Skip to content

HTTPS clone URL

Subversion checkout URL

You can clone with HTTPS or Subversion.

Download ZIP
Newer
Older
100644 351 lines (196 sloc) 15.196 kb
2e98e0f Rafael Mendonça França Fix CHANGELOG [ci skip]
rafaelfranca authored
1 ## Rails 3.2.9 (unreleased) ##
6764b7b Santiago Pastorino Add missing CHANGELOG entries
spastorino authored
2
dd76b3b Yves Senn log 404 status when ActiveRecord::RecordNotFound was raised (#7646)
senny authored
3 * Fix #7646, the log now displays the correct status code when an exception is raised.
4
5 *Yves Senn*
6
4b19855 Vasiliy Ermolovich correct handling of date selects when using both disabled and discard op...
nashby authored
7 * Fix handling of date selects when using both disabled and discard options.
8 Fixes #7431.
9
10 *Vasiliy Ermolovich*
11
c091fae Rafael Mendonça França Merge pull request #7410 from sandeepravi/default_options_helper_value
rafaelfranca authored
12 * Fix select_tag when option_tags is nil.
13 Fixes #7404.
14
15 *Sandeep Ravichandran*
16
8e2a05b Prem Sichanugrist Do not include application.js if it doesn't exists
sikachu authored
17 * `javascript_include_tag :all` will now not include `application.js` if the file does not exists. *Prem Sichanugrist*
18
2e04a34 Ravil Bayramgalin Update changelog to reflect support of cookie jar options for all
brainopia authored
19 * Support cookie jar options (e.g., domain :all) for all session stores.
20 Fixes GH#3047, GH#2483.
21
22 *Ravil Bayramgalin*
23
bccc35b Jeremy Kemper Backport 5c51cd0: #send_file leans on Rack::Sendfile to X-Accel-Redirect...
jeremy authored
24 * Performance Improvement to send_file: Avoid having to pass an open file handle as the response body. Rack::Sendfile
25 will usually intercept the response and just uses the path directly, so no reason to open the file. This performance
26 improvement also resolves an issue with jRuby encodings, and is the reason for the backport, see issue #6844.
27
28 *Jeremy Kemper & Erich Menge*
29
2e98e0f Rafael Mendonça França Fix CHANGELOG [ci skip]
rafaelfranca authored
30
ddedf5d Santiago Pastorino Add release date to CHANGELOGs
spastorino authored
31 ## Rails 3.2.8 (Aug 9, 2012) ##
6764b7b Santiago Pastorino Add missing CHANGELOG entries
spastorino authored
32
e91e4e8 Santiago Pastorino Do not mark strip_tags result as html_safe
spastorino authored
33 * There is an XSS vulnerability in the strip_tags helper in Ruby on Rails, the
34 helper doesn't correctly handle malformed html. As a result an attacker can
35 execute arbitrary javascript through the use of specially crafted malformed
36 html.
37
38 *Marek from Nethemba (www.nethemba.com) & Santiago Pastorino*
39
6d0526d Santiago Pastorino escape select_tag :prompt values
spastorino authored
40 * When a "prompt" value is supplied to the `select_tag` helper, the "prompt" value is not escaped.
41 If untrusted data is not escaped, and is supplied as the prompt value, there is a potential for XSS attacks.
42 Vulnerable code will look something like this:
43 select_tag("name", options, :prompt => UNTRUSTED_INPUT)
44
45 *Santiago Pastorino*
2e98e0f Rafael Mendonça França Fix CHANGELOG [ci skip]
rafaelfranca authored
46
857697b Rafael Mendonça França Fix CHANGELOGS
rafaelfranca authored
47 * Reverted the deprecation of `:confirm`. *Rafael Mendonça França*
48
49 * Reverted the deprecation of `:disable_with`. *Rafael Mendonça França*
6764b7b Santiago Pastorino Add missing CHANGELOG entries
spastorino authored
50
e826a5c Rafael Mendonça França Revert "Deprecate `:mouseover` options for `image_tag` helper."
rafaelfranca authored
51 * Reverted the deprecation of `:mouseover` option to `image_tag`. *Rafael Mendonça França*
52
f50a5d2 Rafael Mendonça França Revert "Deprecate link_to_function and button_to_function helpers"
rafaelfranca authored
53 * Reverted the deprecation of `button_to_function` and `link_to_function` helpers.
54
55 *Rafael Mendonça França*
56
6764b7b Santiago Pastorino Add missing CHANGELOG entries
spastorino authored
57
d1b9cf2 Aaron Patterson updating release date
tenderlove authored
58 ## Rails 3.2.7 (Jul 26, 2012) ##
125dfdf Aaron Patterson updating changelogs
tenderlove authored
59
857697b Rafael Mendonça França Fix CHANGELOGS
rafaelfranca authored
60 * Do not convert digest auth strings to symbols. CVE-2012-3424
61
62 * Bump Journey requirements to 1.0.4
63
64 * Add support for optional root segments containing slashes
125dfdf Aaron Patterson updating changelogs
tenderlove authored
65
857697b Rafael Mendonça França Fix CHANGELOGS
rafaelfranca authored
66 * Fixed bug creating invalid HTML in select options
125dfdf Aaron Patterson updating changelogs
tenderlove authored
67
857697b Rafael Mendonça França Fix CHANGELOGS
rafaelfranca authored
68 * Show in log correct wrapped keys
125dfdf Aaron Patterson updating changelogs
tenderlove authored
69
857697b Rafael Mendonça França Fix CHANGELOGS
rafaelfranca authored
70 * Fix NumberHelper options wrapping to prevent verbatim blocks being rendered instead of line continuations.
125dfdf Aaron Patterson updating changelogs
tenderlove authored
71
857697b Rafael Mendonça França Fix CHANGELOGS
rafaelfranca authored
72 * ActionController::Metal doesn't have logger method, check it and then delegate
125dfdf Aaron Patterson updating changelogs
tenderlove authored
73
857697b Rafael Mendonça França Fix CHANGELOGS
rafaelfranca authored
74 * ActionController::Caching depends on RackDelegation and AbstractController::Callbacks
125dfdf Aaron Patterson updating changelogs
tenderlove authored
75
76
8381d39 Aaron Patterson updating changelogs
tenderlove authored
77 ## Rails 3.2.6 (Jun 12, 2012) ##
8d4f63a Piotr Sarnacki Include routes.mounted_helpers into integration tests
drogus authored
78
ceb8ec3 Aaron Patterson updating changelogs with security fixes
tenderlove authored
79 * nil is removed from array parameter values
80
8381d39 Aaron Patterson updating changelogs
tenderlove authored
81 CVE-2012-2694
82
857697b Rafael Mendonça França Fix CHANGELOGS
rafaelfranca authored
83 * Deprecate `:confirm` in favor of `':data => { :confirm => "Text" }'` option for `button_to`, `button_tag`, `image_submit_tag`, `link_to` and `submit_tag` helpers.
84
85 *Carlos Galdino*
86
f550d4d Piotr Sarnacki Allow to use mounted helpers in ActionView::TestCase
drogus authored
87 * Allow to use mounted_helpers (helpers for accessing mounted engines) in ActionView::TestCase. *Piotr Sarnacki*
88
8d4f63a Piotr Sarnacki Include routes.mounted_helpers into integration tests
drogus authored
89 * Include mounted_helpers (helpers for accessing mounted engines) in ActionDispatch::IntegrationTest by default. *Piotr Sarnacki*
90
b13d89e Rafael Mendonça França Add release date of 3.2.5 on the CHANGELOG
rafaelfranca authored
91
92 ## Rails 3.2.5 (Jun 1, 2012) ##
93
94 * No changes.
95
96
d3e5d1c Aaron Patterson updating changelogs
tenderlove authored
97 ## Rails 3.2.4 (May 31, 2012) ##
342b54a Rafael Mendonça França Add CHANGELOG entry.
rafaelfranca authored
98
616c91d Jeremy Walker Deprecate old APIs for highlight, excerpt and word_wrap
iHiD authored
99 * Deprecate old APIs for highlight, excerpt and word_wrap *Jeremy Walker*
100
857697b Rafael Mendonça França Fix CHANGELOGS
rafaelfranca authored
101 * Deprecate `:disable_with` in favor of `'data-disable-with'` option for `button_to`, `button_tag` and `submit_tag` helpers.
102
103 *Carlos Galdino + Rafael Mendonça França*
104
105 * Deprecate `:mouseover` option for `image_tag` helper. *Rafael Mendonça França*
1aff772 Rafael Mendonça França Deprecate `:mouseover` options for `image_tag` helper.
rafaelfranca authored
106
342b54a Rafael Mendonça França Add CHANGELOG entry.
rafaelfranca authored
107 * Deprecate `button_to_function` and `link_to_function` helpers. *Rafael Mendonça França*
108
d3e5d1c Aaron Patterson updating changelogs
tenderlove authored
109 * Don't break Haml with textarea newline fix. GH #393, #4000, #5190, #5191
110
111 * Fix options handling on labels. GH #2492, #5614
112
113 * Added config.action_view.embed_authenticity_token_in_remote_forms to deal
114 with regression from 16ee611fa
115
116 * Set rendered_format when doing render :inline. GH #5632
117
118 * Fix the redirect when it receive blocks with arity of 1. Closes #5677
342b54a Rafael Mendonça França Add CHANGELOG entry.
rafaelfranca authored
119
44aca7b Aaron Patterson adding security notifications to CHANGELOGs
tenderlove authored
120 * Strip [nil] from parameters hash. Thanks to Ben Murphy for
121 reporting this! CVE-2012-2660
122
b13d89e Rafael Mendonça França Add release date of 3.2.5 on the CHANGELOG
rafaelfranca authored
123
342b54a Rafael Mendonça França Add CHANGELOG entry.
rafaelfranca authored
124 ## Rails 3.2.3 (March 30, 2012) ##
8674823 Santiago Pastorino Add CHANGELOG entry
spastorino authored
125
beba826 Piotr Sarnacki Lazy load `default_form_builder` if it's passed as a string
drogus authored
126 * Allow to lazy load `default_form_builder` by passing a `String` instead of a constant. *Piotr Sarnacki*
127
dd69076 Santiago Pastorino Add missing CHANGELOG entry
spastorino authored
128 * Fix #5632, render :inline set the proper rendered format. *Santiago Pastorino*
129
b395ca1 Santiago Pastorino Add missing CHANGELOG entry
spastorino authored
130 * Fix textarea rendering when using plugins like HAML. Such plugins encode the first newline character in the content. This issue was introduced in https://github.com/rails/rails/pull/5191 *James Coleman*
131
13fe190 Santiago Pastorino Remove the leading \n added by textarea on assert_select
spastorino authored
132 * Remove the leading \n added by textarea on assert_select. *Santiago Pastorino*
133
d646d9d Piotr Sarnacki Added config.action_view.embed_authenticity_token_in_remote_forms
drogus authored
134 * Add `config.action_view.embed_authenticity_token_in_remote_forms` (defaults to true) which allows to set if authenticity token will be included by default in remote forms. If you change it to false, you can still force authenticity token by passing `:authenticity_token => true` in form options *Piotr Sarnacki*
135
16ee611 David Heinemeier Hansson Do not include the authenticity token in forms where remote: true as aja...
dhh authored
136 * Do not include the authenticity token in forms where remote: true as ajax forms use the meta-tag value *DHH*
137
520571a Santiago Pastorino Turn off verbose mode of rack-cache, we still have X-Rack-Cache to check...
spastorino authored
138 * Turn off verbose mode of rack-cache, we still have X-Rack-Cache to
139 check that info. Closes #5245. *Santiago Pastorino*
140
8674823 Santiago Pastorino Add CHANGELOG entry
spastorino authored
141 * Fix #5238, rendered_format is not set when template is not rendered. *Piotr Sarnacki*
142
3bfd651 Vijay Dev changelog updates [ci skip]
vijaydev authored
143 * Upgrade rack-cache to 1.2. *José Valim*
144
145 * ActionController::SessionManagement is deprecated. *Santiago Pastorino*
146
db743ff Rafael Mendonça França Fix my name in the CHANGELOG to follow the convention
rafaelfranca authored
147 * Since the router holds references to many parts of the system like engines, controllers and the application itself, inspecting the route set can actually be really slow, therefore we default alias inspect to to_s. *José Valim*
3bfd651 Vijay Dev changelog updates [ci skip]
vijaydev authored
148
db743ff Rafael Mendonça França Fix my name in the CHANGELOG to follow the convention
rafaelfranca authored
149 * Add a new line after the textarea opening tag. Closes #393 *Rafael Mendonça França*
3bfd651 Vijay Dev changelog updates [ci skip]
vijaydev authored
150
151 * Always pass a respond block from to responder. We should let the responder to decide what to do with the given overridden response block, and not short circuit it. *sikachu*
152
153 * Fixes layout rendering regression from 3.2.2. *José Valim*
8674823 Santiago Pastorino Add CHANGELOG entry
spastorino authored
154
db743ff Rafael Mendonça França Fix my name in the CHANGELOG to follow the convention
rafaelfranca authored
155
156 ## Rails 3.2.2 (March 1, 2012) ##
2e5ec3b José Valim Merge check box fixes from remote-tracking branch 'cantonio/checkbox-hid...
josevalim authored
157
82d6ded Santiago Pastorino Fix CHANGELOG
spastorino authored
158 * Format lookup for partials is derived from the format in which the template is being rendered. Closes #5025 part 2 *Santiago Pastorino*
110b43c Santiago Pastorino Add CHANGELOG entry
spastorino authored
159
82d6ded Santiago Pastorino Fix CHANGELOG
spastorino authored
160 * Use the right format when a partial is missing. Closes #5025. *Santiago Pastorino*
b122968 Santiago Pastorino Add CHANGELOG entry
spastorino authored
161
567ac65 Prem Sichanugrist Fix override API response bug in respond_with
sikachu authored
162 * Default responder will now always use your overridden block in `respond_with` to render your response. *Prem Sichanugrist*
163
2e5ec3b José Valim Merge check box fixes from remote-tracking branch 'cantonio/checkbox-hid...
josevalim authored
164 * check_box helper with :disabled => true will generate a disabled hidden field to conform with the HTML convention where disabled fields are not submitted with the form.
165 This is a behavior change, previously the hidden tag had a value of the disabled checkbox.
166 *Tadas Tamosauskas*
167
8674823 Santiago Pastorino Add CHANGELOG entry
spastorino authored
168
97e8d1d Xavier Noria CHANGELOG revision for v3.2.1
fxn authored
169 ## Rails 3.2.1 (January 26, 2012) ##
170
171 * Documentation improvements.
172
173 * Allow `form.select` to accept ranges (regression). *Jeremy Walker*
174
175 * `datetime_select` works with -/+ infinity dates. *Joe Van Dyk*
176
177
f36dcaf David Heinemeier Hansson Preparing for 3.2.0 release
dhh authored
178 ## Rails 3.2.0 (January 20, 2012) ##
281272a Jon Leighton Convert CHANGELOGs to Markdown format.
jonleighton authored
179
ae7037e Guillermo Iguaran Update CHANGELOG and docs for config.assets.logger
guilleiguaran authored
180 * Setting config.assets.logger to false turn off Sprockets logger *Guillermo Iguaran*
181
ed0f0ad Carlos Antonio da Silva Update changelog
carlosantoniodasilva authored
182 * Add `config.action_dispatch.default_charset` to configure default charset for ActionDispatch::Response. *Carlos Antonio da Silva*
183
184 * Deprecate setting default charset at controller level, use the new `config.action_dispatch.default_charset` instead. *Carlos Antonio da Silva*
185
186 * Deprecate ActionController::UnknownAction in favour of AbstractController::ActionNotFound. *Carlos Antonio da Silva*
187
188 * Deprecate ActionController::DoubleRenderError in favour of AbstractController::DoubleRenderError. *Carlos Antonio da Silva*
189
190 * Deprecate method_missing handling for not found actions, use action_missing instead. *Carlos Antonio da Silva*
191
192 * Deprecate ActionController#rescue_action, ActionController#initialize_template_class, and ActionController#assign_shortcuts.
193 These methods were not being used internally anymore and are going to be removed in Rails 4. *Carlos Antonio da Silva*
194
c4c6beb Rafael Mendonça França Add option to configure Sprockets logger
rafaelfranca authored
195 * Add config.assets.logger to configure Sprockets logger *Rafael França*
196
c159b01 Santiago Pastorino Use a BodyProxy instead of including a Module that responds to close.
spastorino authored
197 * Use a BodyProxy instead of including a Module that responds to
198 close. Closes #4441 if Active Record is disabled assets are delivered
199 correctly *Santiago Pastorino*
200
6f48fb3 Santiago Pastorino Add CHANGELOG entry
spastorino authored
201 * Rails initialization with initialize_on_precompile = false should set assets_dir *Santiago Pastorino*
202
0d7d3a6 Santiago Pastorino Add font_path helper method
spastorino authored
203 * Add font_path helper method *Santiago Pastorino*
204
a0fd9fb Santiago Pastorino Add CHANGELOG entry
spastorino authored
205 * Depends on rack ~> 1.4.0 *Santiago Pastorino*
206
fc42998 José Valim Update CHANGELOGs.
josevalim authored
207 * Add :gzip option to `caches_page`. The default option can be configured globally using `page_cache_compression` *Andrey Sitnik*
208
6481bc5 José Valim Update CHANGELOGs and guides.
josevalim authored
209 * The ShowExceptions middleware now accepts a exceptions application that is responsible to render an exception when the application fails. The application is invoked with a copy of the exception in `env["action_dispatch.exception"]` and with the PATH_INFO rewritten to the status code. *José Valim*
210
3f65e7f Will Farrington Add button_tag support to ActionView::Helpers::FormBuilder.
wfarr authored
211 * Add `button_tag` support to ActionView::Helpers::FormBuilder.
212
213 This support mimics the default behavior of `submit_tag`.
214
215 Example:
216
217 <%= form_for @post do |f| %>
218 <%= f.button %>
219 <% end %>
220
ed0f0ad Carlos Antonio da Silva Update changelog
carlosantoniodasilva authored
221 * Date helpers accept a new option, `:use_two_digit_numbers = true`, that renders select boxes for months and days with a leading zero without changing the respective values.
dc43e40 Lennart Fridén Added :use_two_digit_numbers option [Lennart Fridén & Kim Persson]
DevL authored
222 For example, this is useful for displaying ISO8601-style dates such as '2011-08-01'. *Lennart Fridén and Kim Persson*
223
22a6079 David Heinemeier Hansson Make ActiveSupport::Benchmarkable a default module for ActionController:...
dhh authored
224 * Make ActiveSupport::Benchmarkable a default module for ActionController::Base, so the #benchmark method is once again available in the controller context like it used to be *DHH*
225
5ad5215 José Valim Deprecate implicit layout lookup in favor of inheriting the _layout conf...
josevalim authored
226 * Deprecated implied layout lookup in controllers whose parent had a explicit layout set:
227
228 class ApplicationController
229 layout "application"
230 end
231
232 class PostsController < ApplicationController
233 end
234
235 In the example above, Posts controller will no longer automatically look up for a posts layout.
236
237 If you need this functionality you could either remove `layout "application"` from ApplicationController or explicitly set it to nil in PostsController. *José Valim*
238
18ceed2 Prem Sichanugrist Allow layout fallback when using `layout` method
sikachu authored
239 * Rails will now use your default layout (such as "layouts/application") when you specify a layout with `:only` and `:except` condition, and those conditions fail. *Prem Sichanugrist*
240
241 For example, consider this snippet:
242
243 class CarsController
244 layout 'single_car', :only => :show
245 end
246
247 Rails will use 'layouts/single_car' when a request comes in `:show` action, and use 'layouts/application' (or 'layouts/cars', if exists) when a request comes in for any other actions.
248
e29773f Vasiliy Ermolovich form_for with +:as+ option uses "action_as" as css class and id
nashby authored
249 * form_for with +:as+ option uses "#{action}_#{as}" as css class and id:
250
251 Before:
252
253 form_for(@user, :as => 'client') # => "<form class="client_new">..."
254
255 Now:
256
257 form_for(@user, :as => 'client') # => "<form class="new_client">..."
258
259 *Vasiliy Ermolovich*
260
07f90f6 José Valim Merge branch 'exceptions' with the following features:
josevalim authored
261 * Allow rescue responses to be configured through a railtie as in `config.action_dispatch.rescue_responses`. Please look at ActiveRecord::Railtie for an example *José Valim*
262
218c272 David Heinemeier Hansson Allow fresh_when/stale? to take a record instead of an options hash [DHH...
dhh authored
263 * Allow fresh_when/stale? to take a record instead of an options hash *DHH*
264
1e51cd9 José Valim Update CHANGELOG.
josevalim authored
265 * Assets should use the request protocol by default or default to relative if no request is available *Jonathan del Strother*
266
267 * Log "Filter chain halted as CALLBACKNAME rendered or redirected" every time a before callback halts *José Valim*
38ab982 José Valim Log 'Filter chain halted as CALLBACKNAME rendered or redirected' every t...
josevalim authored
268
2559256 Vasiliy Ermolovich update CHANGELOG
nashby authored
269 * You can provide a namespace for your form to ensure uniqueness of id attributes on form elements.
270 The namespace attribute will be prefixed with underscore on the generate HTML id. *Vasiliy Ermolovich*
271
272 Example:
273
274 <%= form_for(@offer, :namespace => 'namespace') do |f| %>
275 <%= f.label :version, 'Version' %>:
276 <%= f.text_field :version %>
277 <% end %>
278
654df86 José Valim Show detailed exceptions no longer returns true if the request is local ...
josevalim authored
279 * Refactor ActionDispatch::ShowExceptions. The controller is responsible for choosing to show exceptions when `consider_all_requests_local` is false.
3a1d519 Sergey Nartimov deprecation warning, changelog entry
lest authored
280
654df86 José Valim Show detailed exceptions no longer returns true if the request is local ...
josevalim authored
281 It's possible to override `show_detailed_exceptions?` in controllers to specify which requests should provide debugging information on errors. The default value is now false, meaning local requests in production will no longer show the detailed exceptions page unless `show_detailed_exceptions?` is overridden and set to `request.local?`.
3a1d519 Sergey Nartimov deprecation warning, changelog entry
lest authored
282
281272a Jon Leighton Convert CHANGELOGs to Markdown format.
jonleighton authored
283 * Responders now return 204 No Content for API requests without a response body (as in the new scaffold) *José Valim*
284
285 * Added ActionDispatch::RequestId middleware that'll make a unique X-Request-Id header available to the response and enables the ActionDispatch::Request#uuid method. This makes it easy to trace requests from end-to-end in the stack and to identify individual requests in mixed logs like Syslog *DHH*
286
287 * Limit the number of options for select_year to 1000.
288
289 Pass the :max_years_allowed option to set your own limit.
290
291 *Libo Cannici*
292
293 * Passing formats or handlers to render :template and friends is deprecated. For example: *Nick Sutterer & José Valim*
294
295 render :template => "foo.html.erb"
296
297 Instead, you can provide :handlers and :formats directly as option:
298 render :template => "foo", :formats => [:html, :js], :handlers => :erb
299
300 * Changed log level of warning for missing CSRF token from :debug to :warn. *Mike Dillon*
301
302 * content_tag_for and div_for can now take the collection of records. It will also yield the record as the first argument if you set a receiving argument in your block *Prem Sichanugrist*
303
304 So instead of having to do this:
305
306 @items.each do |item|
307 content_tag_for(:li, item) do
308 Title: <%= item.title %>
309 end
310 end
311
312 You can now do this:
313
314 content_tag_for(:li, @items) do |item|
315 Title: <%= item.title %>
316 end
317
318 * send_file now guess the mime type *Esad Hajdarevic*
319
320 * Mime type entries for PDF, ZIP and other formats were added *Esad Hajdarevic*
321
322 * Generate hidden input before select with :multiple option set to true.
323 This is useful when you rely on the fact that when no options is set,
324 the state of select will be sent to rails application. Without hidden field
325 nothing is sent according to HTML spec *Bogdan Gusiev*
326
327 * Refactor ActionController::TestCase cookies *Andrew White*
328
329 Assigning cookies for test cases should now use cookies[], e.g:
330
331 cookies[:email] = 'user@example.com'
332 get :index
333 assert_equal 'user@example.com', cookies[:email]
334
335 To clear the cookies, use clear, e.g:
336
337 cookies.clear
338 get :index
339 assert_nil cookies[:email]
340
341 We now no longer write out HTTP_COOKIE and the cookie jar is
342 persistent between requests so if you need to manipulate the environment
343 for your test you need to do it before the cookie jar is created.
344
677f968 Add information to the changelog about the changes to ActionController::...
Jean-Francois Turcot authored
345 * ActionController::ParamsWrapper on ActiveRecord models now only wrap
346 attr_accessible attributes if they were set, if not, only the attributes
347 returned by the class method attribute_names will be wrapped. This fixes
348 the wrapping of nested attributes by adding them to attr_accessible.
349
8efced6 Xavier Noria CHANGELOGs are now per branch
fxn authored
350 Please check [3-1-stable](https://github.com/rails/rails/blob/3-1-stable/actionpack/CHANGELOG.md) for previous changes.
Something went wrong with that request. Please try again.