Skip to content

HTTPS clone URL

Subversion checkout URL

You can clone with HTTPS or Subversion.

Download ZIP
Commits on Nov 26, 2009
  1. Gabe da Silveira Michael Koziarski

    Make sure strip_tags removes tags which start with a non-printable ch…

    gtd authored NZKoz committed
    …aracter
    
    Signed-off-by: Michael Koziarski <michael@koziarski.com>
  2. Eric Chapweske Michael Koziarski

    Decode http_authentication creditentials without generating abitrary …

    eac authored NZKoz committed
    …symbols.
Commits on Nov 25, 2009
  1. Michael Koziarski

    Prepare for the 2.3.5 release

    NZKoz authored
Commits on Nov 23, 2009
  1. Joshua Peek

    Revert "Prefix Internet Explorer's accepted mime types with sensible …

    josh authored
    …defaults."
    
    IE XHR requests are misinterpreted as HTML instead of JS.
    
    This reverts commit c680f23.
Commits on Nov 18, 2009
  1. Jeremy Kemper
Commits on Nov 15, 2009
  1. Will Read Eloy Durán

    Allow explicit placement of hidden id element for nested models.

    TildeWill authored alloy committed
    [#3259 state:resolved]
    
    Signed-off-by: Eloy Duran <eloy.de.enige@gmail.com>
Commits on Nov 13, 2009
  1. Jeremy Kemper
  2. Jeremy Kemper
Commits on Nov 12, 2009
  1. David Vrensk Jeremy Kemper

    Rdoc for changes introduced in 6339e5d, 542d6a0.

    dvrensk authored jeremy committed
    Signed-off-by: Jeremy Kemper <jeremy@bitsweat.net>
Commits on Nov 9, 2009
  1. Bryan Helmkamp
  2. Bryan Helmkamp
  3. Bryan Helmkamp
  4. Bryan Helmkamp
  5. Bryan Helmkamp
  6. Bryan Helmkamp
  7. Jeremy Kemper
  8. Bryan Helmkamp
  9. Bryan Helmkamp
  10. Bryan Helmkamp
  11. Jeremy Kemper
  12. Bryan Helmkamp
  13. Bryan Helmkamp
Commits on Nov 6, 2009
  1. Chris Hapgood Eloy Durán

    Share ActionView::TestCase's output_buffer with view for concat support.

    cch1 authored alloy committed
    [#3467 state:resolved]
    
    Signed-off-by: Eloy Duran <eloy.de.enige@gmail.com>
Commits on Oct 28, 2009
  1. José Valim Joshua Peek

    Make polymorphic_url work with symbols again and refactor it [#1384 s…

    josevalim authored josh committed
    …tatus:resolved]
    
    Signed-off-by: Joshua Peek <josh@joshpeek.com>
Commits on Oct 21, 2009
  1. Yehuda Katz

    Fixed HTTP digest to properly return 401 when the Authorization heade…

    wycats authored
    …r has no nonce specified, or the Authorization header specifies Basic auth [#2968 state:resolved]
Commits on Oct 17, 2009
  1. Travis Briggs Michael Koziarski

    Ensure number_to_human_size does not strip zeros from the end [#1763

    audiodude authored NZKoz committed
    …state:resolved]
    
    Signed-off-by: Pratik Naik <pratiknaik@gmail.com>
Commits on Oct 15, 2009
  1. Michael Koziarski
Commits on Oct 14, 2009
  1. George Ogata Michael Koziarski

    Make IntegrationTest::Runner propagate method_missing to ancestors.

    oggy authored NZKoz committed
    Fixes RSpec integration example groups, which mixes its Matchers
    module into ActiveSupport::TestCase.
    
    Signed-off-by: Michael Koziarski <michael@koziarski.com>
  2. Jeffrey Hardy Jeremy Kemper

    CookieJar#delete should return the key's value, consistent with a Hash

    packagethief authored jeremy committed
    Signed-off-by: Jeremy Kemper <jeremy@bitsweat.net>
Commits on Oct 8, 2009
  1. Michael Koziarski
  2. Michael Koziarski

    Merge the prerequisites for on-by-default XSS escaping into rails.

    NZKoz authored
    This consists of:
    
    * String#html_safe! a method to mark a string as 'safe'
    * ActionView::SafeBuffer a string subclass which escapes anything unsafe which is concatenated to it
    * Calls to String#html_safe! throughout the rails helpers
    * a 'raw' helper which lets you concatenate trusted HTML from non-safety-aware sources (e.g. presantized strings in the DB)
    
    Note, this does *not* give you on-by-default XSS escaping in 2.3 applications.  To get that you'll need to install a plugin:
    
    http://github.com/nzkoz/rails_xss
Commits on Oct 7, 2009
  1. Michael Koziarski

    Explicitly require ActionController's CGI extensions so they're prope…

    pivotal authored NZKoz committed
    …rly loaded before the first request.
    
    Signed-off-by: Michael Koziarski <michael@koziarski.com>
Commits on Oct 6, 2009
  1. Pratik
Commits on Oct 5, 2009
  1. Joshua Peek
Commits on Sep 28, 2009
  1. John Trupiano Michael Koziarski

    Introduce :almost keyword for distance_of_time_in_words. Make 1.75 da…

    jtrupiano authored NZKoz committed
    …ys - 2 days return '2 days'.
    
    Signed-off-by: Michael Koziarski <michael@koziarski.com>
    [#3266 state:committed]
Something went wrong with that request. Please try again.