent to the client without being escaped. To prevent this from happening
345 `sub!` and other similar methods will now raise an exception when they are called on a safe buffer.
346
347 In addition to the in-place versions, some of the versions of these methods which return a copy of the string will incorrectly mark strings as safe. For example:
348
349 <%= link_to('hello world', @user).sub(/hello/, params[:xss]) %>
350
351 The new versions will now ensure that *all* strings returned by these methods on safe buffers are marked unsafe.
352
353 You can read more about this change in http://groups.google.com/group/rubyonrails-security/browse_thread/thread/2e516e7acc96c4fb
354
355 * Warn if we cannot verify CSRF token authenticity *José Valim*
356
357 * Allow AM/PM format in datetime selectors *Aditya Sanghi*
358
359 * Only show dump of regular env methods on exception screen (not all the rack crap) *DHH*
360
361 * auto_link has been removed with no replacement. If you still use auto_link
362 please install the rails_autolink gem:
363 http://github.com/tenderlove/rails_autolink
364
365 *tenderlove*
366
367 * Added streaming support, you can enable it with: *José Valim*
368
369 class PostsController < ActionController::Base
370 stream :only => :index
371 end
372
373 Please read the docs at `ActionController::Streaming` for more information.
374
375 * Added `ActionDispatch::Request.ignore_accept_header` to ignore accept headers and only consider the format given as parameter *José Valim*
376
377 * Created `ActionView::Renderer` and specified an API for `ActionView::Context`, check those objects for more information *José Valim*
378
379 * Added `ActionController::ParamsWrapper` to wrap parameters into a nested hash, and will be turned on for JSON request in new applications by default *Prem Sichanugrist*
380
381 This can be customized by setting `ActionController::Base.wrap_parameters` in `config/initializer/wrap_parameters.rb`
382
383 * RJS has been extracted out to a gem. *fxn*
384
385 * Implicit actions named not_implemented can be rendered. *Santiago Pastorino*
386
387 * Wildcard route will always match the optional format segment by default. *Prem Sichanugrist*
388
389 For example if you have this route:
390
391 match '*pages' => 'pages#show'
392
393 by requesting '/foo/bar.json', your `params[:pages]` will be equals to "foo/bar" with the request format of JSON. If you want the old 3.0.x behavior back, you could supply `:format => false` like this:
394
395 match '*pages' => 'pages#show', :format => false
396
397 * Added Base.http_basic_authenticate_with to do simple http basic authentication with a single class method call *DHH*
398
399 class PostsController < ApplicationController
400 USER_NAME, PASSWORD = "dhh", "secret"
401
402 before_filter :authenticate, :except => [ :index ]
403
404 def index
405 render :text => "Everyone can see me!"
406 end
407
408 def edit
409 render :text => "I'm only accessible if you know the password"
410 end
411
412 private
413 def authenticate
414 authenticate_or_request_with_http_basic do |user_name, password|
415 user_name == USER_NAME && password == PASSWORD
416 end
417 end
418 end
419
420 ..can now be written as
421
422 class PostsController < ApplicationController
423 http_basic_authenticate_with :name => "dhh", :password => "secret", :except => :index
424
425 def index
426 render :text => "Everyone can see me!"
427 end
428
429 def edit
430 render :text => "I'm only accessible if you know the password"
431 end
432 end
433
434 * Allow you to add `force_ssl` into controller to force browser to transfer data via HTTPS protocol on that particular controller. You can also specify `:only` or `:except` to specific it to particular action. *DHH and Prem Sichanugrist*
435
436 * Allow FormHelper#form_for to specify the :method as a direct option instead of through the :html hash *DHH*
437
438 form_for(@post, remote: true, method: :delete) instead of form_for(@post, remote: true, html: { method: :delete })
439
440 * Make JavaScriptHelper#j() an alias for JavaScriptHelper#escape_javascript() -- note this then supersedes the Object#j() method that the JSON gem adds within templates using the JavaScriptHelper *DHH*
441
442 * Sensitive query string parameters (specified in config.filter_parameters) will now be filtered out from the request paths in the log file. *Prem Sichanugrist, fxn*
443
444 * URL parameters which return false for to_param now appear in the query string (previously they were removed) *Andrew White*
445
446 * URL parameters which return nil for to_param are now removed from the query string *Andrew White*
447
448 * ActionDispatch::MiddlewareStack now uses composition over inheritance. It is
449 no longer an array which means there may be methods missing that were not tested.
450 * Add an :authenticity_token option to form_tag for custom handling or to omit the token (pass :authenticity_token => false). *Jakub Kuźma, Igor Wiedler*
451
452 * HTML5 button_tag helper. *Rizwan Reza*
453
454 * Template lookup now searches further up in the inheritance chain. *Artemave*
455
456 * Brought back config.action_view.cache_template_loading, which allows to decide whether templates should be cached or not. *Piotr Sarnacki*
457
458 * url_for and named url helpers now accept :subdomain and :domain as options, *Josh Kalderimis*
459
460 * The redirect route method now also accepts a hash of options which will only change the parts of the url in question, or an object which responds to call, allowing for redirects to be reused (check the documentation for examples). *Josh Kalderimis*
461
462 * Added config.action_controller.include_all_helpers. By default 'helper :all' is done in ActionController::Base, which includes all the helpers by default. Setting include_all_helpers to false will result in including only application_helper and helper corresponding to controller (like foo_helper for foo_controller). *Piotr Sarnacki*
463
464 * Added a convenience idiom to generate HTML5 data-* attributes in tag helpers from a :data hash of options:
465
466 tag("div", :data => {:name => 'Stephen', :city_state => %w(Chicago IL)})
467 # => <div data-name="Stephen" data-city-state="[&quot;Chicago&quot;,&quot;IL&quot;]" />
468
469 Keys are dasherized. Values are JSON-encoded, except for strings and symbols. *Stephen Celis*
470
471 * Deprecate old template handler API. The new API simply requires a template handler to respond to call. *José Valim*
472
473 * :rhtml and :rxml were finally removed as template handlers. *José Valim*
474
475 * Moved etag responsibility from ActionDispatch::Response to the middleware stack. *José Valim*
476
477 * Rely on Rack::Session stores API for more compatibility across the Ruby world. This is backwards incompatible since Rack::Session expects #get_session to accept 4 arguments and requires #destroy_session instead of simply #destroy. *José Valim*
478
479 * file_field automatically adds :multipart => true to the enclosing form. *Santiago Pastorino*
480
481 * Renames csrf_meta_tag -> csrf_meta_tags, and aliases csrf_meta_tag for backwards compatibility. *fxn*
482
483 * Add Rack::Cache to the default stack. Create a Rails store that delegates to the Rails cache, so by default, whatever caching layer you are using will be used for HTTP caching. Note that Rack::Cache will be used if you use #expires_in, #fresh_when or #stale with :public => true. Otherwise, the caching rules will apply to the browser only. *Yehuda Katz, Carl Lerche*
484
485
486 ## Rails 3.0.7 (April 18, 2011) ##
487
488 * No changes.
489
490
491 * Rails 3.0.6 (April 5, 2011)
492
493 * Fixed XSS vulnerability in `auto_link`. `auto_link` no longer marks input as
494 html safe. Please make sure that calls to auto_link() are wrapped in a
495 sanitize(), or a raw() depending on the type of input passed to auto_link().
496 For example:
497
498 <%= sanitize(auto_link(some_user_input)) %>
499
500 Thanks to Torben Schulz for reporting this. The fix can be found here:
501 61ee3449674c591747db95f9b3472c5c3bd9e84d
502
503 * Fixes the output of `rake routes` to be correctly match to the behavior of the application, as the regular expression used to match the path is greedy and won't capture the format part by default *Prem Sichanugrist*
504
505 * Fixes an issue with number_to_human when converting values which are less than 1 but greater than -1 *Josh Kalderimis*
506
507 * Sensitive query string parameters (specified in config.filter_parameters) will now be filtered out from the request paths in the log file. *Prem Sichanugrist, fxn*
508
509 * URL parameters which return nil for to_param are now removed from the query string *Andrew White*
510
511 * Don't allow i18n to change the minor version, version now set to ~> 0.5.0 *Santiago Pastorino*
512
513 * Make TranslationHelper#translate use the :rescue_format option in I18n 0.5.0 *Sven Fuchs*
514
515 * Fix regression: javascript_include_tag shouldn't raise if you register an expansion key with nil or [] value *Santiago Pastorino*
516
517 * Fix Action caching bug where an action that has a non-cacheable response always renders a nil response body. It now correctly renders the response body. *Cheah Chu Yeow*
518
519
520 ## Rails 3.0.5 (February 26, 2011) ##
521
522 * No changes.
523
524
525 ## Rails 3.0.4 (February 8, 2011) ##
526
527 * No changes.
528
529
530 ## Rails 3.0.3 (November 16, 2010) ##
531
532 * When ActiveRecord::Base objects are sent to predicate methods, the id of the object should be sent to ARel, not the ActiveRecord::Base object.
533
534 * :constraints routing should only do sanity checks against regular expressions. String arguments are OK.
535
536
537 ## Rails 3.0.2 (November 15, 2010) ##
538
539 * The helper number_to_currency accepts a new :negative_format option to be able to configure how to render negative amounts. *Don Wilson*
540
541
542 ## Rails 3.0.1 (October 15, 2010) ##
543
544 * No Changes, just a version bump.
545
546
547 ## Rails 3.0.0 (August 29, 2010) ##
548
549 * password_field renders with nil value by default making the use of passwords secure by default, if you want to render you should do for instance f.password_field(:password, :value => @user.password) *Santiago Pastorino*
550
551 * Symbols and strings in routes should yield the same behavior. Note this may break existing apps that were using symbols with the new routes API. *José Valim*
552
553 * Add clear_helpers as a way to clean up all helpers added to this controller, maintaining just the helper with the same name as the controller. *José Valim*
554
555 * Support routing constraints in functional tests. *Andrew White*
556
557 * Add a header that tells Internet Explorer (all versions) to use the best available standards support. *Yehuda Katz*
558
559 * Allow stylesheet/javascript extensions to be changed through railties. *Josh Kalderimis*
560
561 * link_to, button_to, and tag/tag_options now rely on html_escape instead of escape_once. *fxn*
562
563 * url_for returns always unescaped strings, and the :escape option is gone. *fxn*
564
565 * Added accept-charset parameter and _snowman hidden field to force the contents
566 of Rails POSTed forms to be in UTF-8 *Yehuda Katz*
567
568 * Upgrade to Rack 1.2.1 *Jeremy Kemper*
569
570 * Allow :path to be given to match/get/post/put/delete instead of :path_names in the new router *Carlos Antônio da Silva*
571
572 * Added resources_path_names to the new router DSL *José Valim*
573
574 * Allow options to be given to the namespace method in the new router *Carlos Antônio da Silva*
575
576 * Deprecate :name_prefix in the new router DSL *José Valim*
577
578 * Add shallow routes back to the new router *Diego Carrion, Andrew White*
579
580 resources :posts do
581 shallow do
582 resources :comments
583 end
584 end
585
586 You can now use comment_path for /comments/1 instead of post_comment_path for /posts/1/comments/1.
587
588 * Add support for multi-subdomain session by setting cookie host in session cookie so you can share session between www.example.com, example.com and user.example.com. #4818 *Guillermo Álvarez*
589
590 * Removed textilize, textilize_without_paragraph and markdown helpers. *Santiago Pastorino*
591
592 * Remove middleware laziness *José Valim*
593
594 * Make session stores rely on request.cookie_jar and change set_session semantics to return the cookie value instead of a boolean. *José Valim*
595
596 * OAuth 2: HTTP Token Authorization support to complement Basic and Digest Authorization. *Rick Olson*
597
598 * Fixed inconsistencies in form builder and view helpers #4432 *Neeraj Singh*
599
600 * Both :xml and :json renderers now forwards the given options to the model, allowing you to invoke them as render :xml => @projects, :include => :tasks *José Valim, Yehuda Katz*
601
602 * Renamed the field error CSS class from fieldWithErrors to field_with_errors for consistency. *Jeremy Kemper*
603
604 * Add support for shorthand routes like /projects/status(.:format) #4423 *Diego Carrion*
605
606 * Changed translate helper so that it doesn’t mark every translation as safe HTML. Only keys with a "_html" suffix and keys named "html" are considered to be safe HTML. All other translations are left untouched. *Craig Davey*
607
608 * New option :as added to form_for allows to change the object name. The old <% form_for :client, @post %> becomes <% form_for @post, :as => :client %> *spastorino*
609
610 * Removed verify method in controllers. *JV*
611 It's now available as a plugin at http://github.com/rails/verification
612
613 * Removed input, form, error_messages_for and error_message_on from views. *JV*
614 It's now available as a plugin at http://github.com/rails/dynamic_form
615
616 * Routes can be scoped by controller module. *Jeremy Kemper*
617
618 # /session => Auth::SessionsController
619 scope :module => 'auth' do
620 resource :session
621 end
622
623 * Added #favicon_link_tag, it uses #image_path so in particular the favicon gets an asset ID *fxn*
624
625 * Fixed that default locale templates should be used if the current locale template is missing *DHH*
626
627 * Added all the new HTML5 form types as individual form tag methods (search, url, number, etc) #3646 *Stephen Celis*
628
629 * Changed the object used in routing constraints to be an instance of
630 ActionDispatch::Request rather than Rack::Request *YK*
631
632 * Changed ActionDispatch::Request#method to return a String, to be compatible
633 with Rack::Request. Added ActionDispatch::Request#method_symbol to
634 return a symbol form of the request method. *YK*
635
636 * Changed ActionDispatch::Request#method to return the original
637 method and #request_method to return the overridden method in the
638 case of methodoverride being used (this means that #method returns
639 "HEAD" and #request_method returns "GET" in HEAD requests). This
640 is for compatibility with Rack::Request *YK*
641
642 * #concat is now deprecated in favor of using <%= %> helpers *YK*
643
644 * Block helpers now return Strings, so you can use <%= form_for @foo do |f| %>.
645 <% form_for do |f| %> still works with deprecation notices *YK*
646
647 * Add a new #mount method on the router that does not anchor the PATH_INFO
648 at the end *YK & CL*
649
650 * Create a new LookupContext object that is responsible for performantly
651 finding a template for a given pattern *JV*
652
653 * Removed relative_url_for in favor of respecting SCRIPT_NAME *YK & CL*
654
655 * Changed file streaming to use Rack::Sendfile middleware *YK*
656
657 * ActionDispatch::Request#content_type returns a String to be compatible with
658 Rack::Request. Use #content_mime_type for the Mime::Type instance *YK*
659
660 * Updated Prototype to 1.6.1 and Scriptaculous to 1.8.3 *ML*
661
662 * Change the preferred way that URL helpers are included into a class*YK & CL*
663
664 # for all helpers including named routes
665 include Rails.application.router.url_helpers
666
667 # for just url_for
668 include Rails.application.router.url_for
669
670 * Fixed that PrototypeHelper#update_page should return html_safe *DHH*
671
672 * Fixed that much of DateHelper wouldn't return html_safe? strings *DHH*
673
674 * Fixed that fragment caching should return a cache hit as html_safe (or it would all just get escaped) *DHH*
675
676 * Added that ActionController::Base now does helper :all instead of relying on the default ApplicationController in Rails to do it *DHH*
677
678 * Added ActionDispatch::Request#authorization to access the http authentication header regardless of its proxy hiding *DHH*
679
680 * Added :alert, :notice, and :flash as options to ActionController::Base#redirect_to that'll automatically set the proper flash before the redirection [DHH]. Examples:
681
682 flash[:notice] = 'Post was created'
683 redirect_to(@post)
684
685 ...becomes:
686
687 redirect_to(@post, :notice => 'Post was created')
688
689 * Added ActionController::Base#notice/= and ActionController::Base#alert/= as a convenience accessors in both the controller and the view for flash[:notice]/= and flash[:alert]/= *DHH*
690
691
692 * Introduce grouped_collection_select helper. #1249 *Dan Codeape, Erik Ostrom*
693
694 * Make sure javascript_include_tag/stylesheet_link_tag does not append ".js" or ".css" onto external urls. #1664 *Matthew Rudy Jacobs*
695
696 * Ruby 1.9: fix Content-Length for multibyte send_data streaming. #2661 *Sava Chankov*
697
698 * Ruby 1.9: ERB template encoding using a magic comment at the top of the file. *Jeremy Kemper*
699 <%# encoding: utf-8 %>
700
701 * Change integration test helpers to accept Rack environment instead of just HTTP Headers *Pratik Naik*
702
703 Before : get '/path', {}, 'Accept' => 'text/javascript'
704 After : get '/path', {}, 'HTTP_ACCEPT' => 'text/javascript'
705
706 * Instead of checking Rails.env.test? in Failsafe middleware, check env["rails.raise_exceptions"] *Bryan Helmkamp*
707
708 * Fixed that TestResponse.cookies was returning cookies unescaped #1867 *Doug McInnes*
709
710
711 ## 2.3.2 Final (March 15, 2009) ##
712
713 * Fixed that redirection would just log the options, not the final url (which lead to "Redirected to #<Post:0x23150b8>") *DHH*
714
715 * Don't check authenticity tokens for any AJAX requests *Ross Kaffenberger/Bryan Helmkamp*
716
717 * Added ability to pass in :public => true to fresh_when, stale?, and expires_in to make the request proxy cachable #2095 *Gregg Pollack*
718
719 * Fixed that passing a custom form builder would be forwarded to nested fields_for calls #2023 *Eloy Duran/Nate Wiger*
720
721 * Form option helpers now support disabled option tags and the use of lambdas for selecting/disabling option tags from collections #837 *Tekin*
722
723 * Added partial scoping to TranslationHelper#translate, so if you call translate(".foo") from the people/index.html.erb template, you'll actually be calling I18n.translate("people.index.foo") *DHH*
724
725 * Fix a syntax error in current_page?() that was prevent matches against URL's with multiple query parameters #1385, #1868 *chris finne/Andrew White*
726
727 * Added localized rescue template when I18n.locale is set (ex: public/404.da.html) #1835 *José Valim*
728
729 * Make the form_for and fields_for helpers support the new Active Record nested update options. #1202 *Eloy Duran*
730
731 <% form_for @person do |person_form| %>
732 ...
733 <% person_form.fields_for :projects do |project_fields| %>
734 <% if project_fields.object.active? %>
735 Name: <%= project_fields.text_field :name %>
736 <% end %>
737 <% end %>
738 <% end %>
739
740
741 * Added grouped_options_for_select helper method for wrapping option tags in optgroups. #977 *Jon Crawford*
742
743 * Implement HTTP Digest authentication. #1230 [Gregg Kellogg, Pratik Naik] Example :
744
745 class DummyDigestController < ActionController::Base
746 USERS = { "lifo" => 'world' }
747
748 before_filter :authenticate
749
750 def index
751 render :text => "Hello Secret"
752 end
753
754 private
755
756 def authenticate
757 authenticate_or_request_with_http_digest("Super Secret") do |username|
758 # Return the user's password
759 USERS[username]
760 end
761 end
762 end
763
764 * Improved i18n support for the number_to_human_size helper. Changes the storage_units translation data; update your translations accordingly. #1634 *Yaroslav Markin*
765 storage_units:
766 # %u is the storage unit, %n is the number (default: 2 MB)
767 format: "%n %u"
768 units:
769 byte:
770 one: "Byte"
771 other: "Bytes"
772 kb: "KB"
773 mb: "MB"
774 gb: "GB"
775 tb: "TB"
776
777 * Added :silence option to BenchmarkHelper#benchmark and turned log_level into a hash parameter and deprecated the old use *DHH*
778
779 * Fixed the AssetTagHelper cache to use the computed asset host as part of the cache key instead of just assuming the its a string #1299 *DHH*
780
781 * Make ActionController#render(string) work as a shortcut for render :file/:template/:action => string. [#1435] [Pratik Naik] Examples:
782
783 \# Instead of render(:action => 'other_action')
784 render('other_action') # argument has no '/'
785 render(:other_action)
786
787 \# Instead of render(:template => 'controller/action')
788 render('controller/action') # argument must not begin with a '/', but contain a '/'
789
790 \# Instead of render(:file => '/Users/lifo/home.html.erb')
791 render('/Users/lifo/home.html.erb') # argument must begin with a '/'
792
793 * Add :prompt option to date/time select helpers. #561 *Sam Oliver*
794
795 * Fixed that send_file shouldn't set an etag #1578 *Hongli Lai*
796
797 * Allow users to opt out of the spoofing checks in Request#remote_ip. Useful for sites whose traffic regularly triggers false positives. *Darren Boyd*
798
799 * Deprecated formatted_polymorphic_url. *Jeremy Kemper*
800
801 * Added the option to declare an asset_host as an object that responds to call (see http://github.com/dhh/asset-hosting-with-minimum-ssl for an example) *David Heinemeier Hansson*
802
803 * Added support for multiple routes.rb files (useful for plugin engines). This also means that draw will no longer clear the route set, you have to do that by hand (shouldn't make a difference to you unless you're doing some funky stuff) *David Heinemeier Hansson*
804
805 * Dropped formatted_* routes in favor of just passing in :format as an option. This cuts resource routes generation in half #1359 *aaronbatalion*
806
807 * Remove support for old double-encoded cookies from the cookie store. These values haven't been generated since before 2.1.0, and any users who have visited the app in the intervening 6 months will have had their cookie upgraded. *Michael Koziarski*
808
809 * Allow helpers directory to be overridden via ActionController::Base.helpers_dir #1424 *Sam Pohlenz*
810
811 * Remove deprecated ActionController::Base#assign_default_content_type_and_charset
812
813 * Changed the default of ActionView#render to assume partials instead of files when not given an options hash [David Heinemeier Hansson]. Examples:
814
815 # Instead of <%= render :partial => "account" %>
816 <%= render "account" %>
817
818 # Instead of <%= render :partial => "account", :locals => { :account => @buyer } %>
819 <%= render "account", :account => @buyer %>
820
821 # @account is an Account instance, so it uses the RecordIdentifier to replace
822 # <%= render :partial => "accounts/account", :locals => { :account => @account } %>
823 <%= render(@account) %>
824
825 # @posts is an array of Post instances, so it uses the RecordIdentifier to replace
826 # <%= render :partial => "posts/post", :collection => @posts %>
827 <%= render(@posts) %>
828
829 * Remove deprecated render_component. Please use the plugin from http://github.com/rails/render_component/tree/master *Pratik Naik*
830
831 * Fixed RedCloth and BlueCloth shouldn't preload. Instead just assume that they're available if you want to use textilize and markdown and let autoload require them *David Heinemeier Hansson*
832
833
834 ## 2.2.2 (November 21st, 2008) ##
835
836 * I18n: translate number_to_human_size. Add storage_units: [Bytes, KB, MB, GB, TB] to your translations. #1448 *Yaroslav Markin*
837
838 * Restore backwards compatible functionality for setting relative_url_root. Include deprecation
839
840 * Switched the CSRF module to use the request content type to decide if the request is forgeable. #1145 *Jeff Cohen*
841
842 * Added :only and :except to map.resources to let people cut down on the number of redundant routes in an application. Typically only useful for huge routesets. #1215 *Tom Stuart*
843
844 map.resources :products, :only => :show do |product|
845 product.resources :images, :except => :destroy
846 end
847
848 * Added render :js for people who want to render inline JavaScript replies without using RJS *David Heinemeier Hansson*
849
850 * Fixed that polymorphic_url should compact given array #1317 *hiroshi*
851
852 * Fixed the sanitize helper to avoid double escaping already properly escaped entities #683 *antonmos/Ryan McGeary*
853
854 * Fixed that FormTagHelper generated illegal html if name contained square brackets #1238 *Vladimir Dobriakov*
855
856 * Fix regression bug that made date_select and datetime_select raise a Null Pointer Exception when a nil date/datetime was passed and only month and year were displayed #1289 *Bernardo Padua/Tor Erik*
857
858 * Simplified the logging format for parameters (don't include controller, action, and format as duplicates) *David Heinemeier Hansson*
859
860 * Remove the logging of the Session ID when the session store is CookieStore *David Heinemeier Hansson*
861
862 * Fixed regex in redirect_to to fully support URI schemes #1247 *Seth Fitzsimmons*
863
864 * Fixed bug with asset timestamping when using relative_url_root #1265 *Joe Goldwasser*
865
866
867 ## 2.2.0 RC1 (October 24th, 2008) ##
868
869 * Fix incorrect closing CDATA delimiter and that HTML::Node.parse would blow up on unclosed CDATA sections *packagethief*
870
871 * Added stale? and fresh_when methods to provide a layer of abstraction above request.fresh? and friends [David Heinemeier Hansson]. Example:
872
873 class ArticlesController < ApplicationController
874 def show_with_respond_to_block
875 @article = Article.find(params[:id])
876
877
878 # If the request sends headers that differs from the options provided to stale?, then
879 # the request is indeed stale and the respond_to block is triggered (and the options
880 # to the stale? call is set on the response).
881 #
882 # If the request headers match, then the request is fresh and the respond_to block is
883 # not triggered. Instead the default render will occur, which will check the last-modified
884 # and etag headers and conclude that it only needs to send a "304 Not Modified" instead
885 # of rendering the template.
886 if stale?(:last_modified => @article.published_at.utc, :etag => @article)
887 respond_to do |wants|
888 # normal response processing
889 end
890 end
891 end
892
893 def show_with_implied_render
894 @article = Article.find(params[:id])
895
896 # Sets the response headers and checks them against the request, if the request is stale
897 # (i.e. no match of either etag or last-modified), then the default render of the template happens.
898 # If the request is fresh, then the default render will return a "304 Not Modified"
899 # instead of rendering the template.
900 fresh_when(:last_modified => @article.published_at.utc, :etag => @article)
901 end
902 end
903
904
905 * Added inline builder yield to atom_feed_helper tags where appropriate [Sam Ruby]. Example:
906
907 entry.summary :type => 'xhtml' do |xhtml|
908 xhtml.p pluralize(order.line_items.count, "line item")
909 xhtml.p "Shipped to #{order.address}"
910 xhtml.p "Paid by #{order.pay_type}"
911 end
912
913 * Make PrototypeHelper#submit_to_remote a wrapper around PrototypeHelper#button_to_remote. *Tarmo Tänav*
914
915 * Set HttpOnly for the cookie session store's cookie. #1046
916
917 * Added FormTagHelper#image_submit_tag confirm option #784 *Alastair Brunton*
918
919 * Fixed FormTagHelper#submit_tag with :disable_with option wouldn't submit the button's value when was clicked #633 *Jose Fernandez*
920
921 * Stopped logging template compiles as it only clogs up the log *David Heinemeier Hansson*
922
923 * Changed the X-Runtime header to report in milliseconds *David Heinemeier Hansson*
924
925 * Changed BenchmarkHelper#benchmark to report in milliseconds *David Heinemeier Hansson*
926
927 * Changed logging format to be millisecond based and skip misleading stats [David Heinemeier Hansson]. Went from:
928
929 Completed in 0.10000 (4 reqs/sec) | Rendering: 0.04000 (40%) | DB: 0.00400 (4%) | 200 OK [http://example.com]
930
931 ...to:
932
933 Completed in 100ms (View: 40, DB: 4) | 200 OK [http://example.com]
934
935 * Add support for shallow nesting of routes. #838 *S. Brent Faulkner*
936
937 Example :
938
939 map.resources :users, :shallow => true do |user|
940 user.resources :posts
941 end
942
943 - GET /users/1/posts (maps to PostsController#index action as usual)
944 named route "user_posts" is added as usual.
945
946 - GET /posts/2 (maps to PostsController#show action as if it were not nested)
947 Additionally, named route "post" is added too.
948
949 * Added button_to_remote helper. #3641 *Donald Piret, Tarmo Tänav*
950
951 * Deprecate render_component. Please use render_component plugin from http://github.com/rails/render_component/tree/master *Pratik Naik*
952
953 * Routes may be restricted to lists of HTTP methods instead of a single method or :any. #407 *Brennan Dunn, Gaius Centus Novus*
954 map.resource :posts, :collection => { :search => [:get, :post] }
955 map.session 'session', :requirements => { :method => [:get, :post, :delete] }
956
957 * Deprecated implicit local assignments when rendering partials *Josh Peek*
958
959 * Introduce current_cycle helper method to return the current value without bumping the cycle. #417 *Ken Collins*
960
961 * Allow polymorphic_url helper to take url options. #880 *Tarmo Tänav*
962
963 * Switched integration test runner to use Rack processor instead of CGI *Josh Peek*
964
965 * Made AbstractRequest.if_modified_sense return nil if the header could not be parsed *Jamis Buck*
966
967 * Added back ActionController::Base.allow_concurrency flag *Josh Peek*
968
969 * AbstractRequest.relative_url_root is no longer automatically configured by a HTTP header. It can now be set in your configuration environment with config.action_controller.relative_url_root *Josh Peek*
970
971 * Update Prototype to 1.6.0.2 #599 *Patrick Joyce*
972
973 * Conditional GET utility methods. *Jeremy Kemper*
974 response.last_modified = @post.updated_at
975 response.etag = [:admin, @post, current_user]
976
977 if request.fresh?(response)
978 head :not_modified
979 else
980 # render ...
981 end
982
983 * All 2xx requests are considered successful *Josh Peek*
984
985 * Fixed that AssetTagHelper#compute_public_path shouldn't cache the asset_host along with the source or per-request proc's won't run *David Heinemeier Hansson*
986
987 * Removed config.action_view.cache_template_loading, use config.cache_classes instead *Josh Peek*
988
989 * Get buffer for fragment cache from template's @output_buffer *Josh Peek*
990
991 * Set config.action_view.warn_cache_misses = true to receive a warning if you perform an action that results in an expensive disk operation that could be cached *Josh Peek*
992
993 * Refactor template preloading. New abstractions include Renderable mixins and a refactored Template class *Josh Peek*
994
995 * Changed ActionView::TemplateHandler#render API method signature to render(template, local_assigns = {}) *Josh Peek*
996
997 * Changed PrototypeHelper#submit_to_remote to PrototypeHelper#button_to_remote to stay consistent with link_to_remote (submit_to_remote still works as an alias) #8994 *clemens*
998
999 * Add :recursive option to javascript_include_tag and stylesheet_link_tag to be used along with :all. #480 *Damian Janowski*
1000
1001 * Allow users to disable the use of the Accept header *Michael Koziarski*
1002
1003 The accept header is poorly implemented by browsers and causes strange
1004 errors when used on public sites where crawlers make requests too. You can use formatted urls (e.g. /people/1.xml) to support API clients in a much simpler way.
1005 To disable the header you need to set:
1006 config.action_controller.use_accept_header = false
1007 * Do not stat template files in production mode before rendering. You will no longer be able to modify templates in production mode without restarting the server *Josh Peek*
1008
1009 * Deprecated TemplateHandler line offset *Josh Peek*
1010
1011 * Allow caches_action to accept cache store options. #416. [José Valim]. Example:
1012
1013 caches_action :index, :redirected, :if => Proc.new { |c| !c.request.format.json? }, :expires_in => 1.hour
1014
1015 * Remove define_javascript_functions, javascript_include_tag and friends are far superior. *Michael Koziarski*
1016
1017 * Deprecate :use_full_path render option. The supplying the option no longer has an effect *Josh Peek*
1018
1019 * Add :as option to render a collection of partials with a custom local variable name. #509 *Simon Jefford, Pratik Naik*
1020
1021 render :partial => 'other_people', :collection => @people, :as => :person
1022
1023 This will let you access objects of @people as 'person' local variable inside 'other_people' partial template.
1024
1025 * time_zone_select: support for regexp matching of priority zones. Resolves #195 *Ernie Miller*
1026
1027 * Made ActionView::Base#render_file private *Josh Peek*
1028
1029 * Refactor and simplify the implementation of assert_redirected_to. Arguments are now normalised relative to the controller being tested, not the root of the application. *Michael Koziarski*
1030
1031 This could cause some erroneous test failures if you were redirecting between controllers
1032 in different namespaces and wrote your assertions relative to the root of the application.
1033
1034 * Remove follow_redirect from controller functional tests.
1035
1036 If you want to follow redirects you can use integration tests. The functional test version was only useful if you were using redirect_to :id=>...
1037 * Fix polymorphic_url with singleton resources. #461 *Tammer Saleh*
1038
1039 * Replaced TemplateFinder abstraction with ViewLoadPaths *Josh Peek*
1040
1041 * Added block-call style to link_to [Sam Stephenson/David Heinemeier Hansson]. Example:
1042
1043 <% link_to(@profile) do %>
1044 <strong><%= @profile.name %></strong> -- <span>Check it out!!</span>
1045 <% end %>
1046
1047 * Performance: integration test benchmarking and profiling. *Jeremy Kemper*
1048
1049 * Make caching more aware of mime types. Ensure request format is not considered while expiring cache. *Jonathan del Strother*
1050
1051 * Drop ActionController::Base.allow_concurrency flag *Josh Peek*
1052
1053 * More efficient concat and capture helpers. Remove ActionView::Base.erb_variable. *Jeremy Kemper*
1054
1055 * Added page.reload functionality. Resolves #277. *Sean Huber*
1056
1057 * Fixed Request#remote_ip to only raise hell if the HTTP_CLIENT_IP and HTTP_X_FORWARDED_FOR doesn't match (not just if they're both present) *Mark Imbriaco, Bradford Folkens*
1058
1059 * Allow caches_action to accept a layout option *José Valim*
1060
1061 * Added Rack processor *Ezra Zygmuntowicz, Josh Peek*
1062
1063
1064 ## 2.1.0 (May 31st, 2008) ##
1065
1066 * InstanceTag#default_time_from_options overflows to DateTime *Geoff Buesing*
1067
1068 * Fixed that forgery protection can be used without session tracking (Peter Jones) *#139*
1069
1070 * Added session(:on) to turn session management back on in a controller subclass if the superclass turned it off (Peter Jones) *#136*
1071
1072 * Change the request forgery protection to go by Content-Type instead of request.format so that you can't bypass it by POSTing to "#{request.uri}.xml" *Rick Olson*
1073 * InstanceTag#default_time_from_options with hash args uses Time.current as default; respects hash settings when time falls in system local spring DST gap *Geoff Buesing*
1074
1075 * select_date defaults to Time.zone.today when config.time_zone is set *Geoff Buesing*
1076
1077 * Fixed that TextHelper#text_field would corrypt when raw HTML was used as the value (mchenryc, Kevin Glowacz) *#80*
1078
1079 * Added ActionController::TestCase#rescue_action_in_public! to control whether the action under test should use the regular rescue_action path instead of simply raising the exception inline (great for error testing) *David Heinemeier Hansson*
1080
1081 * Reduce number of instance variables being copied from controller to view. *Pratik Naik*
1082
1083 * select_datetime and select_time default to Time.zone.now when config.time_zone is set *Geoff Buesing*
1084
1085 * datetime_select defaults to Time.zone.now when config.time_zone is set *Geoff Buesing*
1086
1087 * Remove ActionController::Base#view_controller_internals flag. *Pratik Naik*
1088
1089 * Add conditional options to caches_page method. *Paul Horsfall*
1090
1091 * Move missing template logic to ActionView. *Pratik Naik*
1092
1093 * Introduce ActionView::InlineTemplate class. *Pratik Naik*
1094
1095 * Automatically parse posted JSON content for Mime::JSON requests. *Rick Olson*
1096
1097 POST /posts
1098 {"post": {"title": "Breaking News"}}
1099
1100 def create
1101 @post = Post.create params[:post]
1102 # ...
1103 end
1104
1105 * add json_escape ERB util to escape html entities in json strings that are output in HTML pages. *Rick Olson*
1106
1107 * Provide a helper proxy to access helper methods from outside views. Closes #10839 *Josh Peek*
1108 e.g. ApplicationController.helpers.simple_format(text)
1109
1110 * Improve documentation. *Xavier Noria, leethal, jerome*
1111
1112 * Ensure RJS redirect_to doesn't html-escapes string argument. Closes #8546 *Josh Peek, eventualbuddha, Pratik Naik*
1113
1114 * Support render :partial => collection of heterogeneous elements. #11491 *Zach Dennis*
1115
1116 * Avoid remote_ip spoofing. *Brian Candler*
1117
1118 * Added support for regexp flags like ignoring case in the :requirements part of routes declarations #11421 *NeilW*
1119
1120 * Fixed that ActionController::Base#read_multipart would fail if boundary was exactly 10240 bytes #10886 *ariejan*
1121
1122 * Fixed HTML::Tokenizer (used in sanitize helper) didn't handle unclosed CDATA tags #10071 *esad, packagethief*
1123
1124 * Improve documentation. *Ryan Bigg, Jan De Poorter, Cheah Chu Yeow, Xavier Shay, Jack Danger Canty, Emilio Tagua, Xavier Noria, Sunny Ripert*
1125
1126 * Fixed that FormHelper#radio_button would produce invalid ids #11298 *harlancrystal*
1127
1128 * Added :confirm option to submit_tag #11415 *Emilio Tagua*
1129
1130 * Fixed NumberHelper#number_with_precision to properly round in a way that works equally on Mac, Windows, Linux (closes #11409, #8275, #10090, #8027) *zhangyuanyi*
1131
1132 * Allow the #simple_format text_helper to take an html_options hash for each paragraph. #2448 *François Beausoleil, Chris O'Sullivan*
1133
1134 * Fix regression from filter refactoring where re-adding a skipped filter resulted in it being called twice. *Rick Olson*
1135
1136 * Refactor filters to use Active Support callbacks. #11235 *Josh Peek*
1137
1138 * Fixed that polymorphic routes would modify the input array #11363 *thomas.lee*
1139
1140 * Added :format option to NumberHelper#number_to_currency to enable better localization support #11149 *lylo*
1141
1142 * Fixed that TextHelper#excerpt would include one character too many #11268 *Irfy*
1143
1144 * Fix more obscure nested parameter hash parsing bug. #10797 *thomas.lee*
1145
1146 * Added ActionView::Helpers::register_javascript/stylesheet_expansion to make it easier for plugin developers to inject multiple assets. #10350 *lotswholetime*
1147
1148 * Fix nested parameter hash parsing bug. #10797 *thomas.lee*
1149
1150 * Allow using named routes in ActionController::TestCase before any request has been made. Closes #11273 *Eloy Duran*
1151
1152 * Fixed that sweepers defined by cache_sweeper will be added regardless of the perform_caching setting. Instead, control whether the sweeper should be run with the perform_caching setting. This makes testing easier when you want to turn perform_caching on/off *David Heinemeier Hansson*
1153
1154 * Make MimeResponds::Responder#any work without explicit types. Closes #11140 *jaw6*
1155
1156 * Better error message for type conflicts when parsing params. Closes #7962 *spicycode, matt*
1157
1158 * Remove unused ActionController::Base.template_class. Closes #10787 *Pratik Naik*
1159
1160 * Moved template handlers related code from ActionView::Base to ActionView::Template. *Pratik Naik*
1161
1162 * Tests for div_for and content_tag_for helpers. Closes #11223 *Chris O'Sullivan*
1163
1164 * Allow file uploads in Integration Tests. Closes #11091 *RubyRedRick*
1165
1166 * Refactor partial rendering into a PartialTemplate class. *Pratik Naik*
1167
1168 * Added that requests with JavaScript as the priority mime type in the accept header and no format extension in the parameters will be treated as though their format was :js when it comes to determining which template to render. This makes it possible for JS requests to automatically render action.js.rjs files without an explicit respond_to block *David Heinemeier Hansson*
1169
1170 * Tests for distance_of_time_in_words with TimeWithZone instances. Closes #10914 *Ernesto Jimenez*
1171
1172 * Remove support for multivalued (e.g., '&'-delimited) cookies. *Jamis Buck*
1173
1174 * Fix problem with render :partial collections, records, and locals. #11057 *lotswholetime*
1175
1176 * Added support for naming concrete classes in sweeper declarations *David Heinemeier Hansson*
1177
1178 * Remove ERB trim variables from trace template in case ActionView::Base.erb_trim_mode is changed in the application. #10098 *Tim Pope, Chris Kampmeier*
1179
1180 * Fix typo in form_helper documentation. #10650 *Xavier Shay, Chris Kampmeier*
1181
1182 * Fix bug with setting Request#format= after the getter has cached the value. #10889 *cch1*
1183
1184 * Correct inconsistencies in RequestForgeryProtection docs. #11032 *Mislav Marohnić*
1185
1186 * Introduce a Template class to ActionView. #11024 *Pratik Naik*
1187
1188 * Introduce the :index option for form_for and fields_for to simplify multi-model forms (see http://railscasts.com/episodes/75). #9883 *rmm5t*
1189
1190 * Introduce map.resources :cards, :as => 'tarjetas' to use a custom resource name in the URL: cards_path == '/tarjetas'. #10578 *blj*
1191
1192 * TestSession supports indifferent access. #7372 *tamc, Arsen7, mhackett, julik, jean.helou*
1193
1194 * Make assert_routing aware of the HTTP method used. #8039 *mpalmer*
1195 e.g. assert_routing({ :method => 'put', :path => '/product/321' }, { :controller => "product", :action => "update", :id => "321" })
1196
1197 * Make map.root accept a single symbol as an argument to declare an alias. #10818 *bscofield*
1198
1199 e.g. map.dashboard '/dashboard', :controller=>'dashboard'
1200 map.root :dashboard
1201
1202 * Handle corner case with image_tag when passed 'messed up' image names. #9018 *Duncan Beevers, mpalmer*
1203
1204 * Add label_tag helper for generating elements. #10802 *DefV*
1205
1206 * Introduce TemplateFinder to handle view paths and lookups. #10800 *Pratik Naik*
1207
1208 * Performance: optimize route recognition. Large speedup for apps with many resource routes. #10835 *oleganza*
1209
1210 * Make render :partial recognise form builders and use the _form partial. #10814 *Damian Janowski*
1211
1212 * Allow users to declare other namespaces when using the atom feed helpers. #10304 *david.calavera*
1213
1214 * Introduce send_file :x_sendfile => true to send an X-Sendfile response header. *Jeremy Kemper*
1215
1216 * Fixed ActionView::Helpers::ActiveRecordHelper::form for when protect_from_forgery is used #10739 *Jeremy Evans*
1217
1218 * Provide nicer access to HTTP Headers. Instead of request.env["HTTP_REFERRER"] you can now use request.headers["Referrer"]. *Michael Koziarski*
1219
1220 * UrlWriter respects relative_url_root. #10748 *Cheah Chu Yeow*
1221
1222 * The asset_host block takes the controller request as an optional second argument. Example: use a single asset host for SSL requests. #10549 *Cheah Chu Yeow, Peter B, Tom Taylor*
1223
1224 * Support render :text => nil. #6684 *tjennings, PotatoSalad, Cheah Chu Yeow*
1225
1226 * assert_response failures include the exception message. #10688 *Seth Rasmussen*
1227
1228 * All fragment cache keys are now by default prefixed with the "views/" namespace *David Heinemeier Hansson*
1229
1230 * Moved the caching stores from ActionController::Caching::Fragments::* to ActiveSupport::Cache::*. If you're explicitly referring to a store, like ActionController::Caching::Fragments::MemoryStore, you need to update that reference with ActiveSupport::Cache::MemoryStore *David Heinemeier Hansson*
1231
1232 * Deprecated ActionController::Base.fragment_cache_store for ActionController::Base.cache_store *David Heinemeier Hansson*
1233
1234 * Made fragment caching in views work for rjs and builder as well #6642 *Dee Zsombor*
1235
1236 * Fixed rendering of partials with layout when done from site layout #9209 *antramm*
1237
1238 * Fix atom_feed_helper to comply with the atom spec. Closes #10672 *Xavier Shay*
1239
1240 * The tags created do not contain a date (http://feedvalidator.org/docs/error/InvalidTAG.html)
1241 * IDs are not guaranteed unique
1242 * A default self link was not provided, contrary to the documentation
1243 * NOTE: This changes tags for existing atom entries, but at least they validate now.
1244
1245 * Correct indentation in tests. Closes #10671 *Luca Guidi*
1246
1247 * Fix that auto_link looks for ='s in url paths (Amazon urls have them). Closes #10640 *Brad Greenlee*
1248
1249 * Ensure that test case setup is run even if overridden. #10382 *Josh Peek*
1250
1251 * Fix HTML Sanitizer to allow trailing spaces in CSS style attributes. Closes #10566 *wesley.moxam*
1252
1253 * Add :default option to time_zone_select. #10590 *Matt Aimonetti*
1254
1255
1256 ## 2.0.2 (December 16th, 2007) ##
1257
1258 * Added delete_via_redirect and put_via_redirect to integration testing #10497 *philodespotos*
1259
1260 * Allow headers['Accept'] to be set by hand when calling xml_http_request #10461 *BMorearty*
1261
1262 * Added OPTIONS to list of default accepted HTTP methods #10449 *holoway*
1263
1264 * Added option to pass proc to ActionController::Base.asset_host for maximum configurability #10521 [Cheah Chu Yeow]. Example:
1265
1266 ActionController::Base.asset_host = Proc.new { |source|
1267 if source.starts_with?('/images')
1268 "http://images.example.com"
1269 else
1270 "http://assets.example.com"
1271 end
1272 }
1273
1274 * Fixed that ActionView#file_exists? would be incorrect if @first_render is set #10569 *dbussink*
1275
1276 * Added that Array#to_param calls to_param on all it's elements #10473 *brandon*
1277
1278 * Ensure asset cache directories are automatically created. #10337 *Josh Peek, Cheah Chu Yeow*
1279
1280 * render :xml and :json preserve custom content types. #10388 *jmettraux, Cheah Chu Yeow*
1281
1282 * Refactor Action View template handlers. #10437, #10455 *Josh Peek*
1283
1284 * Fix DoubleRenderError message and leave out mention of returning false from filters. Closes #10380 *Frederick Cheung*
1285
1286 * Clean up some cruft around ActionController::Base#head. Closes #10417 *ssoroka*
1287
1288
1289 ## 2.0.1 (December 7th, 2007) ##
1290
1291 * Fixed send_file/binary_content for testing #8044 *tolsen*
1292
1293 * When a NonInferrableControllerError is raised, make the proposed fix clearer in the error message. Closes #10199 *Jack Danger Canty*
1294
1295 * Update Prototype to 1.6.0.1. *sam*
1296
1297 * Update script.aculo.us to 1.8.0.1. *madrobby*
1298
1299 * Add 'disabled' attribute to <OPTION> separators used in time zone and country selects. Closes #10354 *Josh Susser*
1300
1301 * Added the same record identification guessing rules to fields_for as form_for has *David Heinemeier Hansson*
1302
1303 * Fixed that verification violations with no specified action didn't halt the chain (now they do with a 400 Bad Request) *David Heinemeier Hansson*
1304
1305 * Raise UnknownHttpMethod exception for unknown HTTP methods. Closes #10303 *Tarmo Tänav*
1306
1307 * Update to Prototype -r8232. *sam*
1308
1309 * Make sure the optimisation code for routes doesn't get used if :host, :anchor or :port are provided in the hash arguments. [pager, Michael Koziarski] #10292
1310
1311 * Added protection from trailing slashes on page caching #10229 *devrieda*
1312
1313 * Asset timestamps are appended, not prepended. Closes #10276 *Mike Naberezny*
1314
1315 * Minor inconsistency in description of render example. Closes #10029 *ScottSchram*
1316
1317 * Add #prepend_view_path and #append_view_path instance methods on ActionController::Base for consistency with the class methods. *Rick Olson*
1318
1319 * Refactor sanitizer helpers into HTML classes and make it easy to swap them out with custom implementations. Closes #10129. *Rick Olson*
1320
1321 * Add deprecation for old subtemplate syntax for ActionMailer templates, use render :partial *Rick Olson*
1322
1323 * Fix TemplateError so it doesn't bomb on exceptions while running tests *Rick Olson*
1324
1325 * Fixed that named routes living under resources shouldn't have double slashes #10198 *Isaac Feliu*
1326
1327 * Make sure that cookie sessions use a secret that is at least 30 chars in length. *Michael Koziarski*
1328
1329 * Fixed that partial rendering should look at the type of the first render to determine its own type if no other clues are available (like when using text.plain.erb as the extension in AM) #10130 *java*
1330
1331 * Fixed that has_many :through associations should render as collections too #9051 *mathie/Jack Danger Canty*
1332
1333 * Added :mouseover short-cut to AssetTagHelper#image_tag for doing easy image swaps #6893 *joost*
1334
1335 * Fixed handling of non-domain hosts #9479 *purp*
1336
1337 * Fix syntax error in documentation example for cycle method. Closes #8735 *foca*
1338
1339 * Document :with option for link_to_remote. Closes #8765 *Ryan Bates*
1340
1341 * Document :minute_step option for time_select. Closes #8814 *brupm*
1342
1343 * Explain how to use the :href option for link_to_remote to degrade gracefully in the absence of JavaScript. Closes #8911 *vlad*
1344
1345 * Disambiguate :size option for text area tag. Closes #8955 *redbeard*
1346
1347 * Fix broken tag in assert_tag documentation. Closes #9037 *mfazekas*
1348
1349 * Add documentation for route conditions. Closes #9041 *innu, Manfred Stienstra*
1350
1351 * Fix typo left over from previous typo fix in url helper. Closes #9414 *Henrik N*
1352
1353 * Fixed that ActionController::CgiRequest#host_with_port() should handle standard port #10082 *moro*
1354
1355 * Update Prototype to 1.6.0 and script.aculo.us to 1.8.0. *sam, madrobby*
1356
1357 * Expose the cookie jar as a helper method (before the view would just get the raw cookie hash) *David Heinemeier Hansson*
1358
1359 * Integration tests: get_ and post_via_redirect take a headers hash. #9130 *simonjefford*
1360
1361 * Simplfy #view_paths implementation. ActionView templates get the exact object, not a dup. *Rick Olson*
1362
1363 * Update tests for ActiveSupport's JSON escaping change. *Rick Olson*
1364
1365 * FormHelper's auto_index should use #to_param instead of #id_before_type_cast. Closes #9994 *mattly*
1366
1367 * Doc typo fixes for ActiveRecordHelper. Closes #9973 *mikong*
1368
1369 * Make example parameters in restful routing docs idiomatic. Closes #9993 *Jack Danger Canty*
1370
1371 * Make documentation comment for mime responders match documentation example. Closes #9357 *yon*
1372
1373 * Introduce a new test case class for functional tests. ActionController::TestCase. *Michael Koziarski*
1374
1375 * Fix incorrect path in helper rdoc. Closes #9926 *viktor tron*
1376
1377 * Partials also set 'object' to the default partial variable. #8823 *Nick Retallack, Jeremy Kemper*
1378
1379 * Request profiler. *Jeremy Kemper*
1380 $ cat login_session.rb
1381 get_with_redirect '/'
1382 say "GET / => #{path}"
1383 post_with_redirect '/sessions', :username => 'john', :password => 'doe'
1384 say "POST /sessions => #{path}"
1385 $ ./script/performance/request -n 10 login_session.rb
1386
1387 * Disabled checkboxes don't submit a form value. #9301 *vladr, robinjfisher*
1388
1389 * Added tests for options to ActiveRecordHelper#form. Closes #7213 *richcollins, mikong, Mislav Marohnić*
1390
1391 * Changed before_filter halting to happen automatically on render or redirect but no longer on simply returning false *David Heinemeier Hansson*
1392
1393 * Ensure that cookies handle array values correctly. Closes #9937 *queso*
1394
1395 * Make sure resource routes don't clash with internal helpers like javascript_path, image_path etc. #9928 *Geoff Buesing*
1396
1397 * caches_page uses a single after_filter instead of one per action. #9891 *Pratik Naik*
1398
1399 * Update Prototype to 1.6.0_rc1 and script.aculo.us to 1.8.0 preview 0. *sam, madrobby*
1400
1401 * Dispatcher: fix that to_prepare should only run once in production. #9889 *Nathaniel Talbott*
1402
1403 * Memcached sessions: add session data on initialization; don't silently discard exceptions; add unit tests. #9823 *kamk*
1404
1405 * error_messages_for also takes :message and :header_message options which defaults to the old "There were problems with the following fields:" and "<count> errors prohibited this <object_name> from being saved". #8270 *rmm5t, zach-inglis-lt3*
1406
1407 * Make sure that custom inflections are picked up by map.resources. #9815 *Mislav Marohnić*
1408
1409 * Changed SanitizeHelper#sanitize to only allow the custom attributes and tags when specified in the call *David Heinemeier Hansson*
1410
1411 * Extracted sanitization methods from TextHelper to SanitizeHelper *David Heinemeier Hansson*
1412
1413 * rescue_from accepts :with => lambda { |exception| ... } or a normal block. #9827 *Pratik Naik*
1414
1415 * Add :status to redirect_to allowing users to choose their own response code without manually setting headers. #8297 *Coda Hale, chasgrundy*
1416
1417 * Add link_to :back which uses your referrer with a fallback to a javascript link. #7366 *eventualbuddha, Tarmo Tänav*
1418
1419 * error_messages_for and friends also work with local variables. #9699 *Frederick Cheung*
1420
1421 * Fix url_for, redirect_to, etc. with :controller => :symbol instead of 'string'. #8562, #9525 *Justin Lynn, Tarmo Tänav, shoe*
1422
1423 * Use #require_library_or_gem to load the memcache library for the MemCache session and fragment cache stores. Closes #8662. *Rick Olson*
1424
1425 * Move ActionController::Routing.optimise_named_routes to ActionController::Base.optimise_named_routes. Now you can set it in the config. *Rick Olson*
1426
1427 config.action_controller.optimise_named_routes = false
1428
1429 * ActionController::Routing::DynamicSegment#interpolation_chunk should call #to_s on all values before calling URI.escape. *Rick Olson*
1430
1431 * Only accept session ids from cookies, prevents session fixation attacks. *bradediger*
1432
1433
1434 ## 2.0.0 Preview Release (September 29th, 2007) Includes duplicates of changes from 1.12.2 - 1.13.3 ##
1435
1436 * Fixed that render template did not honor exempt_from_layout #9698 *pezra*
1437
1438 * Better error messages if you leave out the :secret option for request forgery protection. Closes #9670 *Rick Olson*
1439
1440 * Allow ability to disable request forgery protection, disable it in test mode by default. Closes #9693 *Pratik Naik*
1441
1442 * Avoid calling is_missing on LoadErrors. Closes #7460. *ntalbott*
1443
1444 * Move Railties' Dispatcher to ActionController::Dispatcher, introduce before_ and after_dispatch callbacks, and warm up to non-CGI requests. *Jeremy Kemper*
1445
1446 * The tag helper may bypass escaping. *Jeremy Kemper*
1447
1448 * Cache asset ids. *Jeremy Kemper*
1449
1450 * Optimized named routes respect AbstractRequest.relative_url_root. #9612 *Daniel Morrison, Jeremy Kemper*
1451
1452 * Introduce ActionController::Base.rescue_from to declare exception-handling methods. Cleaner style than the case-heavy rescue_action_in_public. #9449 *Norbert Crombach*
1453
1454 * Rename some RequestForgeryProtection methods. The class method is now #protect_from_forgery, and the default parameter is now 'authenticity_token'. *Rick Olson*
1455
1456 * Merge csrf_killer plugin into rails. Adds RequestForgeryProtection model that verifies session-specific _tokens for non-GET requests. *Rick Olson*
1457
1458 * Secure #sanitize, #strip_tags, and #strip_links helpers against xss attacks. Closes #8877. *Rick Olson, Pratik Naik, Jacques Distler*
1459
1460 This merges and renames the popular white_list helper (along with some css sanitizing from Jacques Distler version of the same plugin).
1461 Also applied updated versions of #strip_tags and #strip_links from #8877.
1462
1463 * Remove use of & logic operator. Closes #8114. *watson*
1464
1465 * Fixed JavaScriptHelper#escape_javascript to also escape closing tags #8023 *Ruy Asan*
1466
1467 * Fixed TextHelper#word_wrap for multiline strings with extra carrier returns #8663 *seth*
1468
1469 * Fixed that setting the :host option in url_for would automatically turn off :only_path (since :host would otherwise not be shown) #9586 *Bounga*
1470
1471 * Added FormHelper#label. #8641, #9850 *jcoglan, Jarkko Laine*
1472
1473 * Added AtomFeedHelper (slightly improved from the atom_feed_helper plugin) *David Heinemeier Hansson*
1474
1475 * Prevent errors when generating routes for uncountable resources, (i.e. sheep where plural == singluar). map.resources :sheep now creates sheep_index_url for the collection and sheep_url for the specific item. *Michael Koziarski*
1476
1477 * Added support for HTTP Only cookies (works in IE6+ and FF 2.0.5+) as an improvement for XSS attacks #8895 *Pratik Naik, Mark Somerville*
1478
1479 * Don't warn when a path segment precedes a required segment. Closes #9615. *Nicholas Seckar*
1480
1481 * Fixed CaptureHelper#content_for to work with the optional content parameter instead of just the block #9434 [sandofsky/wildchild].
1482
1483 * Added Mime::Type.register_alias for dealing with different formats using the same mime type [David Heinemeier Hansson]. Example:
1484
1485 class PostsController < ApplicationController
1486 before_filter :adjust_format_for_iphone
1487
1488 def index
1489 @posts = Post.find(:all)
1490
1491 respond_to do |format|
1492 format.html # => renders index.html.erb and uses "text/html" as the content type
1493 format.iphone # => renders index.iphone.erb and uses "text/html" as the content type
1494 end
1495 end
1496
1497
1498 private
1499 def adjust_format_for_iphone
1500 if request.env["HTTP_USER_AGENT"] && request.env["HTTP_USER_AGENT"][/iPhone/]
1501 request.format = :iphone
1502 end
1503 end
1504 end
1505
1506 * Added that render :json will automatically call .to_json unless it's being passed a string [David Heinemeier Hansson].
1507
1508 * Autolink behaves well with emails embedded in URLs. #7313 *Jeremy McAnally, Tarmo Tänav*
1509
1510 * Fixed that default layouts did not take the format into account #9564 *Pratik Naik*
1511
1512 * Fixed optimized route segment escaping. #9562 *wildchild, Jeremy Kemper*
1513
1514 * Added block acceptance to JavaScriptHelper#javascript_tag. #7527 *Bob Silva, Tarmo Tänav, rmm5t*
1515
1516 * root_path returns '/' not ''. #9563 *Pratik Naik*
1517
1518 * Fixed that setting request.format should also affect respond_to blocks *David Heinemeier Hansson*
1519
1520 * Add option to force binary mode on tempfile used for fixture_file_upload. #6380 *Jonathan Viney*
1521
1522 * Fixed that resource namespaces wouldn't stick to all nested resources #9399 *pixeltrix*
1523
1524 * Moved ActionController::Macros::AutoComplete into the auto_complete plugin on the official Rails svn. #9512 *Pratik Naik*
1525
1526 * Moved ActionController::Macros::InPlaceEditing into the in_place_editor plugin on the official Rails svn. #9513 *Pratik Naik*
1527
1528 * Removed deprecated form of calling xml_http_request/xhr without the first argument being the http verb *David Heinemeier Hansson*
1529
1530 * Removed deprecated methods [David Heinemeier Hansson]:
1531
1532 - ActionController::Base#keep_flash (use flash.keep instead)
1533 - ActionController::Base#expire_matched_fragments (just call expire_fragment with a regular expression)
1534 - ActionController::Base.template_root/= methods (use ActionController#Base.view_paths/= instead)
1535 - ActionController::Base.cookie (use ActionController#Base.cookies[]= instead)
1536
1537 * Removed the deprecated behavior of appending ".png" to image_tag/image_path calls without an existing extension *David Heinemeier Hansson*
1538
1539 * Removed ActionController::Base.scaffold -- it went through the whole idea of scaffolding (card board walls you remove and tweak one by one). Use the scaffold generator instead (it does resources too now!) *David Heinemeier Hansson*
1540
1541 * Optimise named route generation when using positional arguments. *Michael Koziarski*
1542
1543 This change delivers significant performance benefits for the most
1544 common usage scenarios for modern rails applications by avoiding the
1545 costly trip through url_for. Initial benchmarks indicate this is
1546 between 6 and 20 times as fast.
1547
1548 * Explicitly require active_record/query_cache before using it. *Jeremy Kemper*
1549
1550 * Fix layout overriding response status. #9476 *lotswholetime*
1551
1552 * Add field_set_tag for generating field_sets, closes #9477. *Damian Janowski*
1553
1554 * Allow additional parameters to be passed to named route helpers when using positional arguments. Closes #8930 *Ian White*
1555
1556 * Make render :partial work with a :collection of Hashes, previously this wasn't possible due to backwards compatibility restrictions. *Pratik Naik*
1557
1558 * request.host works with IPv6 addresses. #9458 *yuya*
1559
1560 * Fix bug where action caching sets the content type to the ActionCachePath object. Closes #9282 *mindforge*
1561
1562 * Find layouts even if they're not in the first view_paths directory. Closes #9258 *caio*
1563
1564 * Major improvement to the documentation for the options / select form helpers. Closes #9038 *Chris Kampmeier, jardeon, wesg*
1565
1566 * Fix number_to_human_size when using different precisions. Closes #7536. *RichardStrand, mpalmer*
1567
1568 * Added partial layouts (see example in action_view/lib/partials.rb) *David Heinemeier Hansson*
1569
1570 * Allow you to set custom :conditions on resource routes. *Rick Olson*
1571
1572 * Fixed that file.content_type for uploaded files would include a trailing \r #9053 *Brad Greenlee*
1573
1574 * url_for now accepts a series of symbols representing the namespace of the record *Josh Knowles*
1575
1576 * Make :trailing_slash work with query parameters for url_for. Closes #4004 *nov*
1577
1578 * Make sure missing template exceptions actually say which template they were looking for. Closes #8683 *dasil003*
1579
1580 * Fix errors with around_filters which do not yield, restore 1.1 behaviour with after filters. Closes #8891 *Stefan Kaes*
1581
1582 After filters will *no longer* be run if an around_filter fails to yield, users relying on
1583 this behaviour are advised to put the code in question after a yield statement in an around filter.
1584
1585
1586 * Allow you to delete cookies with options. Closes #3685 *Josh Peek, Chris Wanstrath*
1587
1588 * Allow you to render views with periods in the name. Closes #8076 *Norbert Crombach*
1589
1590 render :partial => 'show.html.erb'
1591
1592 * Improve capture helper documentation. #8796 *Chris Kampmeier*
1593
1594 * Prefix nested resource named routes with their action name, e.g. new_group_user_path(@group) instead of group_new_user_path(@group). The old nested action named route is deprecated in Rails 1.2.4. #8558 *David Chelimsky*
1595
1596 * Allow sweepers to be created solely for expiring after controller actions, not model changes *David Heinemeier Hansson*
1597
1598 * Added assigns method to ActionController::Caching::Sweeper to easily access instance variables on the controller *David Heinemeier Hansson*
1599
1600 * Give the legacy X-POST_DATA_FORMAT header greater precedence during params parsing for backward compatibility. *Jeremy Kemper*
1601
1602 * Fixed that link_to with an href of # when using :method will not allow for click-through without JavaScript #7037 *Steven Bristol, Josh Peek*
1603
1604 * Fixed that radio_button_tag should generate unique ids #3353 *Bob Silva, Rebecca, Josh Peek*
1605
1606 * Fixed that HTTP authentication should work if the header is called REDIRECT_X_HTTP_AUTHORIZATION as well #6754 *Mislav Marohnić*
1607
1608 * Don't mistakenly interpret the request uri as the query string. #8731 *Pratik Naik, Jeremy Kemper*
1609
1610 * Make ActionView#view_paths an attr_accessor for real this time. Also, don't perform an unnecessary #compact on the @view_paths array in #initialize. Closes #8582 *dasil003, julik, Rick Olson*
1611
1612 * Tolerate missing content type on multipart file uploads. Fix for Safari 3. *Jeremy Kemper*
1613
1614 * Deprecation: remove pagination. Install the classic_pagination plugin for forward compatibility, or move to the superior will_paginate plugin. #8157 *Josh Peek*
1615
1616 * Action caching is limited to GET requests returning 200 OK status. #3335 *tom@craz8.com, halfbyte, Dan Kubb, Josh Peek*
1617
1618 * Improve Text Helper test coverage. #7274 *Rob Sanheim, Josh Peek*
1619
1620 * Improve helper test coverage. #7208, #7212, #7215, #7233, #7234, #7235, #7236, #7237, #7238, #7241, #7243, #7244 *Rich Collins, Josh Peek*
1621
1622 * Improve UrlRewriter tests. #7207 *Rich Collins*
1623
1624 * Resources: url_for([parent, child]) generates /parents/1/children/2 for the nested resource. Likewise with the other simply helpful methods like form_for and link_to. #6432 *mhw, Jonathan Vaught, lotswholetime*
1625
1626 * Assume html format when rendering partials in RJS. #8076 *Rick Olson*
1627
1628 * Don't double-escape url_for in views. #8144 *Rich Collins, Josh Peek*
1629
1630 * Allow JSON-style values for the :with option of observe_field. Closes #8557 *kommen*
1631
1632 * Remove RAILS_ROOT from backtrace paths. #8540 *Tim Pope*
1633
1634 * Routing: map.resource :logo routes to LogosController so the controller may be reused for multiple nestings or namespaces. *Jeremy Kemper*
1635
1636 * render :partial recognizes Active Record associations as Arrays. #8538 *Kamal Fariz Mahyuddin*
1637
1638 * Routing: drop semicolon and comma as route separators. *Jeremy Kemper*
1639
1640 * request.remote_ip understands X-Forwarded-For addresses with nonstandard whitespace. #7386 *moses*
1641
1642 * Don't prepare response when rendering a component. #8493 *jsierles*
1643
1644 * Reduce file stat calls when checking for template changes. #7736 *alex*
1645
1646 * Added custom path cache_page/expire_page parameters in addition to the options hashes [David Heinemeier Hansson]. Example:
1647
1648 def index
1649 caches_page(response.body, "/index.html")
1650 end
1651
1652 * Action Caching speedup. #8231 *Stefan Kaes*
1653
1654 * Wordsmith resources documentation. #8484 *marclove*
1655
1656 * Fix syntax error in code example for routing documentation. #8377. *Norbert Crombach*
1657
1658 * Routing: respond with 405 Method Not Allowed status when the route path matches but the HTTP method does not. #6953 *Josh Peek, defeated, Dan Kubb, Coda Hale*
1659
1660 * Add support for assert_select_rjs with :show and :hide. #7780 *dchelimsky*
1661
1662 * Make assert_select's failure messages clearer about what failed. #7779 *dchelimsky*
1663
1664 * Introduce a default respond_to block for custom types. #8174 *Josh Peek*
1665
1666 * auto_complete_field takes a :method option so you can GET or POST. #8120 *zapnap*
1667
1668 * Added option to suppress :size when using :maxlength for FormTagHelper#text_field #3112 *Tim Pope*
1669
1670 * catch possible WSOD when trying to render a missing partial. Closes #8454 *Jonathan del Strother*
1671
1672 * Rewind request body after reading it, if possible. #8438 *s450r1*
1673
1674 * Resource namespaces are inherited by their has_many subresources. #8280 *marclove, Geoff Garside*
1675
1676 * Fix filtered parameter logging with nil parameter values. #8422 *choonkeat*
1677
1678 * Integration tests: alias xhr to xml_http_request and add a request_method argument instead of always using POST. #7124 *Nik Wakelin, François Beausoleil, Wizard*
1679
1680 * Document caches_action. #5419 *Jarkko Laine*
1681
1682 * Update to Prototype 1.5.1. *Sam Stephenson*
1683
1684 * Allow routes to be decalred under namespaces [Tobias Lütke]:
1685
1686 map.namespace :admin do |admin|
1687 admin.root :controller => "products"
1688 admin.feed 'feed.xml', :controller => 'products', :action => 'feed', :format => 'xml'
1689 end
1690
1691 * Update to script.aculo.us 1.7.1_beta3. *Thomas Fuchs*
1692
1693 * observe_form always sends the serialized form. #5271 *Manfred Stienstra, normelton@gmail.com*
1694
1695 * Parse url-encoded and multipart requests ourselves instead of delegating to CGI. *Jeremy Kemper*
1696
1697 * select :include_blank option can be set to a string instead of true, which just uses an empty string. #7664 *Wizard*
1698
1699 * Added url_for usage on render :location, which allows for record identification [David Heinemeier Hansson]. Example:
1700
1701 render :xml => person, :status => :created, :location => person
1702
1703 ...expands the location to person_url(person).
1704
1705 * Introduce the request.body stream. Lazy-read to parse parameters rather than always setting RAW_POST_DATA. Reduces the memory footprint of large binary PUT requests. *Jeremy Kemper*
1706
1707 * Add some performance enhancements to ActionView.
1708
1709 * Cache base_paths in @@cached_base_paths
1710 * Cache template extensions in @@cached_template_extension
1711 * Remove unnecessary rescues
1712
1713 * Assume that rendered partials go by the HTML format by default
1714
1715 def my_partial
1716 render :update do |page|
1717 # in this order
1718 # _foo.html.erb
1719 # _foo.erb
1720 # _foo.rhtml
1721 page.replace :foo, :partial => 'foo'
1722 end
1723 end
1724
1725 * Added record identifications to FormHelper#form_for and PrototypeHelper#remote_form_for [David Heinemeier Hansson]. Examples:
1726
1727 <% form_for(@post) do |f| %>
1728 ...
1729 <% end %>
1730
1731 This will expand to be the same as:
1732
1733 <% form_for :post, @post, :url => post_path(@post), :html => { :method => :put, :class => "edit_post", :id => "edit_post_45" } do |f| %>
1734 ...
1735 <% end %>
1736
1737 And for new records:
1738
1739 <% form_for(Post.new) do |f| %>
1740 ...
1741 <% end %>
1742
1743 This will expand to be the same as:
1744
1745 <% form_for :post, @post, :url => posts_path, :html => { :class => "new_post", :id => "new_post" } do |f| %>
1746 ...
1747 <% end %>
1748
1749 * Rationalize route path escaping according to RFC 2396 section 3.3. #7544, #8307. *Jeremy Kemper, Chris Roos, begemot, jugend*
1750
1751 * Added record identification with polymorphic routes for ActionController::Base#url_for and ActionView::Base#url_for [David Heinemeier Hansson]. Examples:
1752
1753 redirect_to(post) # => redirect_to(posts_url(post)) => Location: http://example.com/posts/1
1754 link_to(post.title, post) # => link_to(post.title, posts_url(post)) => <a href="/posts/1">Hello world</a>
1755
1756 Any method that calls url_for on its parameters will automatically benefit from this.
1757
1758 * Removed deprecated parameters_for_method_reference concept (legacy from before named routes) *David Heinemeier Hansson*
1759
1760 * Add ActionController::Routing::Helpers, a module to contain common URL helpers such as polymorphic_url. *Nicholas Seckar*
1761
1762 * Included the HttpAuthentication plugin as part of core (ActionController::HttpAuthentication::Basic) *David Heinemeier Hansson*
1763
1764 * Modernize documentation for form helpers. *Jeremy McAnally*
1765
1766 * Add brief introduction to REST to the resources documentation. *fearoffish*
1767
1768 * Fix various documentation typos throughout ActionPack. *Henrik N*
1769
1770 * Enhance documentation and add examples for url_for. *Jeremy McAnally*
1771
1772 * Fix documentation typo in routes. *Norbert Crombach, pam*
1773
1774 * Sweep flash when filter chain is halted. *Caio Chassot <lists@v2studio.com>*
1775
1776 * Fixed that content_tag with a block will just return the result instead of concate it if not used in a ERb view #7857, #7432 *michael.niessner*
1777
1778 * Replace the current block/continuation filter chain handling by an implementation based on a simple loop. #8226 *Stefan Kaes*
1779
1780 * Update UrlWriter to accept :anchor parameter. Closes #6771. *Chris McGrath*
1781
1782 * Added RecordTagHelper for using RecordIdentifier conventions on divs and other container elements [David Heinemeier Hansson]. Example:
1783
1784 <% div_for(post) do %> <div id="post_45" class="post">
1785 <%= post.body %> What a wonderful world!
1786 <% end %> </div>
1787
1788 * Added page[record] accessor to JavaScriptGenerator that relies on RecordIdentifier to find the right dom id [David Heinemeier Hansson]. Example:
1789
1790 format.js do
1791 # Calls: new Effect.fade('post_45');
1792 render(:update) { |page| page[post].visual_effect(:fade) }
1793 end
1794
1795 * Added RecordIdentifier to enforce view conventions on records for dom ids, classes, and partial paths *David Heinemeier Hansson*
1796
1797 * Added map.namespace to deal with the common situation of admin sections and the like *David Heinemeier Hansson*
1798
1799 Before:
1800
1801 map.resources :products, :path_prefix => "admin", :controller => "admin/products", :collection => { :inventory => :get }, :member => { :duplicate => :post }
1802 map.resources :tags, :name_prefix => 'admin_product_', :path_prefix => "admin/products/:product_id", :controller => "admin/product_tags"
1803 map.resources :images, :name_prefix => 'admin_product_', :path_prefix => "admin/products/:product_id", :controller => "admin/product_images"
1804 map.resources :variants, :name_prefix => 'admin_product_', :path_prefix => "admin/products/:product_id", :controller => "admin/product_variants"
1805
1806 After:
1807
1808 map.namespace(:admin) do |admin|
1809 admin.resources :products,
1810 :collection => { :inventory => :get },
1811 :member => { :duplicate => :post },
1812 :has_many => [ :tags, :images, :variants ]
1813 end
1814
1815 * Added :name_prefix as standard for nested resources [David Heinemeier Hansson]. WARNING: May be backwards incompatible with your app
1816
1817 Before:
1818
1819 map.resources :emails do |emails|
1820 emails.resources :comments, :name_prefix => "email_"
1821 emails.resources :attachments, :name_prefix => "email_"
1822 end
1823
1824 After:
1825
1826 map.resources :emails do |emails|
1827 emails.resources :comments
1828 emails.resources :attachments
1829 end
1830
1831 This does mean that if you intended to have comments_url go to /emails/5/comments, then you'll have to set :name_prefix to nil explicitly.
1832
1833 * Added :has_many and :has_one for declaring plural and singular resources beneath the current *David Heinemeier Hansson*
1834
1835 Before:
1836
1837 map.resources :notes do |notes|
1838 notes.resources :comments
1839 notes.resources :attachments
1840 notes.resource :author
1841 end
1842
1843 After:
1844
1845 map.resources :notes, :has_many => [ :comments, :attachments ], :has_one => :author
1846
1847 * Added that render :xml will try to call to_xml if it can [David Heinemeier Hansson]. Makes these work:
1848
1849 render :xml => post
1850 render :xml => comments
1851
1852 * Added :location option to render so that the common pattern of rendering a response after creating a new resource is now a 1-liner *David Heinemeier Hansson*
1853
1854 render :xml => post.to_xml, :status => :created, :location => post_url(post)
1855
1856 * Ensure that render_text only adds string content to the body of the response *David Heinemeier Hansson*
1857
1858 * Return the string representation from an Xml Builder when rendering a partial. Closes #5044 *Tim Pope*
1859
1860 * Fixed that parameters from XML should also be presented in a hash with indifferent access *David Heinemeier Hansson*
1861
1862 * Tweak template format rules so that the ACCEPT header is only used if it's text/javascript. This is so ajax actions without a :format param get recognized as Mime::JS. *Rick Olson*
1863
1864 * The default respond_to blocks don't set a specific extension anymore, so that both 'show.rjs' and 'show.js.rjs' will work. *Rick Olson*
1865
1866 * Allow layouts with extension of .html.erb. Closes #8032 *Josh Knowles*
1867
1868 * Change default respond_to templates for xml and rjs formats. *Rick Olson*
1869
1870 * Default xml template goes from #{action_name}.rxml => #{action_name}.xml.builder.
1871 * Default rjs template goes from #{action_name}.rjs => #{action_name}.js.rjs.
1872
1873 You can still specify your old templates:
1874
1875 respond_to do |format|
1876 format.xml do
1877 render :action => "#{action_name}.rxml"
1878 end
1879 end
1880
1881 * Fix WSOD due to modification of a formatted template extension so that requests to templates like 'foo.html.erb' fail on the second hit. *Rick Olson*
1882
1883 * Fix WSOD when template compilation fails *Rick Olson*
1884
1885 * Change ActionView template defaults. Look for templates using the request format first, such as "show.html.erb" or "show.xml.builder", before looking for the old defaults like "show.erb" or "show.builder" *Rick Olson*
1886
1887 * Highlight helper highlights one or many terms in a single pass. *Jeremy Kemper*
1888
1889 * Dropped the use of ; as a separator of non-crud actions on resources and went back to the vanilla slash. It was a neat idea, but lots of the non-crud actions turned out not to be RPC (as the ; was primarily intended to discourage), but legitimate sub-resources, like /parties/recent, which didn't deserve the uglification of /parties;recent. Further more, the semicolon caused issues with caching and HTTP authentication in Safari. Just Not Worth It *David Heinemeier Hansson*
1890
1891 * Added that FormTagHelper#submit_tag will return to its original state if the submit fails and you're using :disable_with *David Heinemeier Hansson*
1892
1893 * Cleaned up, corrected, and mildly expanded ActionPack documentation. Closes #7190 *Jeremy McAnally*
1894
1895 * Small collection of ActionController documentation cleanups. Closes #7319 *Jeremy McAnally*
1896
1897 * Make sure the route expiry hash is constructed by comparing the to_param-ized values of each hash. *Jamis Buck*
1898
1899 * Allow configuration of the default action cache path for #caches_action calls. *Rick Olson*
1900
1901 class ListsController < ApplicationController
1902 caches_action :index, :cache_path => Proc.new { |controller|
1903 controller.params[:user_id] ?
1904 controller.send(:user_lists_url, c.params[:user_id]) :
1905 controller.send(:lists_url) }
1906 end
1907
1908 * Performance: patch cgi/session/pstore to require digest/md5 once rather than per #initialize. #7583 *Stefan Kaes*
1909
1910 * Cookie session store: ensure that new sessions doesn't reuse data from a deleted session in the same request. *Jeremy Kemper*
1911
1912 * Deprecation: verification with :redirect_to => :named_route shouldn't be deprecated. #7525 *Justin French*
1913
1914 * Cookie session store: raise ArgumentError when :session_key is blank. *Jeremy Kemper*
1915
1916 * Deprecation: remove deprecated request, redirect, and dependency methods. Remove deprecated instance variables. Remove deprecated url_for(:symbol, *args) and redirect_to(:symbol, *args) in favor of named routes. Remove uses_component_template_root for toplevel components directory. Privatize deprecated render_partial and render_partial_collection view methods. Remove deprecated link_to_image, link_image_to, update_element_function, start_form_tag, and end_form_tag helper methods. Remove deprecated human_size helper alias. *Jeremy Kemper*
1917
1918 * Consistent public/protected/private visibility for chained methods. #7813 *Dan Manges*
1919
1920 * Prefer MIME constants to strings. #7707 *Dan Kubb*
1921
1922 * Allow array and hash query parameters. Array route parameters are converted/to/a/path as before. #6765, #7047, #7462 *bgipsy, Jeremy McAnally, Dan Kubb, brendan*
1923
1924 \# Add a #dbman attr_reader for CGI::Session and make CGI::Session::CookieStore#generate_digest public so it's easy to generate digests using the cookie store's secret. [Rick Olson]
1925 * Added Request#url that returns the complete URL used for the request *David Heinemeier Hansson*
1926
1927 * Extract dynamic scaffolding into a plugin. #7700 *Josh Peek*
1928
1929 * Added user/password options for url_for to add http authentication in a URL *David Heinemeier Hansson*
1930
1931 * Fixed that FormTagHelper#text_area_tag should disregard :size option if it's not a string *Brendon Davidson*
1932
1933 * Set the original button value in an attribute of the button when using the :disable_with key with submit_tag, so that the original can be restored later. *Jamis Buck*
1934
1935 * session_enabled? works with session :off. #6680 *Jonathan del Strother*
1936
1937 * Added :port and :host handling to UrlRewriter (which unified url_for usage, regardless of whether it's called in view or controller) #7616 *alancfrancis*
1938
1939 * Allow send_file/send_data to use a registered mime type as the :type parameter #7620 *jonathan*
1940
1941 * Allow routing requirements on map.resource(s) #7633 [quixoten]. Example:
1942
1943 map.resources :network_interfaces, :requirements => { :id => /^\d+\.\d+\.\d+\.\d+$/ }
1944
1945 * Cookie session store: empty and unchanged sessions don't write a cookie. *Jeremy Kemper*
1946
1947 * Added helper(:all) as a way to include all helpers from app/helpers/**/*.rb in ApplicationController *David Heinemeier Hansson*
1948
1949 * Integration tests: introduce methods for other HTTP methods. #6353 *caboose*
1950
1951 * Routing: better support for escaped values in route segments. #7544 [Chris
1952 Roos]
1953 * Introduce a cookie-based session store as the Rails default. Sessions typically contain at most a user_id and flash message; both fit within the 4K cookie size limit. A secure message digest is included with the cookie to ensure data integrity (a user cannot alter his user_id without knowing the secret key included in the digest). If you have more than 4K of session data or don't want your data to be visible to the user, pick another session store. Cookie-based sessions are dramatically faster than the alternatives. *Jeremy Kemper*
1954
1955 Example config/environment.rb:
1956 # Use an application-wide secret key and the default SHA1 message digest.
1957 config.action_controller.session = { :secret => "can't touch this" }
1958
1959 # Store a secret key per user and employ a stronger message digest.
1960 config.action_controller.session = {
1961 :digest => 'SHA512',
1962 :secret => Proc.new { User.current.secret_key }
1963 }
1964
1965 * Added .erb and .builder as preferred aliases to the now deprecated .rhtml and .rxml extensions [Chad Fowler]. This is done to separate the renderer from the mime type. .erb templates are often used to render emails, atom, csv, whatever. So labeling them .rhtml doesn't make too much sense. The same goes for .rxml, which can be used to build everything from HTML to Atom to whatever. .rhtml and .rxml will continue to work until Rails 3.0, though. So this is a slow phasing out. All generators and examples will start using the new aliases, though.
1966
1967 * Added caching option to AssetTagHelper#stylesheet_link_tag and AssetTagHelper#javascript_include_tag [David Heinemeier Hansson]. Examples:
1968
1969 stylesheet_link_tag :all, :cache => true # when ActionController::Base.perform_caching is false =>
1970 <link href="/stylesheets/style1.css" media="screen" rel="Stylesheet" type="text/css" />
1971 <link href="/stylesheets/styleB.css" media="screen" rel="Stylesheet" type="text/css" />
1972 <link href="/stylesheets/styleX2.css" media="screen" rel="Stylesheet" type="text/css" />
1973
1974 stylesheet_link_tag :all, :cache => true # when ActionController::Base.perform_caching is true =>
1975 <link href="/stylesheets/all.css" media="screen" rel="Stylesheet" type="text/css" />
1976
1977 ...when caching is on, all.css is the concatenation of style1.css, styleB.css, and styleX2.css.
1978 Same deal for JavaScripts.
1979
1980 * Work around the two connection per host browser limit: use asset%d.myapp.com to distribute asset requests among asset[0123].myapp.com. Use a DNS wildcard or CNAMEs to map these hosts to your asset server. See http://www.die.net/musings/page_load_time/ for background. *Jeremy Kemper*
1981
1982 * Added default mime type for CSS (Mime::CSS) *David Heinemeier Hansson*
1983
1984 * Added that rendering will automatically insert the etag header on 200 OK responses. The etag is calculated using MD5 of the response body. If a request comes in that has a matching etag, the response will be changed to a 304 Not Modified and the response body will be set to an empty string. *David Heinemeier Hansson*
1985
1986 * Added X-Runtime to all responses with the request run time *David Heinemeier Hansson*
1987
1988 * Add Mime::Type convenience methods to check the current mime type. *Rick Olson*
1989
1990 request.format.html? # => true if Mime::HTML
1991 request.format.jpg? # => true if Mime::JPG
1992
1993 \# ActionController sample usage:
1994 \# the session will be disabled for non html/ajax requests
1995 session :off, :if => Proc.new { |req| !(req.format.html? || req.format.js?) }
1996
1997 * Performance: patch cgi/session to require digest/md5 once rather than per #create_new_id. *Stefan Kaes*
1998
1999 * Add a :url_based_filename => true option to ActionController::Streaming::send_file, which allows URL-based filenames. *Thomas Fuchs*
2000
2001 * Fix that FormTagHelper#submit_tag using :disable_with should trigger the onsubmit handler of its form if available *David Heinemeier Hansson*
2002
2003 * Fix #render_file so that TemplateError is called with the correct params and you don't get the WSOD. *Rick Olson*
2004
2005 * Fix issue with deprecation messing up #template_root= usage. Add #prepend_view_path and #append_view_path to allow modification of a copy of the
2006 superclass' view_paths. [Rick Olson]
2007 * Allow Controllers to have multiple view_paths instead of a single template_root. Closes #2754 *John Long*
2008
2009 * Add much-needed html-scanner tests. Fixed CDATA parsing bug. *Rick Olson*
2010
2011 * improve error message for Routing for named routes. Closes #7346 *Rob Sanheim*
2012
2013 * Added enhanced docs to routing assertions. Closes #7359 *Rob Sanheim*
2014
2015 * fix form_for example in ActionController::Resources documentation. Closes #7362 *gnarg*
2016
2017 * Make sure that the string returned by TextHelper#truncate is actually a string, not a char proxy -- that should only be used internally while working on a multibyte-safe way of truncating *David Heinemeier Hansson*
2018
2019 * Added FormBuilder#submit as a delegate for FormTagHelper#submit_tag *David Heinemeier Hansson*
2020
2021 * Allow Routes to generate all urls for a set of options by specifying :generate_all => true. Allows caching to properly set or expire all paths for a resource. References #1739. *Nicholas Seckar*
2022
2023 * Change the query parser to map empty GET params to "" rather than nil. Closes #5694. *Nicholas Seckar*
2024
2025 * date_select and datetime_select take a :default option. #7052 *Nik Wakelin*
2026 date_select "post", "written_on", :default => 3.days.from_now
2027 date_select "credit_card", "bill_due", :default => { :day => 20 }
2028
2029 * select :multiple => true suffixes the attribute name with [] unless already suffixed. #6977 *nik.kakelin, ben, julik*
2030
2031 * Improve routes documentation. #7095 *zackchandler*
2032
2033 * mail_to :encode => 'hex' also encodes the mailto: part of the href attribute as well as the linked email when no name is given. #2061 *Jarkko Laine, pfc.pille@gmx.net*
2034
2035 * Resource member routes require :id, eliminating the ambiguous overlap with collection routes. #7229 *dkubb*
2036
2037 * Remove deprecated assertions. *Jeremy Kemper*
2038
2039 * Change session restoration to allow namespaced models to be autoloaded. Closes #6348. *Nicholas Seckar*
2040
2041 * Fix doubly appearing parameters due to string and symbol mixups. Closes #2551. *Anthony Eden*
2042
2043 * Fix overly greedy rescues when loading helpers. Fixes #6268. *Nicholas Seckar*
2044
2045 * Fixed NumberHelper#number_with_delimiter to use "." always for splitting the original number, not the delimiter parameter #7389 *ceefour*
2046
2047 * Autolinking recognizes trailing and embedded . , : ; #7354 *Jarkko Laine*
2048
2049 * Make TextHelper::auto_link recognize URLs with colons in path correctly, fixes #7268. *imajes*
2050
2051 * Update to script.aculo.us 1.7.0. *Thomas Fuchs*
2052
2053 * Modernize cookie testing code, and increase coverage (Heckle++) #7101 *Kevin Clark*
2054
2055 * Improve Test Coverage for ActionController::Routing::Route#matches_controller_and_action? (Heckle++) #7115 *Kevin Clark*
2056
2057 * Heckling ActionController::Resources::Resource revealed that set_prefixes didn't break when :name_prefix was munged. #7081 *Kevin Clark*
2058
2059 * Fix #distance_of_time_in_words to report accurately against the Duration class. #7114 *eventualbuddha*
2060
2061 * Refactor #form_tag to allow easy extending. *Rick Olson*
2062
2063 * Update to Prototype 1.5.0. *Sam Stephenson*
2064
2065 * RecordInvalid, RecordNotSaved => 422 Unprocessable Entity, StaleObjectError => 409 Conflict. #7097 *dkubb*
2066
2067 * Allow fields_for to be nested inside form_for, so that the name and id get properly constructed *Jamis Buck*
2068
2069 * Allow inGroupsOf and eachSlice to be called through rjs. #7046 *Cody Fauser*
2070
2071 * Allow exempt_from_layout :rhtml. #6742, #7026 *Dan Manges, Squeegy*
2072
2073 * Recognize the .txt extension as Mime::TEXT *Rick Olson*
2074
2075 * Fix parsing of array[] CGI parameters so extra empty values aren't included. #6252 *Nicholas Seckar, aiwilliams, brentrowland*
2076
2077 * link_to_unless_current works with full URLs as well as paths. #6891 *Jarkko Laine, Manfred Stienstra, idrifter*
2078
2079 * Lookup the mime type for #auto_discovery_link_tag in the Mime::Type class. Closes #6941 *Josh Peek*
2080
2081 * Fix bug where nested resources ignore a parent singleton parent's path prefix. Closes #6940 *Dan Kubb*
2082
2083 * Fix no method error with error_messages_on. Closes #6935 *nik.wakelin Koz*
2084
2085 * Slight doc tweak to the ActionView::Helpers::PrototypeHelper#replace docs. Closes #6922 *Steven Bristol*
2086
2087 * Slight doc tweak to #prepend_filter. Closes #6493 *Jeremy Voorhis*
2088
2089 * Add more extensive documentation to the AssetTagHelper. Closes #6452 *Bob Silva*
2090
2091 * Clean up multiple calls to #stringify_keys in TagHelper, add better documentation and testing for TagHelper. Closes #6394 *Bob Silva*
2092
2093 * [DOCS] fix reference to ActionController::Macros::AutoComplete for #text_field_with_auto_complete. Closes #2578 *Jan Prill*
2094
2095 * Make sure html_document is reset between integration test requests. *ctm*
2096
2097 * Set session to an empty hash if :new_session => false and no session cookie or param is present. CGI::Session was raising an unrescued ArgumentError. *Josh Susser*
2098
2099 * Routing uses URI escaping for path components and CGI escaping for query parameters. *darix, Jeremy Kemper*
2100
2101 * Fix assert_redirected_to bug where redirecting from a nested to to a top-level controller incorrectly added the current controller's nesting. Closes #6128. *Rick Olson*
2102
2103 * Singleton resources: POST /singleton => create, GET /singleton/new => new. *Jeremy Kemper*
2104
2105 * Use 400 Bad Request status for unrescued ActiveRecord::RecordInvalid exceptions. *Jeremy Kemper*
2106
2107 * Silence log_error deprecation warnings from inspecting deprecated instance variables. *Nate Wiger*
2108
2109 * Only cache GET requests with a 200 OK response. #6514, #6743 *RSL, anamba*
2110
2111 * Add a 'referer' attribute to TestRequest. *Jamis Buck*
2112
2113 * Ensure render :json => ... skips the layout. Closes #6808 *Josh Peek*
2114
2115 * Fix HTML::Node to output double quotes instead of single quotes. Closes #6845 *mitreandy*
2116
2117 * Correctly report which filter halted the chain. #6699 *Martin Emde*
2118
2119 * Fix a bug in Routing where a parameter taken from the path of the current request could not be used as a query parameter for the next. Closes #6752. *Nicholas Seckar*
2120
2121 * Unrescued ActiveRecord::RecordNotFound responds with 404 instead of 500. *Jeremy Kemper*
2122
2123 * Improved auto_link to match more valid urls correctly *Tobias Lütke*
2124
2125 * Add singleton resources. *Rick Olson*
2126
2127 map.resource :account
2128
2129 GET /account
2130 GET /account;edit
2131 UPDATE /account
2132 DELETE /account
2133
2134 * respond_to recognizes JSON. render :json => @person.to_json automatically sets the content type and takes a :callback option to specify a client-side function to call using the rendered JSON as an argument. #4185 *Scott Raymond, eventualbuddha*
2135 # application/json response with body 'Element.show({:name: "David"})'
2136 respond_to do |format|
2137 format.json { render :json => { :name => "David" }.to_json, :callback => 'Element.show' }
2138 end
2139
2140 * Makes :discard_year work without breaking multi-attribute parsing in AR. #1260, #3800 *sean@ardismg.com, jmartin@desertflood.com, stephen@touset.org, Bob Silva*
2141
2142 * Adds html id attribute to date helper elements. #1050, #1382 *mortonda@dgrmm.net, David North, Bob Silva*
2143
2144 * Add :index and @auto_index capability to model driven date/time selects. #847, #2655 *moriq, Doug Fales, Bob Silva*
2145
2146 * Add :order to datetime_select, select_datetime, and select_date. #1427 *Timothee Peignier, Patrick Lenz, Bob Silva*
2147
2148 * Added time_select to work with time values in models. Update scaffolding. #2489, #2833 *Justin Palmer, Andre Caum, Bob Silva*
2149
2150 * Added :include_seconds to select_datetime, datetime_select and time_select. #2998 *csn, Bob Silva*
2151
2152 * All date/datetime selects can now accept an array of month names with :use_month_names. Allows for localization. #363 *tomasj, Bob Silva*
2153
2154 * Adds :time_separator to select_time and :date_separator to select_datetime. Preserves BC. #3811 *Bob Silva*
2155
2156 * Added map.root as an alias for map.connect '' *David Heinemeier Hansson*
2157
2158 * Added Request#format to return the format used for the request as a mime type. If no format is specified, the first Request#accepts type is used. This means you can stop using respond_to for anything else than responses [David Heinemeier Hansson]. Examples:
2159
2160 GET /posts/5.xml | request.format => Mime::XML
2161 GET /posts/5.xhtml | request.format => Mime::HTML
2162 GET /posts/5 | request.format => request.accepts.first (usually Mime::HTML for browsers)
2163
2164 * Added the option for extension aliases to mime type registration [David Heinemeier Hansson]. Example (already in the default routes):
2165
2166 Mime::Type.register "text/html", :html, %w( application/xhtml+xml ), %w( xhtml )
2167
2168 ...will respond on both .html and .xhtml.
2169
2170 * @response.redirect_url works with 201 Created responses: just return headers['Location'] rather than checking the response status. *Jeremy Kemper*
2171
2172 * Added CSV to Mime::SET so that respond_to csv will work *Cody Fauser*
2173
2174 * Fixed that HEAD should return the proper Content-Length header (that is, actually use @body.size, not just 0) *David Heinemeier Hansson*
2175
2176 * Added GET-masquarading for HEAD, so request.method will return :get even for HEADs. This will help anyone relying on case request.method to automatically work with HEAD and map.resources will also allow HEADs to all GET actions. Rails automatically throws away the response content in a reply to HEAD, so you don't even need to worry about that. If you, for whatever reason, still need to distinguish between GET and HEAD in some edge case, you can use Request#head? and even Request.headers["REQUEST_METHOD"] for get the "real" answer. Closes #6694 *David Heinemeier Hansson*
2177
2178 * Update Routing to complain when :controller is not specified by a route. Closes #6669. *Nicholas Seckar*
2179
2180 * Ensure render_to_string cleans up after itself when an exception is raised. #6658 *Rob Sanheim*
2181
2182 * Extract template_changed_since? from compile_template? so plugins may override its behavior for non-file-based templates. #6651 *Jeff Barczewski*
2183
2184 * Update to Prototype and script.aculo.us [5579]. *Thomas Fuchs*
2185
2186 * simple_format helper doesn't choke on nil. #6644 *jerry426*
2187
2188 * Update to Prototype 1.5.0_rc2 [5550] which makes it work in Opera again *Thomas Fuchs*
2189
2190 * Reuse named route helper module between Routing reloads. Use remove_method to delete named route methods after each load. Since the module is never collected, this fixes a significant memory leak. *Nicholas Seckar*
2191
2192 * ActionView::Base.erb_variable accessor names the buffer variable used to render templates. Defaults to _erbout; use _buf for erubis. *Rick Olson*
2193
2194 * assert_select_rjs :remove. *Dylan Egan*
2195
2196 * Always clear model associations from session. #4795 *sd@notso.net, andylien@gmail.com*
2197
2198 * Update to Prototype 1.5.0_rc2. *Sam Stephenson*
2199
2200 * Remove JavaScriptLiteral in favor of ActiveSupport::JSON::Variable. *Sam Stephenson*
2201
2202 * Sync ActionController::StatusCodes::STATUS_CODES with http://www.iana.org/assignments/http-status-codes. #6586 *dkubb*
2203
2204 * Multipart form values may have a content type without being treated as uploaded files if they do not provide a filename. #6401 *Andreas Schwarz, Jeremy Kemper*
2205
2206 * assert_response supports symbolic status codes. #6569 *Kevin Clark*
2207 assert_response :ok
2208 assert_response :not_found
2209 assert_response :forbidden
2210
2211 * Cache parsed query parameters. #6559 *Stefan Kaes*
2212
2213 * Deprecate JavaScriptHelper#update_element_function, which is superseeded by RJS *Thomas Fuchs*
2214
2215 * pluralize helper interprets nil as zero. #6474 *Tim Pope*
2216
2217 * Fix invalid test fixture exposed by stricter Ruby 1.8.5 multipart parsing. #6524 *Bob Silva*
2218
2219 * Set ActionView::Base.default_form_builder once rather than passing the :builder option to every form or overriding the form helper methods. *Jeremy Kemper*
2220
2221 * Deprecate expire_matched_fragments. Use expire_fragment instead. #6535 *Bob Silva*
2222
2223 * Update to latest Prototype, which doesn't serialize disabled form elements, adds clone() to arrays, empty/non-string Element.update() and adds a fixes excessive error reporting in WebKit beta versions *Thomas Fuchs*
2224
2225 * Deprecate start_form_tag and end_form_tag. Use form_tag / '</form>' from now on. *Rick Olson*
2226
2227 * Added block-usage to PrototypeHelper#form_remote_tag, document block-usage of FormTagHelper#form_tag *Rick Olson*
2228
2229 * Add a 0 margin/padding div around the hidden _method input tag that form_tag outputs. *Rick Olson*
2230
2231 * Added block-usage to TagHelper#content_tag [David Heinemeier Hansson]. Example:
2232
2233 <% content_tag :div, :class => "strong" %>
2234 Hello world!
2235 <% end %>
2236
2237 Will output:
2238 <div class="strong">Hello world!</div>
2239
2240 * Deprecated UrlHelper#link_to_image and UrlHelper#link_to :post => true #6409 *Bob Silva*
2241
2242 * Upgraded NumberHelper with number_to_phone support international formats to comply with ITU E.123 by supporting area codes with less than 3 digits, added precision argument to number_to_human_size (defaults to 1) #6421 *Bob Silva*
2243
2244 * Fixed that setting RAILS_ASSET_ID to "" should not add a trailing slash after assets #6454 *Bob Silva/chrismear*
2245
2246 * Force *_url named routes to show the host in ActionView *Rick Olson*
2247
2248 <%= url_for ... %> # no host
2249 <%= foo_path %> # no host
2250 <%= foo_url %> # host!
2251
2252 * Add support for converting blocks into function arguments to JavaScriptGenerator#call and JavaScriptProxy#call. *Sam Stephenson*
2253
2254 * Add JavaScriptGenerator#literal for wrapping a string in an object whose #to_json is the string itself. *Sam Stephenson*
2255
2256 * Add <%= escape_once html %> to escape html while leaving any currently escaped entities alone. Fix button_to double-escaping issue. *Rick Olson*
2257
2258 * Fix double-escaped entities, such as &amp;amp;, &amp;#123;, etc. *Rick Olson*
2259
2260 * Fix deprecation warnings when rendering the template error template. *Nicholas Seckar*
2261
2262 * Fix routing to correctly determine when generation fails. Closes #6300. [psross].
2263
2264 * Fix broken assert_generates when extra keys are being checked. *Jamis Buck*
2265
2266 * Replace KCODE checks with String#chars for truncate. Closes #6385 *Manfred Stienstra*
2267
2268 * Make page caching respect the format of the resource that is being requested even if the current route is the default route so that, e.g. posts.rss is not transformed by url_for to '/' and subsequently cached as '/index.html' when it should be cached as '/posts.rss'. *Marcel Molina Jr.*
2269
2270 * Use String#chars in TextHelper::excerpt. Closes #6386 *Manfred Stienstra*
2271
2272 * Install named routes into ActionView::Base instead of proxying them to the view via helper_method. Closes #5932. *Nicholas Seckar*
2273
2274 * Update to latest Prototype and script.aculo.us trunk versions *Thomas Fuchs*
2275
2276 * Fix relative URL root matching problems. *Mark Imbriaco*
2277
2278 * Fix filter skipping in controller subclasses. #5949, #6297, #6299 *Martin Emde*
2279
2280 * render_text may optionally append to the response body. render_javascript appends by default. This allows you to chain multiple render :update calls by setting @performed_render = false between them (awaiting a better public API). *Jeremy Kemper*
2281
2282 * Rename test assertion to prevent shadowing. Closes #6306. *psross*
2283
2284 * Fixed that NumberHelper#number_to_delimiter should respect precision of higher than two digits #6231 *Philip Hallstrom*
2285
2286 * Fixed that FormHelper#radio_button didn't respect an :id being passed in #6266 *evansj*
2287
2288 * Added an html_options hash parameter to javascript_tag() and update_page_tag() helpers #6311 [tzaharia]. Example:
2289
2290 update_page_tag :defer => 'true' { |page| ... }
2291
2292 Gives:
2293
2294 <script defer="true" type="text/javascript">...</script>
2295
2296 Which is needed for dealing with the IE6 DOM when it's not yet fully loaded.
2297
2298 * Fixed that rescue template path shouldn't be hardcoded, then it's easier to hook in your own #6295 *Mike Naberezny*
2299
2300 * Fixed escaping of backslashes in JavaScriptHelper#escape_javascript #6302 *sven@c3d2.de*
2301
2302 * Fixed that some 500 rescues would cause 500's themselves because the response had not yet been generated #6329 *cmselmer*
2303
2304 * respond_to :html doesn't assume .rhtml. #6281 *Hampton Catlin*
2305
2306 * Fixed some deprecation warnings in ActionPack *Rick Olson*
2307
2308 * assert_select_rjs decodes escaped unicode chars since the Javascript generators encode them. #6240 *japgolly*
2309
2310 * Deprecation: @cookies, @headers, @request, @response will be removed after 1.2. Use the corresponding method instead. *Jeremy Kemper*
2311
2312 * Make the :status parameter expand to the default message for that status code if it is an integer. Also support symbol statuses. [Jamis Buck]. Examples:
2313
2314 head :status => 404 # expands to "404 Not Found"
2315 head :status => :not_found # expands to "404 Not Found"
2316 head :status => :created # expands to "201 Created"
2317
2318 * Add head(options = {}) for responses that have no body. [Jamis Buck]. Examples:
2319
2320 head :status => 404 # return an empty response with a 404 status
2321 head :location => person_path(@person), :status => 201
2322
2323 * Fix bug that kept any before_filter except the first one from being able to halt the before_filter chain. *Rick Olson*
2324
2325 * strip_links is case-insensitive. #6285 *tagoh, Bob Silva*
2326
2327 * Clear the cache of possible controllers whenever Routes are reloaded. *Nicholas Seckar*
2328
2329 * Filters overhaul including meantime filter support using around filters + blocks. #5949 *Martin Emde, Roman Le Negrate, Stefan Kaes, Jeremy Kemper*
2330
2331 * Update RJS render tests. *sam*
2332
2333 * Update CGI process to allow sessions to contain namespaced models. Closes #4638. *dfelstead@site5.com*
2334
2335 * Fix routing to respect user provided requirements and defaults when assigning default routing options (such as :action => 'index'). Closes #5950. *Nicholas Seckar*
2336
2337 * Rescue Errno::ECONNRESET to handle an unexpectedly closed socket connection. Improves SCGI reliability. #3368, #6226 *sdsykes, fhanshaw@vesaria.com*
2338
2339 * Added that respond_to blocks will automatically set the content type to be the same as is requested [David Heinemeier Hansson]. Examples:
2340
2341 respond_to do |format|
2342 format.html { render :text => "I'm being sent as text/html" }
2343 format.rss { render :text => "I'm being sent as application/rss+xml" }
2344 format.atom { render :text => "I'm being sent as application/xml", :content_type => Mime::XML }
2345 end
2346
2347 * Added utf-8 as the default charset for all renders. You can change this default using ActionController::Base.default_charset=(encoding) *David Heinemeier Hansson*
2348
2349 * Added proper getters and setters for content type and charset [David Heinemeier Hansson]. Example of what we used to do:
2350
2351 response.headers["Content-Type"] = "application/atom+xml; charset=utf-8"
2352
2353 ...now:
2354
2355 response.content_type = Mime::ATOM
2356 response.charset = "utf-8"
2357
2358 * Updated prototype.js to 1.5.0_rc1 with latest fixes. *Rick Olson*
2359
2360 - XPATH support
2361 - Make Form.getElements() return elements in the correct order
2362 - fix broken Form.serialize return
2363
2364 * Declare file extensions exempt from layouts. #6219 *brandon*
2365 Example: ActionController::Base.exempt_from_layout 'rpdf'
2366
2367 * Add chained replace/update support for assert_select_rjs *Rick Olson*
2368
2369 Given RJS like...
2370
2371 page['test1'].replace "<div id=\"1\">foo</div>"
2372 page['test2'].replace_html "<div id=\"2\">foo</div>"
2373
2374 Test it with...
2375
2376 assert_select_rjs :chained_replace
2377 assert_select_rjs :chained_replace, "test1"
2378
2379 assert_select_rjs :chained_replace_html
2380 assert_select_rjs :chained_replace_html, "test2"
2381
2382 * Load helpers in alphabetical order for consistency. Resolve cyclic javascript_helper dependency. #6132, #6178 *choonkeat@gmail.com*
2383
2384 * Skip params with empty names, such as the &=Save query string from <input type="submit"/>. #2569 *Manfred Stienstra, raphinou@yahoo.com*
2385
2386 * Fix assert_tag so that :content => "foo" does not match substrings, but only exact strings. Use :content => /foo/ to match substrings. #2799 *Eric Hodel*
2387
2388 * Add descriptive messages to the exceptions thrown by cgi_methods. #6091, #6103 *Nicholas Seckar, Bob Silva*
2389
2390 * Update JavaScriptGenerator#show/hide/toggle/remove to new Prototype syntax for multiple ids, #6068 *petermichaux@gmail.com*
2391
2392 * Update UrlWriter to support :only_path. *Nicholas Seckar, Dave Thomas*
2393
2394 * Fixed JavaScriptHelper#link_to_function and JavaScriptHelper#button_to_function to have the script argument be optional [David Heinemeier Hansson]. So what used to require a nil, like this:
2395
2396 link_to("Hider", nil, :class => "hider_link") { |p| p[:something].hide }
2397
2398 ...can be written like this:
2399
2400 link_to("Hider", :class => "hider_link") { |p| p[:something].hide }
2401
2402 * Update to script.aculo.us 1.6.3 *Thomas Fuchs*
2403
2404 * Update to Prototype 1.5.0_rc1 *sam*
2405
2406 * Added access to nested attributes in RJS #4548 [richcollins@gmail.com]. Examples:
2407
2408 page['foo']['style'] # => $('foo').style;
2409 page['foo']['style']['color'] # => $('blank_slate').style.color;
2410 page['foo']['style']['color'] = 'red' # => $('blank_slate').style.color = 'red';
2411 page['foo']['style'].color = 'red' # => $('blank_slate').style.color = 'red';
2412
2413 * Fixed that AssetTagHelper#image_tag and others using compute_public_path should not modify the incoming source argument (closes #5102) *eule@space.ch*
2414
2415 * Deprecated the auto-appending of .png to AssetTagHelper#image_tag calls that doesn't have an extension *David Heinemeier Hansson*
2416
2417 * Fixed FormOptionsHelper#select to respect :selected value #5813
2418
2419 * Fixed TextHelper#simple_format to deal with multiple single returns within a single paragraph #5835 *moriq@moriq.com*
2420
2421 * Fixed TextHelper#pluralize to handle 1 as a string #5909 *rails@bencurtis.com*
2422
2423 * Improved resolution of DateHelper#distance_of_time_in_words for better precision #5994 *Bob Silva*
2424
2425 * Changed that uncaught exceptions raised any where in the application will cause RAILS_ROOT/public/500.html to be read and shown instead of just the static "Application error (Rails)" *David Heinemeier Hansson*
2426
2427 * Integration tests: thoroughly test ActionController::Integration::Session. #6022 *Kevin Clark*
2428 (tests skipped unless you `gem install mocha`)
2429
2430 * Added deprecation language for pagination which will become a plugin by Rails 2.0 *David Heinemeier Hansson*
2431
2432 * Added deprecation language for in_place_editor and auto_complete_field that both pieces will become plugins by Rails 2.0 *David Heinemeier Hansson*
2433
2434 * Deprecated all of ActionController::Dependencies. All dependency loading is now handled from Active Support *David Heinemeier Hansson*
2435
2436 * Added assert_select* for CSS selector-based testing (deprecates assert_tag) #5936 *assaf.arkin@gmail.com*
2437
2438 * radio_button_tag generates unique id attributes. #3353 *Bob Silva, somekool@gmail.com*
2439
2440 * strip_tags passes through blank args such as nil or "". #2229, #6702 *duncan@whomwah.com, dharana*
2441
2442 * Cleanup assert_tag :children counting. #2181 *jamie@bravenet.com*
2443
2444 * button_to accepts :method so you can PUT and DELETE with it. #6005 *Dan Webb*
2445
2446 * Update sanitize text helper to strip plaintext tags, and <img src="javascript:bang">. *Rick Olson*
2447
2448 * Update routing documentation. Closes #6017 *Nathan Witmer*
2449
2450 * Add routing tests to assert that RoutingError is raised when conditions aren't met. Closes #6016 *Nathan Witmer*
2451
2452 * Deprecation: update docs. #5998 *Jakob Skjerning, Kevin Clark*
2453
2454 * Make auto_link parse a greater subset of valid url formats. *Jamis Buck*
2455
2456 * Integration tests: headers beginning with X aren't excluded from the HTTP_ prefix, so X-Requested-With becomes HTTP_X_REQUESTED_WITH as expected. *Mike Clark*
2457
2458 * Tighten rescue clauses. #5985 *james@grayproductions.net*
2459
2460 * Fix send_data documentation typo. #5982 *brad@madriska.com*
2461
2462 * Switch to using FormEncodedPairParser for parsing request parameters. *Nicholas Seckar, David Heinemeier Hansson*
2463
2464 * respond_to .html now always renders #{action_name}.rhtml so that registered custom template handlers do not override it in priority. Custom mime types require a block and throw proper error now. *Tobias Lütke*
2465
2466 * Deprecation: test deprecated instance vars in partials. *Jeremy Kemper*
2467
2468 * Add UrlWriter to allow writing urls from Mailers and scripts. *Nicholas Seckar*
2469
2470 * Clean up and run the Active Record integration tests by default. #5854 *Kevin Clark, Jeremy Kemper*
2471
2472 * Correct example in cookies docs. #5832 *jessemerriman@warpmail.net*
2473
2474 * Updated to script.aculo.us 1.6.2 *Thomas Fuchs*
2475
2476 * Relax Routing's anchor pattern warning; it was preventing use of [^/] inside restrictions. *Nicholas Seckar*
2477
2478 * Add controller_paths variable to Routing. *Nicholas Seckar*
2479
2480 * Fix assert_redirected_to issue with named routes for module controllers. *Rick Olson*
2481
2482 * Tweak RoutingError message to show option diffs, not just missing named route significant keys. *Rick Olson*
2483
2484 * Invoke method_missing directly on hidden actions. Closes #3030. *Nicholas Seckar*
2485
2486 * Require Tempfile explicitly for TestUploadedFile due to changes in class auto loading. *Rick Olson*
2487
2488 * Add RoutingError exception when RouteSet fails to generate a path from a Named Route. *Rick Olson*
2489
2490 * Replace Reloadable with Reloadable::Deprecated. *Nicholas Seckar*
2491
2492 * Deprecation: check whether instance variables have been monkeyed with before assigning them to deprecation proxies. Raises a RuntimeError if so. *Jeremy Kemper*
2493
2494 * Add support for the param_name parameter to the auto_complete_field helper. #5026 *david.a.williams@gmail.com*
2495
2496 * Deprecation! @params, @session, @flash will be removed after 1.2. Use the corresponding instance methods instead. You'll get printed warnings during tests and logged warnings in dev mode when you access either instance variable directly. *Jeremy Kemper*
2497
2498 * Make Routing noisy when an anchor regexp is assigned to a segment. #5674 *François Beausoleil*
2499
2500 * Added months and years to the resolution of DateHelper#distance_of_time_in_words, such that "60 days ago" becomes "2 months ago" #5611 *pjhyett@gmail.com*
2501
2502 * Short documentation to mention use of Mime::Type.register. #5710 *choonkeat@gmail.com*
2503
2504 * Make controller_path available as an instance method. #5724 *jmckible@gmail.com*
2505
2506 * Update query parser to support adjacent hashes. *Nicholas Seckar*
2507
2508 * Make action caching aware of different formats for the same action so that, e.g. foo.xml is cached separately from foo.html. Implicitly set content type when reading in cached content with mime revealing extensions so the entire onous isn't on the webserver. *Marcel Molina Jr.*
2509
2510 * Restrict Request Method hacking with ?_method to POST requests. *Rick Olson*
2511
2512 * Fix bug when passing multiple options to SimplyRestful, like :new => { :preview => :get, :draft => :get }. *Rick Olson, Josh Susser, Lars Pind*
2513
2514 * Dup the options passed to map.resources so that multiple resources get the same options. *Rick Olson*
2515
2516 * Fixed the new_#{resource}_url route and added named route tests for Simply Restful. *Rick Olson*
2517
2518 * Added map.resources from the Simply Restful plugin [David Heinemeier Hansson]. Examples (the API has changed to use plurals!):
2519
2520 map.resources :messages
2521 map.resources :messages, :comments
2522 map.resources :messages, :new => { :preview => :post }
2523
2524 * Fixed that integration simulation of XHRs should set Accept header as well *Edward Frederick*
2525
2526 * TestRequest#reset_session should restore a TestSession, not a hash *Michael Koziarski*
2527
2528 * Don't search a load-path of '.' for controller files *Jamis Buck*
2529
2530 * Update integration.rb to require test_process explicitly instead of via Dependencies. *Nicholas Seckar*
2531
2532 * Fixed that you can still access the flash after the flash has been reset in reset_session. Closes #5584 *lmarlow*
2533
2534 * Allow form_for and fields_for to work with indexed form inputs. *Jeremy Kemper, Matt Lyon*
2535
2536 <% form_for 'post[]', @post do |f| -%>
2537 <% end -%>
2538
2539 * Remove leak in development mode by replacing define_method with module_eval. *Nicholas Seckar*
2540
2541 * Provide support for decimal columns to form helpers. Closes #5672. *Dave Thomas*
2542
2543 * Update documentation for erb trim syntax. #5651 *matt@mattmargolis.net*
2544
2545 * Pass :id => nil or :class => nil to error_messages_for to supress that html attribute. #3586 *olivier_ansaldi@yahoo.com*
2546
2547 * Reset @html_document between requests so assert_tag works. #4810 *Jarkko Laine, easleydp@gmail.com*
2548
2549 * Update render :partial documentation. #5646 *matt@mattmargolis.net*
2550
2551 * Integration tests behave well with render_component. #4632 *edward.frederick@revolution.com, dev.rubyonrails@maxdunn.com*
2552
2553 * Added exception handling of missing layouts #5373 *chris@ozmm.org*
2554
2555 * Fixed that real files and symlinks should be treated the same when compiling templates #5438 *zachary@panandscan.com*
2556
2557 * Fixed that the flash should be reset when reset_session is called #5584 *Shugo Maeda*
2558
2559 * Added special case for "1 Byte" in NumberHelper#number_to_human_size #5593 *murpyh@rubychan.de*
2560
2561 * Fixed proper form-encoded parameter parsing for requests with "Content-Type: application/x-www-form-urlencoded; charset=utf-8" (note the presence of a charset directive) *David Heinemeier Hansson*