…r path_to_image in rdoc
…s in Rails
…arch, url, number, etc) (Closes #3646) [Stephen Celis]
… passed to select tag. Be sure to join the tag yourself and mark them .html_safe
[#3856 state:committed] Signed-off-by: Jeremy Kemper <firstname.lastname@example.org>
… consistency [#1792 status:resolved] Signed-off-by: José Valim <email@example.com>
…. Instead, all Strings are always not html_safe?. Instead, you can get a SafeBuffer from a String by calling #html_safe, which will SafeBuffer.new(self). * Additionally, instead of doing concat("</form>".html_safe), you can do safe_concat("</form>"), which will skip both the flag set, and the flag check. * For the first pass, I converted virtually all #html_safe!s to #html_safe, and the tests pass. A further optimization would be to try to use #safe_concat as much as possible, reducing the performance impact if we know up front that a String is safe.
…ptions such as :confirm in a unobtrusive manor Signed-off-by: Joshua Peek <firstname.lastname@example.org>
…e_submit_tag output data attributes for things like :confirm, :method, :popup, and :disable_with
This consists of: * String#html_safe! a method to mark a string as 'safe' * ActionView::SafeBuffer a string subclass which escapes anything unsafe which is concatenated to it * Calls to String#html_safe! throughout the rails helpers * a 'raw' helper which lets you concatenate trusted HTML from non-safety-aware sources (e.g. presantized strings in the DB) * New ERB implementation based on erubis which uses a SafeBuffer instead of a String Hat tip to Django for the inspiration.
… holds the form authenticity token is set to display:inline [#2846 state:resolved] Signed-off-by: Yehuda Katz + Carl Lerche <email@example.com>
…tag('item[description]') should return: <textarea id="item_description" name="item[description]"></textarea> instead of: <textarea id="item[description]" name="item[description]"></textarea> The old id was causing HTML validation failures. Signed-off-by: Michael Koziarski <firstname.lastname@example.org>
TODO: Come up with the minimal core and remove all of these
Signed-off-by: Michael Koziarski <email@example.com>
… square brackets [#1238 state:committed] Signed-off-by: David Heinemeier Hansson <firstname.lastname@example.org>