提交 · 41de23ec030f79f00aff3bf00640e855de42a9b8 · 张重言 / rails

03 7月, 2014 1 次提交
- J
  Fix escape_once double-escaping hex-encoded entities · 41de23ec
  由 John F. Douthat 提交于 1月 28, 2013
```
(This is a manual merge of #9102)
```
  41de23ec
13 6月, 2014 1 次提交
- P
  In tag helper, honor html_safe on array parameters; also make safe_join more... · bcab3f20
  由 Paul Grayson 提交于 6月 10, 2014
```
In tag helper, honor html_safe on array parameters; also make safe_join more similar to Array.join by first calling flatten.
```
  bcab3f20
30 10月, 2013 1 次提交
- C
  Convert CDATA input to string before gsub'ing · 805a6cc5
  由 Carsten Zimmermann 提交于 10月 29, 2013
```
Rails 3.2 API allowed arbitrary input for cdata_section;
this change re-introduces the old behaviour.
```
  805a6cc5
20 6月, 2013 1 次提交
- P
  
  Move template tests from actionpack to actionview · eb23754e
  由 Piotr Sarnacki 提交于 4月 17, 2013
  
  eb23754e
15 6月, 2013 1 次提交

Update the HTML boolean attributes per the HTML 5.1 spec · a89bdc04

由 Alex Peattie 提交于 6月 14, 2013

- Add attributes `allowfullscreen`, `default`, `inert`, `sortable`,
`truespeed`, `typemustmatch`.
- Fix attribute `seamless` (previously misspelled `seemless`).
- Use `assert_dom_equal` instead of `assert_equal` in test.

a89bdc04

01 11月, 2012 1 次提交
- C
  Add test to ensure data attributes are properly escaped with tag helpers · b31ea0c2
  由 Carlos Antonio da Silva 提交于 11月 01, 2012
```
Closes #8091
```
  b31ea0c2
18 5月, 2012 1 次提交
- B
  
  Fixed tag_helper data-attribute bug with BigDecimals · 56aabfd5
  由 Bodacious 提交于 5月 17, 2012
  
  56aabfd5
30 4月, 2012 1 次提交
- S
  
  split CDATA end token in cdata_section helper · 16df67b1
  由 Sergey Nartimov 提交于 4月 30, 2012
  
  16df67b1
09 4月, 2012 1 次提交

Adding itemscope to list of boolean attributes. · 283133a5

由 Frankie Roberto 提交于 4月 09, 2012

'itemscope' is defined within HTML5 for use in microdata markup. See
http://www.whatwg.org/specs/web-apps/current-work/multipage/microdata.ht
ml#attr-itemscope

283133a5

30 11月, 2011 1 次提交
- L
  
  test helpers in erb using erb · e975fe71
  由 lest 提交于 11月 30, 2011
  
  e975fe71
18 10月, 2010 1 次提交
- S
  
  HTML5 data attribute helpers [#5825 state:resolved]. · 5e79094f
  由 Stephen Celis 提交于 10月 17, 2010
  
  5e79094f
29 9月, 2010 1 次提交
- E
  
  Add parenthesis to avoid syntax warnings. · 9027721b
  由 Emilio Tagua 提交于 9月 28, 2010
  
  9027721b
27 9月, 2010 1 次提交
- E
  
  Use parentheses when using assert_match followed by a regexp to avoid warnings. · 2d274a52
  由 Emilio Tagua 提交于 9月 22, 2010
  
  2d274a52
14 8月, 2010 2 次提交
- S
  
  Deletes trailing whitespaces (over text files only find * -type f -exec sed 's/[ \t]*$//' -i {} \;) · b95d6e84
  由 Santiago Pastorino 提交于 8月 14, 2010
  
  b95d6e84
- S
  
  Deletes trailing whitespaces (over text files only find * -type f -exec sed 's/[ \t]*$//' -i {} \;) · b451de0d
  由 Santiago Pastorino 提交于 8月 14, 2010
  
  b451de0d
30 6月, 2010 1 次提交
- X
  s/escape_once/html_escape/, since html safety is the contract that now says... · ec3bfa2e
  由 Xavier Noria 提交于 6月 30, 2010
```
s/escape_once/html_escape/, since html safety is the contract that now says whether something has to be escaped
```
  ec3bfa2e
08 6月, 2010 1 次提交
- S
  
  content_tag_string shouldn't escape_html if escape param is false · 399b493c
  由 Santiago Pastorino 提交于 6月 06, 2010
  
  399b493c
10 3月, 2010 1 次提交
- C
  
  Deprecate block_called_from_erb? pending a solution for getting it into apps · 4464b8e8
  由 Carlhuda 提交于 3月 09, 2010
  
  4464b8e8
15 2月, 2010 1 次提交
- B
  content_tag should escape its input · f86421fb
  由 Bruno Michel 提交于 2月 13, 2010
```
Signed-off-by: NYehuda Katz <yehudakatz@YK.local>
```
  f86421fb
08 10月, 2009 1 次提交

Switch to on-by-default XSS escaping for rails. · 94159359

由 Michael Koziarski 提交于 10月 08, 2009

  This consists of:

  * String#html_safe! a method to mark a string as 'safe'
  * ActionView::SafeBuffer a string subclass which escapes anything unsafe which is concatenated to it
  * Calls to String#html_safe! throughout the rails helpers
  * a 'raw' helper which lets you concatenate trusted HTML from non-safety-aware sources (e.g. presantized strings in the DB)
  * New ERB implementation based on erubis which uses a SafeBuffer instead of a String

Hat tip to Django for the inspiration.

94159359

09 8月, 2009 1 次提交

Allow content_tag options to take an array [#1741 state:resolved] [rizwanreza, Nick Quaranto] · 57863957

由 rizwanreza 提交于 8月 08, 2009

Example:
  content_tag('p', "limelight", :class => ["song", "play"])
  # => <p class="song play">limelight</p>
Signed-off-by: NPratik Naik <pratiknaik@gmail.com>

57863957

14 11月, 2008 1 次提交

Tag helper should output an attribute with the value 'false' instead of... · 4e9abdd7

由 Hongli Lai (Phusion) 提交于 11月 13, 2008

Tag helper should output an attribute with the value 'false' instead of omitting the attribute, if the associated option is false but not nil.

4e9abdd7

20 6月, 2008 1 次提交
- J
  Check whether blocks are called from erb using a special __in_erb_template... · 72f93b58
  由 Jeremy Kemper 提交于 6月 19, 2008
```
Check whether blocks are called from erb using a special __in_erb_template variable visible in block binding.
```
  72f93b58
09 6月, 2008 2 次提交
- J
  
  with_output_buffer returns the temporary buffer instead of the result of the block · c88f2b5e
  由 Jeremy Kemper 提交于 6月 08, 2008
  
  c88f2b5e
- J
  Use output_buffer reader and writer methods exclusively instead of hitting the... · ff5f155f
  由 Jeremy Kemper 提交于 6月 08, 2008
```
Use output_buffer reader and writer methods exclusively instead of hitting the instance variable so others can override the methods.
```
  ff5f155f
03 6月, 2008 1 次提交
- J
  
  Work with @output_buffer instead of _erbout · 0bdb7d35
  由 Jeremy Kemper 提交于 6月 02, 2008
  
  0bdb7d35
20 4月, 2008 1 次提交
- J
  
  Introduce ActionView::TestCase for testing view helpers. · 17d4164a
  由 Joshua Peek 提交于 4月 19, 2008
  
  17d4164a
05 1月, 2008 1 次提交
- J
  require abstract_unit directly since test is in load path · 9d755f19
  由 Jeremy Kemper 提交于 1月 05, 2008
```
git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@8564 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
```
  9d755f19
24 9月, 2007 1 次提交

The tag helper may bypass escaping. · 4b33306c

由 Jeremy Kemper 提交于 9月 24, 2007

git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@7608 5ecf4fe2-1ee6-0310-87b1-e25e094e27de

4b33306c

18 9月, 2007 1 次提交

tag_options creates fewer objects · 8fd263cd

由 Jeremy Kemper 提交于 9月 18, 2007

git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@7512 5ecf4fe2-1ee6-0310-87b1-e25e094e27de

8fd263cd

03 5月, 2007 1 次提交

Fixed that content_tag with a block will just return the result instead of... · edaf6bae

由 David Heinemeier Hansson 提交于 5月 02, 2007

Fixed that content_tag with a block will just return the result instead of concate it if not used in a ERb view #7857, #7432 [michael.niessner]

git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@6652 5ecf4fe2-1ee6-0310-87b1-e25e094e27de

edaf6bae

28 1月, 2007 1 次提交
- J
  Use a consistent load path to avoid double requires. Fix some scattered Ruby warnings. · 0eacdcf9
  由 Jeremy Kemper 提交于 1月 28, 2007
```
git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@6057 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
```
  0eacdcf9
06 1月, 2007 1 次提交

Clean up multiple calls to #stringify_keys in TagHelper, add better... · 730c8e83

由 Rick Olson 提交于 1月 05, 2007

Clean up multiple calls to #stringify_keys in TagHelper, add better documentation and testing for TagHelper.  Closes #6394 [Bob Silva]

git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@5857 5ecf4fe2-1ee6-0310-87b1-e25e094e27de

730c8e83

24 10月, 2006 1 次提交
- D
  Added block-usage to TagHelper#content_tag [DHH] · 6c062054
  由 David Heinemeier Hansson 提交于 10月 23, 2006
```
git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@5344 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
```
  6c062054
19 10月, 2006 1 次提交

Add <%= escape_once html %> to escape html while leaving any currently escaped... · dbd0bd5e

由 Rick Olson 提交于 10月 18, 2006

Add <%= escape_once html %> to escape html while leaving any currently escaped entities alone.  Fix button_to double-escaping issue. [Rick]

git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@5322 5ecf4fe2-1ee6-0310-87b1-e25e094e27de

dbd0bd5e

18 10月, 2006 1 次提交
- R
  Fix double-escaped entities, such as &amp;, &#123;, etc. [Rick] · 02358c83
  由 Rick Olson 提交于 10月 18, 2006
```
git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@5321 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
```
  02358c83
06 8月, 2006 1 次提交
- D
  Make test_tag_options pass (closes #5600) [shugo] · 4699c336
  由 David Heinemeier Hansson 提交于 8月 05, 2006
```
git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@4675 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
```
  4699c336
13 10月, 2005 1 次提交

Wrap javascript_tag contents in a CDATA section and add a cdata_section method... · f49dc37e

由 Sam Stephenson 提交于 10月 12, 2005

Wrap javascript_tag contents in a CDATA section and add a cdata_section method to TagHelper. Closes #1691.

git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@2543 5ecf4fe2-1ee6-0310-87b1-e25e094e27de

f49dc37e

11 10月, 2005 1 次提交
- M
  Convert boolean form options form the tag_helper. Recloses #809. · 064842f5
  由 Marcel Molina 提交于 10月 10, 2005
```
git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@2523 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
```
  064842f5
10 7月, 2005 1 次提交

Added that nil options are not included in tags, so tag("p", :ignore => nil)... · 2abe3d2c

由 David Heinemeier Hansson 提交于 7月 09, 2005

Added that nil options are not included in tags, so tag("p", :ignore => nil) now returns <p /> not <p ignore="" />  but that tag("p", :ignore => "") still includes it #1465 [michael@schuerig.de]

git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@1789 5ecf4fe2-1ee6-0310-87b1-e25e094e27de

2abe3d2c