提交 · 1814298d7590988d354955efdb0bc495b359293b · 张重言 / rails

10 2月, 2011 26 次提交
- J
  Removed Array#safe_join in AS core_ext and moved it to a view helper with the... · 1814298d
  由 Josh Kalderimis 提交于 2月 10, 2011
```
Removed Array#safe_join in AS core_ext and moved it to a view helper with the same same. This also changes how safe_join works, if items or the separator are not html_safe they are html_escape'd, a html_safe string is always returned.
Signed-off-by: NJosé Valim <jose.valim@gmail.com>
```
  1814298d
- J
  Revert "Removed Array#safe_join in AS core_ext and moved it to a view helper with the same same." · 89a5f146
  由 José Valim 提交于 2月 10, 2011
```
Applied the wrong version.

This reverts commit 98c0c5db.
```
  89a5f146
- J
  
  Removed Array#safe_join in AS core_ext and moved it to a view helper with the same same. · 98c0c5db
  由 Josh Kalderimis 提交于 2月 10, 2011
  
  98c0c5db
- J
  Corrected the html_safe implementation for Array. Moved the html safe version... · 1a73407b
  由 Josh Kalderimis 提交于 2月 10, 2011
```
Corrected the html_safe implementation for Array. Moved the html safe version of join to its own method (safe_join) as not to degrade the performance of join for unrelated html_safe use. [#6298 state:resolved]
```
  1a73407b
- P
  
  Initial html_safe implemention for Array · f7221f5c
  由 Paul Hieromnimon 提交于 2月 10, 2011
  
  f7221f5c
- A
  
  log method takes an option list of bind values · c560c8b2
  由 Aaron Patterson 提交于 2月 09, 2011
  
  c560c8b2
- A
  
  fanout unsubscribe only accepted one argument, so taking *args here is probably bad · 37efb517
  由 Aaron Patterson 提交于 2月 09, 2011
  
  37efb517
- A
  
  just use an attr_accessor so we do not pay ||= on every notification call · 3e02b370
  由 Aaron Patterson 提交于 2月 09, 2011
  
  3e02b370
- A
  
  fixing indentation · e50d43a2
  由 Aaron Patterson 提交于 2月 09, 2011
  
  e50d43a2
- A
  
  speed up notification publishing by writing the delegate method · 3d0579fc
  由 Aaron Patterson 提交于 2月 09, 2011
  
  3d0579fc
- A
  
  rawr, mysql, mysql2, why do you hate me. :'( · 5548e47a
  由 Aaron Patterson 提交于 2月 09, 2011
  
  5548e47a
- J
  Fixed a bug where ActiveResource::HttpMock would not replace an existing... · 056be152
  由 Josh Bassett 提交于 1月 18, 2011
```
Fixed a bug where ActiveResource::HttpMock would not replace an existing response when passing a block to the respond_to method.
Signed-off-by: NSantiago Pastorino <santiago@wyeworks.com>
```
  056be152
- T
  Override attributes_protected_by_default when has_secure_password is called. · ad31549a
  由 Tsutomu Kuroda 提交于 1月 26, 2011
```
attr_protected should not be called, because it nullifies the
mass assignment protection that has been set by attr_accessible.
Signed-off-by: NSantiago Pastorino <santiago@wyeworks.com>
```
  ad31549a
- J
  removed some duplication from LH issue 5505 regarding AR touch and optimistic... · 9d8fdfec
  由 Josh Kalderimis 提交于 2月 09, 2011
```
removed some duplication from LH issue 5505 regarding AR touch and optimistic locking [#5505 state:resolved]
Signed-off-by: NSantiago Pastorino and José Ignacio Costa <santiago+jose@wyeworks.com>
```
  9d8fdfec
- F
  The optimistic lock column should be increased when calling touch · 8bc464c8
  由 Franck Verrot 提交于 11月 27, 2010
```
Signed-off-by: NSantiago Pastorino and José Ignacio Costa <santiago+jose@wyeworks.com>
```
  8bc464c8
- A
  
  use parenthesis so limit works on all dbs · d3b25968
  由 Aaron Patterson 提交于 2月 09, 2011
  
  d3b25968
- X
  now that the API guidelines are a guide, it is enough to assert that the names... · cb1f8413
  由 Xavier Noria 提交于 2月 09, 2011
```
now that the API guidelines are a guide, it is enough to assert that the names of Rails components have a space, no need to say it was checked with David in the past
```
  cb1f8413
- A
  
  removing text-format in favor of a more simple solution · 4083e0ea
  由 Aaron Patterson 提交于 2月 09, 2011
  
  4083e0ea
- R
  bugfix for serialized_attributes to be class specific · c567ccbb
  由 Raimonds Simanovskis 提交于 2月 09, 2011
```
previously serialized_attributes were kept as class attribute of ActiveRecord::Base - if some attribute was defined as serialized in one subclass then it was serialized in all other subclasses as well (if it had the same name)
```
  c567ccbb
- A
  
  implementing include? on AM::Errors · f48d32c0
  由 Aaron Patterson 提交于 2月 09, 2011
  
  f48d32c0
- P
  
  text-format requires text-hyphen, which needs ruby 1.8 · 39310f79
  由 Piotr Sarnacki 提交于 2月 09, 2011
  
  39310f79
- A
  
  we do not need message to be an array · 51d84c1d
  由 Aaron Patterson 提交于 2月 09, 2011
  
  51d84c1d
- K
  
  Allow limit values to accept an ARel SQL literal. · 56fb3b15
  由 Ken Collins 提交于 2月 09, 2011
  
  56fb3b15
- A
  
  use map rather than array concatenation · c6b4ef08
  由 Aaron Patterson 提交于 2月 09, 2011
  
  c6b4ef08
- A
  
  favor composition over inheritence · 307e6b2b
  由 Aaron Patterson 提交于 2月 08, 2011
  
  307e6b2b
- A
  
  use 1 call to concat rather than calling << n times · ed6e09c1
  由 Aaron Patterson 提交于 2月 08, 2011
  
  ed6e09c1
09 2月, 2011 14 次提交
- P
  Application's assets should have higher priority than engine's ones · e6369bc9
  由 Piotr Sarnacki 提交于 2月 09, 2011
```
[#6388 state:resolved]
```
  e6369bc9
- E
  
  Failing test for #6388 · d729e5f9
  由 Eric Allam 提交于 2月 08, 2011
  
  d729e5f9
- S
  
  Add missing require · 0faa7ee2
  由 Santiago Pastorino and Emilio Tagua 提交于 2月 09, 2011
  
  0faa7ee2
- J
  fix for AS Gzip returning a UTF-8 string in Ruby 1.9 when it is actually... · 3eb25fb8
  由 Josh Kalderimis 提交于 2月 09, 2011
```
fix for AS Gzip returning a UTF-8 string in Ruby 1.9 when it is actually binary [#6386 state:resolved]
Signed-off-by: NJosé Valim <jose.valim@gmail.com>
```
  3eb25fb8
- A
  
  comma limits do not make sense on oracle or pg · 5046120b
  由 Aaron Patterson 提交于 2月 08, 2011
  
  5046120b
- A
  
  reduce string append funcalls · c9182597
  由 Aaron Patterson 提交于 2月 08, 2011
  
  c9182597
- A
  
  redcloth does not install on 1.9.3 · b45a90f9
  由 Aaron Patterson 提交于 2月 08, 2011
  
  b45a90f9
- A
  
  primary keys should not be cleared on cache clear, fixing oracle tests · 1c6f4562
  由 Aaron Patterson 提交于 2月 08, 2011
  
  1c6f4562
- M
  
  Make rails.js include the CSRF token in the X-CSRF-Token header with every ajax request. · 11061f41
  由 Michael Koziarski 提交于 1月 13, 2011
  
  11061f41
- M
  Change the CSRF whitelisting to only apply to get requests · ae19e414
  由 Michael Koziarski 提交于 1月 05, 2011
```
Unfortunately the previous method of browser detection and XHR whitelisting is unable to prevent requests issued from some Flash animations and Java applets.  To ease the work required to include the CSRF token in ajax requests rails now supports providing the token in a custom http header:

 X-CSRF-Token: ...

This fixes CVE-2011-0447
```
  ae19e414
- A
  limit() should sanitize limit values · 0b58a7ff
  由 Aaron Patterson 提交于 12月 07, 2010
```
This fixes CVE-2011-0448
```
  0b58a7ff
- J
  
  Use Mime::Type references. · 6b101852
  由 José Valim 提交于 11月 28, 2010
  
  6b101852
- J
  Ensure render is case sensitive even on systems with case-insensitive filesystems. · b93c5902
  由 José Valim 提交于 11月 28, 2010
```
This fixes CVE-2011-0449
```
  b93c5902
- M
  Be sure to javascript_escape the email address to prevent apostrophes... · 3ddd7f7e
  由 Michael Koziarski 提交于 12月 07, 2010
```
Be sure to javascript_escape the email address to prevent apostrophes inadvertently causing javascript errors.

This fixes CVE-2011-0446
```
  3ddd7f7e