Skip to content

HTTPS clone URL

Subversion checkout URL

You can clone with
or
.
Download ZIP
Newer
Older
100644 370 lines (209 sloc) 15.857 kb
2e98e0f @rafaelfranca Fix CHANGELOG [ci skip]
rafaelfranca authored
1 ## Rails 3.2.9 (unreleased) ##
6764b7b @spastorino Add missing CHANGELOG entries
spastorino authored
2
61d5d2d @rafaelfranca Merge pull request #7668 from Draiken/fix_issue_6497
rafaelfranca authored
3 * Fixed a bug with shorthand routes scoped with the `:module` option not
4 adding the module to the controller as described in issue #6497.
5 This should now work properly:
6
7 scope :module => "engine" do
8 get "api/version" # routes to engine/api#version
9 end
10
11 *Luiz Felipe Garcia Pereira*
12
1ac19c1 @wagenet Respect `config.digest = false` for `asset_path`
wagenet authored
13 * Respect `config.digest = false` for `asset_path`
14
15 Previously, the `asset_path` internals only respected the `:digest`
16 option, but ignored the global config setting. This meant that
17 `config.digest = false` could not be used in conjunction with
18 `config.compile = false` this corrects the behavior.
19
20 *Peter Wagenet*
21
dd76b3b @senny log 404 status when ActiveRecord::RecordNotFound was raised (#7646)
senny authored
22 * Fix #7646, the log now displays the correct status code when an exception is raised.
23
24 *Yves Senn*
25
4b19855 @nashby correct handling of date selects when using both disabled and discard…
nashby authored
26 * Fix handling of date selects when using both disabled and discard options.
27 Fixes #7431.
28
29 *Vasiliy Ermolovich*
30
c091fae @rafaelfranca Merge pull request #7410 from sandeepravi/default_options_helper_value
rafaelfranca authored
31 * Fix select_tag when option_tags is nil.
32 Fixes #7404.
33
34 *Sandeep Ravichandran*
35
8e2a05b @sikachu Do not include application.js if it doesn't exists
sikachu authored
36 * `javascript_include_tag :all` will now not include `application.js` if the file does not exists. *Prem Sichanugrist*
37
2e04a34 @brainopia Update changelog to reflect support of cookie jar options for all
brainopia authored
38 * Support cookie jar options (e.g., domain :all) for all session stores.
39 Fixes GH#3047, GH#2483.
40
41 *Ravil Bayramgalin*
42
bccc35b @jeremy Backport 5c51cd0: #send_file leans on Rack::Sendfile to X-Accel-Redir…
jeremy authored
43 * Performance Improvement to send_file: Avoid having to pass an open file handle as the response body. Rack::Sendfile
44 will usually intercept the response and just uses the path directly, so no reason to open the file. This performance
45 improvement also resolves an issue with jRuby encodings, and is the reason for the backport, see issue #6844.
46
47 *Jeremy Kemper & Erich Menge*
48
2e98e0f @rafaelfranca Fix CHANGELOG [ci skip]
rafaelfranca authored
49
ddedf5d @spastorino Add release date to CHANGELOGs
spastorino authored
50 ## Rails 3.2.8 (Aug 9, 2012) ##
6764b7b @spastorino Add missing CHANGELOG entries
spastorino authored
51
e91e4e8 @spastorino Do not mark strip_tags result as html_safe
spastorino authored
52 * There is an XSS vulnerability in the strip_tags helper in Ruby on Rails, the
53 helper doesn't correctly handle malformed html. As a result an attacker can
54 execute arbitrary javascript through the use of specially crafted malformed
55 html.
56
57 *Marek from Nethemba (www.nethemba.com) & Santiago Pastorino*
58
6d0526d @spastorino escape select_tag :prompt values
spastorino authored
59 * When a "prompt" value is supplied to the `select_tag` helper, the "prompt" value is not escaped.
60 If untrusted data is not escaped, and is supplied as the prompt value, there is a potential for XSS attacks.
61 Vulnerable code will look something like this:
62 select_tag("name", options, :prompt => UNTRUSTED_INPUT)
63
64 *Santiago Pastorino*
2e98e0f @rafaelfranca Fix CHANGELOG [ci skip]
rafaelfranca authored
65
857697b @rafaelfranca Fix CHANGELOGS
rafaelfranca authored
66 * Reverted the deprecation of `:confirm`. *Rafael Mendonça França*
67
68 * Reverted the deprecation of `:disable_with`. *Rafael Mendonça França*
6764b7b @spastorino Add missing CHANGELOG entries
spastorino authored
69
e826a5c @rafaelfranca Revert "Deprecate `:mouseover` options for `image_tag` helper."
rafaelfranca authored
70 * Reverted the deprecation of `:mouseover` option to `image_tag`. *Rafael Mendonça França*
71
f50a5d2 @rafaelfranca Revert "Deprecate link_to_function and button_to_function helpers"
rafaelfranca authored
72 * Reverted the deprecation of `button_to_function` and `link_to_function` helpers.
73
74 *Rafael Mendonça França*
75
6764b7b @spastorino Add missing CHANGELOG entries
spastorino authored
76
d1b9cf2 @tenderlove updating release date
tenderlove authored
77 ## Rails 3.2.7 (Jul 26, 2012) ##
125dfdf @tenderlove updating changelogs
tenderlove authored
78
857697b @rafaelfranca Fix CHANGELOGS
rafaelfranca authored
79 * Do not convert digest auth strings to symbols. CVE-2012-3424
80
81 * Bump Journey requirements to 1.0.4
82
83 * Add support for optional root segments containing slashes
125dfdf @tenderlove updating changelogs
tenderlove authored
84
857697b @rafaelfranca Fix CHANGELOGS
rafaelfranca authored
85 * Fixed bug creating invalid HTML in select options
125dfdf @tenderlove updating changelogs
tenderlove authored
86
857697b @rafaelfranca Fix CHANGELOGS
rafaelfranca authored
87 * Show in log correct wrapped keys
125dfdf @tenderlove updating changelogs
tenderlove authored
88
857697b @rafaelfranca Fix CHANGELOGS
rafaelfranca authored
89 * Fix NumberHelper options wrapping to prevent verbatim blocks being rendered instead of line continuations.
125dfdf @tenderlove updating changelogs
tenderlove authored
90
857697b @rafaelfranca Fix CHANGELOGS
rafaelfranca authored
91 * ActionController::Metal doesn't have logger method, check it and then delegate
125dfdf @tenderlove updating changelogs
tenderlove authored
92
857697b @rafaelfranca Fix CHANGELOGS
rafaelfranca authored
93 * ActionController::Caching depends on RackDelegation and AbstractController::Callbacks
125dfdf @tenderlove updating changelogs
tenderlove authored
94
95
8381d39 @tenderlove updating changelogs
tenderlove authored
96 ## Rails 3.2.6 (Jun 12, 2012) ##
8d4f63a @drogus Include routes.mounted_helpers into integration tests
drogus authored
97
ceb8ec3 @tenderlove updating changelogs with security fixes
tenderlove authored
98 * nil is removed from array parameter values
99
8381d39 @tenderlove updating changelogs
tenderlove authored
100 CVE-2012-2694
101
857697b @rafaelfranca Fix CHANGELOGS
rafaelfranca authored
102 * Deprecate `:confirm` in favor of `':data => { :confirm => "Text" }'` option for `button_to`, `button_tag`, `image_submit_tag`, `link_to` and `submit_tag` helpers.
103
104 *Carlos Galdino*
105
f550d4d @drogus Allow to use mounted helpers in ActionView::TestCase
drogus authored
106 * Allow to use mounted_helpers (helpers for accessing mounted engines) in ActionView::TestCase. *Piotr Sarnacki*
107
8d4f63a @drogus Include routes.mounted_helpers into integration tests
drogus authored
108 * Include mounted_helpers (helpers for accessing mounted engines) in ActionDispatch::IntegrationTest by default. *Piotr Sarnacki*
109
b13d89e @rafaelfranca Add release date of 3.2.5 on the CHANGELOG
rafaelfranca authored
110
111 ## Rails 3.2.5 (Jun 1, 2012) ##
112
113 * No changes.
114
115
d3e5d1c @tenderlove updating changelogs
tenderlove authored
116 ## Rails 3.2.4 (May 31, 2012) ##
342b54a @rafaelfranca Add CHANGELOG entry.
rafaelfranca authored
117
616c91d @iHiD Deprecate old APIs for highlight, excerpt and word_wrap
iHiD authored
118 * Deprecate old APIs for highlight, excerpt and word_wrap *Jeremy Walker*
119
857697b @rafaelfranca Fix CHANGELOGS
rafaelfranca authored
120 * Deprecate `:disable_with` in favor of `'data-disable-with'` option for `button_to`, `button_tag` and `submit_tag` helpers.
121
122 *Carlos Galdino + Rafael Mendonça França*
123
124 * Deprecate `:mouseover` option for `image_tag` helper. *Rafael Mendonça França*
1aff772 @rafaelfranca Deprecate `:mouseover` options for `image_tag` helper.
rafaelfranca authored
125
342b54a @rafaelfranca Add CHANGELOG entry.
rafaelfranca authored
126 * Deprecate `button_to_function` and `link_to_function` helpers. *Rafael Mendonça França*
127
d3e5d1c @tenderlove updating changelogs
tenderlove authored
128 * Don't break Haml with textarea newline fix. GH #393, #4000, #5190, #5191
129
130 * Fix options handling on labels. GH #2492, #5614
131
132 * Added config.action_view.embed_authenticity_token_in_remote_forms to deal
133 with regression from 16ee611fa
134
135 * Set rendered_format when doing render :inline. GH #5632
136
137 * Fix the redirect when it receive blocks with arity of 1. Closes #5677
342b54a @rafaelfranca Add CHANGELOG entry.
rafaelfranca authored
138
44aca7b @tenderlove adding security notifications to CHANGELOGs
tenderlove authored
139 * Strip [nil] from parameters hash. Thanks to Ben Murphy for
140 reporting this! CVE-2012-2660
141
b13d89e @rafaelfranca Add release date of 3.2.5 on the CHANGELOG
rafaelfranca authored
142
342b54a @rafaelfranca Add CHANGELOG entry.
rafaelfranca authored
143 ## Rails 3.2.3 (March 30, 2012) ##
8674823 @spastorino Add CHANGELOG entry
spastorino authored
144
beba826 @drogus Lazy load `default_form_builder` if it's passed as a string
drogus authored
145 * Allow to lazy load `default_form_builder` by passing a `String` instead of a constant. *Piotr Sarnacki*
146
dd69076 @spastorino Add missing CHANGELOG entry
spastorino authored
147 * Fix #5632, render :inline set the proper rendered format. *Santiago Pastorino*
148
b395ca1 @spastorino Add missing CHANGELOG entry
spastorino authored
149 * Fix textarea rendering when using plugins like HAML. Such plugins encode the first newline character in the content. This issue was introduced in https://github.com/rails/rails/pull/5191 *James Coleman*
150
13fe190 @spastorino Remove the leading \n added by textarea on assert_select
spastorino authored
151 * Remove the leading \n added by textarea on assert_select. *Santiago Pastorino*
152
d646d9d @drogus Added config.action_view.embed_authenticity_token_in_remote_forms
drogus authored
153 * Add `config.action_view.embed_authenticity_token_in_remote_forms` (defaults to true) which allows to set if authenticity token will be included by default in remote forms. If you change it to false, you can still force authenticity token by passing `:authenticity_token => true` in form options *Piotr Sarnacki*
154
16ee611 @dhh Do not include the authenticity token in forms where remote: true as …
dhh authored
155 * Do not include the authenticity token in forms where remote: true as ajax forms use the meta-tag value *DHH*
156
520571a @spastorino Turn off verbose mode of rack-cache, we still have X-Rack-Cache to ch…
spastorino authored
157 * Turn off verbose mode of rack-cache, we still have X-Rack-Cache to
158 check that info. Closes #5245. *Santiago Pastorino*
159
8674823 @spastorino Add CHANGELOG entry
spastorino authored
160 * Fix #5238, rendered_format is not set when template is not rendered. *Piotr Sarnacki*
161
3bfd651 @vijaydev changelog updates [ci skip]
vijaydev authored
162 * Upgrade rack-cache to 1.2. *José Valim*
163
164 * ActionController::SessionManagement is deprecated. *Santiago Pastorino*
165
db743ff @rafaelfranca Fix my name in the CHANGELOG to follow the convention
rafaelfranca authored
166 * Since the router holds references to many parts of the system like engines, controllers and the application itself, inspecting the route set can actually be really slow, therefore we default alias inspect to to_s. *José Valim*
3bfd651 @vijaydev changelog updates [ci skip]
vijaydev authored
167
db743ff @rafaelfranca Fix my name in the CHANGELOG to follow the convention
rafaelfranca authored
168 * Add a new line after the textarea opening tag. Closes #393 *Rafael Mendonça França*
3bfd651 @vijaydev changelog updates [ci skip]
vijaydev authored
169
170 * Always pass a respond block from to responder. We should let the responder to decide what to do with the given overridden response block, and not short circuit it. *sikachu*
171
172 * Fixes layout rendering regression from 3.2.2. *José Valim*
8674823 @spastorino Add CHANGELOG entry
spastorino authored
173
db743ff @rafaelfranca Fix my name in the CHANGELOG to follow the convention
rafaelfranca authored
174
175 ## Rails 3.2.2 (March 1, 2012) ##
2e5ec3b @josevalim Merge check box fixes from remote-tracking branch 'cantonio/checkbox-…
josevalim authored
176
82d6ded @spastorino Fix CHANGELOG
spastorino authored
177 * Format lookup for partials is derived from the format in which the template is being rendered. Closes #5025 part 2 *Santiago Pastorino*
110b43c @spastorino Add CHANGELOG entry
spastorino authored
178
82d6ded @spastorino Fix CHANGELOG
spastorino authored
179 * Use the right format when a partial is missing. Closes #5025. *Santiago Pastorino*
b122968 @spastorino Add CHANGELOG entry
spastorino authored
180
567ac65 @sikachu Fix override API response bug in respond_with
sikachu authored
181 * Default responder will now always use your overridden block in `respond_with` to render your response. *Prem Sichanugrist*
182
2e5ec3b @josevalim Merge check box fixes from remote-tracking branch 'cantonio/checkbox-…
josevalim authored
183 * check_box helper with :disabled => true will generate a disabled hidden field to conform with the HTML convention where disabled fields are not submitted with the form.
184 This is a behavior change, previously the hidden tag had a value of the disabled checkbox.
185 *Tadas Tamosauskas*
186
8674823 @spastorino Add CHANGELOG entry
spastorino authored
187
97e8d1d @fxn CHANGELOG revision for v3.2.1
fxn authored
188 ## Rails 3.2.1 (January 26, 2012) ##
189
190 * Documentation improvements.
191
192 * Allow `form.select` to accept ranges (regression). *Jeremy Walker*
193
194 * `datetime_select` works with -/+ infinity dates. *Joe Van Dyk*
195
196
f36dcaf @dhh Preparing for 3.2.0 release
dhh authored
197 ## Rails 3.2.0 (January 20, 2012) ##
281272a @jonleighton Convert CHANGELOGs to Markdown format.
jonleighton authored
198
ae7037e @guilleiguaran Update CHANGELOG and docs for config.assets.logger
guilleiguaran authored
199 * Setting config.assets.logger to false turn off Sprockets logger *Guillermo Iguaran*
200
ed0f0ad @carlosantoniodasilva Update changelog
carlosantoniodasilva authored
201 * Add `config.action_dispatch.default_charset` to configure default charset for ActionDispatch::Response. *Carlos Antonio da Silva*
202
203 * Deprecate setting default charset at controller level, use the new `config.action_dispatch.default_charset` instead. *Carlos Antonio da Silva*
204
205 * Deprecate ActionController::UnknownAction in favour of AbstractController::ActionNotFound. *Carlos Antonio da Silva*
206
207 * Deprecate ActionController::DoubleRenderError in favour of AbstractController::DoubleRenderError. *Carlos Antonio da Silva*
208
209 * Deprecate method_missing handling for not found actions, use action_missing instead. *Carlos Antonio da Silva*
210
211 * Deprecate ActionController#rescue_action, ActionController#initialize_template_class, and ActionController#assign_shortcuts.
212 These methods were not being used internally anymore and are going to be removed in Rails 4. *Carlos Antonio da Silva*
213
c4c6beb @rafaelfranca Add option to configure Sprockets logger
rafaelfranca authored
214 * Add config.assets.logger to configure Sprockets logger *Rafael França*
215
c159b01 @spastorino Use a BodyProxy instead of including a Module that responds to close.
spastorino authored
216 * Use a BodyProxy instead of including a Module that responds to
217 close. Closes #4441 if Active Record is disabled assets are delivered
218 correctly *Santiago Pastorino*
219
6f48fb3 @spastorino Add CHANGELOG entry
spastorino authored
220 * Rails initialization with initialize_on_precompile = false should set assets_dir *Santiago Pastorino*
221
0d7d3a6 @spastorino Add font_path helper method
spastorino authored
222 * Add font_path helper method *Santiago Pastorino*
223
a0fd9fb @spastorino Add CHANGELOG entry
spastorino authored
224 * Depends on rack ~> 1.4.0 *Santiago Pastorino*
225
fc42998 @josevalim Update CHANGELOGs.
josevalim authored
226 * Add :gzip option to `caches_page`. The default option can be configured globally using `page_cache_compression` *Andrey Sitnik*
227
6481bc5 @josevalim Update CHANGELOGs and guides.
josevalim authored
228 * The ShowExceptions middleware now accepts a exceptions application that is responsible to render an exception when the application fails. The application is invoked with a copy of the exception in `env["action_dispatch.exception"]` and with the PATH_INFO rewritten to the status code. *José Valim*
229
3f65e7f @wfarr Add button_tag support to ActionView::Helpers::FormBuilder.
wfarr authored
230 * Add `button_tag` support to ActionView::Helpers::FormBuilder.
231
232 This support mimics the default behavior of `submit_tag`.
233
234 Example:
235
236 <%= form_for @post do |f| %>
237 <%= f.button %>
238 <% end %>
239
ed0f0ad @carlosantoniodasilva Update changelog
carlosantoniodasilva authored
240 * Date helpers accept a new option, `:use_two_digit_numbers = true`, that renders select boxes for months and days with a leading zero without changing the respective values.
dc43e40 @DevL Added :use_two_digit_numbers option [Lennart Fridén & Kim Persson]
DevL authored
241 For example, this is useful for displaying ISO8601-style dates such as '2011-08-01'. *Lennart Fridén and Kim Persson*
242
22a6079 @dhh Make ActiveSupport::Benchmarkable a default module for ActionControll…
dhh authored
243 * Make ActiveSupport::Benchmarkable a default module for ActionController::Base, so the #benchmark method is once again available in the controller context like it used to be *DHH*
244
5ad5215 @josevalim Deprecate implicit layout lookup in favor of inheriting the _layout c…
josevalim authored
245 * Deprecated implied layout lookup in controllers whose parent had a explicit layout set:
246
247 class ApplicationController
248 layout "application"
249 end
250
251 class PostsController < ApplicationController
252 end
253
254 In the example above, Posts controller will no longer automatically look up for a posts layout.
255
256 If you need this functionality you could either remove `layout "application"` from ApplicationController or explicitly set it to nil in PostsController. *José Valim*
257
18ceed2 @sikachu Allow layout fallback when using `layout` method
sikachu authored
258 * Rails will now use your default layout (such as "layouts/application") when you specify a layout with `:only` and `:except` condition, and those conditions fail. *Prem Sichanugrist*
259
260 For example, consider this snippet:
261
262 class CarsController
263 layout 'single_car', :only => :show
264 end
265
266 Rails will use 'layouts/single_car' when a request comes in `:show` action, and use 'layouts/application' (or 'layouts/cars', if exists) when a request comes in for any other actions.
267
e29773f @nashby form_for with +:as+ option uses "action_as" as css class and id
nashby authored
268 * form_for with +:as+ option uses "#{action}_#{as}" as css class and id:
269
270 Before:
271
272 form_for(@user, :as => 'client') # => "<form class="client_new">..."
273
274 Now:
275
276 form_for(@user, :as => 'client') # => "<form class="new_client">..."
277
278 *Vasiliy Ermolovich*
279
07f90f6 @josevalim Merge branch 'exceptions' with the following features:
josevalim authored
280 * Allow rescue responses to be configured through a railtie as in `config.action_dispatch.rescue_responses`. Please look at ActiveRecord::Railtie for an example *José Valim*
281
218c272 @dhh Allow fresh_when/stale? to take a record instead of an options hash […
dhh authored
282 * Allow fresh_when/stale? to take a record instead of an options hash *DHH*
283
1e51cd9 @josevalim Update CHANGELOG.
josevalim authored
284 * Assets should use the request protocol by default or default to relative if no request is available *Jonathan del Strother*
285
286 * Log "Filter chain halted as CALLBACKNAME rendered or redirected" every time a before callback halts *José Valim*
38ab982 @josevalim Log 'Filter chain halted as CALLBACKNAME rendered or redirected' ever…
josevalim authored
287
2559256 @nashby update CHANGELOG
nashby authored
288 * You can provide a namespace for your form to ensure uniqueness of id attributes on form elements.
289 The namespace attribute will be prefixed with underscore on the generate HTML id. *Vasiliy Ermolovich*
290
291 Example:
292
293 <%= form_for(@offer, :namespace => 'namespace') do |f| %>
294 <%= f.label :version, 'Version' %>:
295 <%= f.text_field :version %>
296 <% end %>
297
654df86 @josevalim Show detailed exceptions no longer returns true if the request is loc…
josevalim authored
298 * Refactor ActionDispatch::ShowExceptions. The controller is responsible for choosing to show exceptions when `consider_all_requests_local` is false.
3a1d519 @lest deprecation warning, changelog entry
lest authored
299
654df86 @josevalim Show detailed exceptions no longer returns true if the request is loc…
josevalim authored
300 It's possible to override `show_detailed_exceptions?` in controllers to specify which requests should provide debugging information on errors. The default value is now false, meaning local requests in production will no longer show the detailed exceptions page unless `show_detailed_exceptions?` is overridden and set to `request.local?`.
3a1d519 @lest deprecation warning, changelog entry
lest authored
301
281272a @jonleighton Convert CHANGELOGs to Markdown format.
jonleighton authored
302 * Responders now return 204 No Content for API requests without a response body (as in the new scaffold) *José Valim*
303
304 * Added ActionDispatch::RequestId middleware that'll make a unique X-Request-Id header available to the response and enables the ActionDispatch::Request#uuid method. This makes it easy to trace requests from end-to-end in the stack and to identify individual requests in mixed logs like Syslog *DHH*
305
306 * Limit the number of options for select_year to 1000.
307
308 Pass the :max_years_allowed option to set your own limit.
309
310 *Libo Cannici*
311
312 * Passing formats or handlers to render :template and friends is deprecated. For example: *Nick Sutterer & José Valim*
313
314 render :template => "foo.html.erb"
315
316 Instead, you can provide :handlers and :formats directly as option:
317 render :template => "foo", :formats => [:html, :js], :handlers => :erb
318
319 * Changed log level of warning for missing CSRF token from :debug to :warn. *Mike Dillon*
320
321 * content_tag_for and div_for can now take the collection of records. It will also yield the record as the first argument if you set a receiving argument in your block *Prem Sichanugrist*
322
323 So instead of having to do this:
324
325 @items.each do |item|
326 content_tag_for(:li, item) do
327 Title: <%= item.title %>
328 end
329 end
330
331 You can now do this:
332
333 content_tag_for(:li, @items) do |item|
334 Title: <%= item.title %>
335 end
336
337 * send_file now guess the mime type *Esad Hajdarevic*
338
339 * Mime type entries for PDF, ZIP and other formats were added *Esad Hajdarevic*
340
341 * Generate hidden input before select with :multiple option set to true.
342 This is useful when you rely on the fact that when no options is set,
343 the state of select will be sent to rails application. Without hidden field
344 nothing is sent according to HTML spec *Bogdan Gusiev*
345
346 * Refactor ActionController::TestCase cookies *Andrew White*
347
348 Assigning cookies for test cases should now use cookies[], e.g:
349
350 cookies[:email] = 'user@example.com'
351 get :index
352 assert_equal 'user@example.com', cookies[:email]
353
354 To clear the cookies, use clear, e.g:
355
356 cookies.clear
357 get :index
358 assert_nil cookies[:email]
359
360 We now no longer write out HTTP_COOKIE and the cookie jar is
361 persistent between requests so if you need to manipulate the environment
362 for your test you need to do it before the cookie jar is created.
363
677f968 Add information to the changelog about the changes to ActionControlle…
Jean-Francois Turcot authored
364 * ActionController::ParamsWrapper on ActiveRecord models now only wrap
365 attr_accessible attributes if they were set, if not, only the attributes
366 returned by the class method attribute_names will be wrapped. This fixes
367 the wrapping of nested attributes by adding them to attr_accessible.
368
8efced6 @fxn CHANGELOGs are now per branch
fxn authored
369 Please check [3-1-stable](https://github.com/rails/rails/blob/3-1-stable/actionpack/CHANGELOG.md) for previous changes.
Something went wrong with that request. Please try again.