- 28 2月, 2018 2 次提交
-
-
由 Bogdan 提交于
Expand AR::Base.abstract_class documentation [ci skip]
-
由 Rafael França 提交于
Add ActiveModel::Attributes#attributes
-
- 27 2月, 2018 6 次提交
-
-
由 Rafael França 提交于
Raise an error if advisory lock in migrator was not released.
-
由 George Claghorn 提交于
Prevent older versions of Chrome from appending a Content-Type header containing the Blob type, rendering the request invalid if we intend not to provide a Content-Type. This behavior was observed in Chrome 58.
-
由 George Claghorn 提交于
-
由 Sean Griffin 提交于
See 948b9319 for context
-
由 Sean Griffin 提交于
Currently the place where we limit what gets sent to the database is in the implementation for `partial_writes`. We should also be restricting it to column names when partial writes are turned off. Note that we're using `&` instead of just defaulting to `self.class.column_names`, as the instance version of `attribute_names` does not include attributes which are uninitialized (were not included in the select clause)
-
由 George Claghorn 提交于
Fix customizing the download Content-Type for a directly-uploaded blob via a signed URL. See e8286ee2.
-
- 26 2月, 2018 2 次提交
-
-
由 Ryuta Kamizono 提交于
Move up activestorage' changelog added by 5292cdf5 [ci skip]
-
由 bogdanvlviv 提交于
It wasn't fixed in Rails 5.2.0.rc1 since it was backported after this release.
-
- 25 2月, 2018 4 次提交
-
-
由 George Claghorn 提交于
Use lazy load hook to configure ActiveStorage::Blob
-
由 Grant Bourque 提交于
- Update the default HSTS max-age value to 31536000 seconds (1 year) to meet the minimum max-age requirement for https://hstspreload.org/.
-
由 Kasper Timm Hansen 提交于
-
由 George Claghorn 提交于
Closes #32096.
-
- 24 2月, 2018 4 次提交
-
-
由 yuuji.yaginuma 提交于
`content_security_policy_nonce_generator` specifies request as an argument when calling. https://github.com/rails/rails/blob/ddb7da8535b07f51b7a8f5e3062cc8ffbd4ff23b/actionpack/lib/action_dispatch/http/content_security_policy.rb#L100 So without this fix, will raise `ArgumentError` when start server.
-
由 Rafael França 提交于
Improve generated file `app/assets/javascripts/application.js` of plugin
-
由 Yuji Yaginuma 提交于
Correct method documentation
-
由 Gabriel Sobrinho 提交于
Fixes #31909. Closes #31911.
-
- 23 2月, 2018 1 次提交
-
-
由 Rafael França 提交于
Fix plugin generated files
-
- 22 2月, 2018 3 次提交
-
-
由 Andrew White 提交于
Add support for automatic nonce generation for Rails UJS
-
由 Andrew White 提交于
-
由 Yuji Yaginuma 提交于
Since #30241, if namepsace is specified, routes will be generated even if there is no actions. However, it seems that this behavior is not intentionally added behavior. As with 5.1, routes should not be generated if actions are not specified. Fixes #32072.
-
- 21 2月, 2018 5 次提交
-
-
由 Andrew White 提交于
Although not a direct dependency, it's pulled in by Resque for Active Job integration tests so we need to update because the rack-protection gem has a security vulnerability[1]. [1]: https://nvd.nist.gov/vuln/detail/CVE-2018-7212
-
由 Andrew White 提交于
-
由 Andrew White 提交于
Only us-east-1 gives URLs like bucket.s3.amazonaws.com whereas other regions have URLs like s3-eu-west-1.amazonaws.com/ubxd-rails
-
由 George Claghorn 提交于
-
由 George Claghorn 提交于
-
- 19 2月, 2018 8 次提交
-
-
由 Andrew White 提交于
Fix generation of empty content security policy (cherry picked from commit dc6185b4)
-
由 Andrew White 提交于
Some timezones like `Europe/London` have multiple mappings in `ActiveSupport::TimeZone::MAPPING` so return all of them instead of the first one found by using `Hash#value`. e.g: # Before ActiveSupport::TimeZone.country_zones("GB") # => ["Edinburgh"] # After ActiveSupport::TimeZone.country_zones("GB") # => ["Edinburgh", "London"] Fixes #31668. (cherry picked from commit 2d95956e)
-
由 yuuji.yaginuma 提交于
When upgrading from 5.1 to 5.2, if the application did not require `rails/all`, `ActiveStorage` not be defined. In that case, Acttive Storage content is not generated regardless of whether the user wants to use or not. As for the new component, I think it is preferable to check whether to use it for the user, but since it is not yet able to deal with it, I think that it is good to forcibly generate the content.
-
由 Kohei Suzuki 提交于
`Rails.application.config.content_security_policy` is configured with no policies by default. In this case, Content-Security-Policy header should not be generated instead of generating the header with no directives. Firefox also warns "Content Security Policy: Couldn't process unknown directive ''".
-
由 yuuji.yaginuma 提交于
Fixes #32021.
-
由 Guillermo Iguaran 提交于
-
由 Guillermo Iguaran 提交于
-
由 Guillermo Iguaran 提交于
The purpose of keeping app/views folder in API apps is that it's used for mailer views so doesn't makes sense to keep it when Action Mailer is skipped.
-
- 18 2月, 2018 2 次提交
-
-
由 Ryuta Kamizono 提交于
3acc5d6e was changed the order of scope evaluation from through scope to the association's own scope to be prioritized over the through scope. But the sorting order will be prioritized that is evaluated first. It is unintentional effect, association scope's sorting order should be prioritized as well. Fixes #32008.
-
由 Guillermo Iguaran 提交于
Multipart file uploads are very rare in API only apps so don't include Rack::TemfileReaper in default middleware stack for API only apps
-
- 17 2月, 2018 3 次提交
-
-
由 Rafael Mendonça França 提交于
-
由 Rafael França 提交于
Use SuppressedSummaryReporter and Rails::TestUnitReporter only if needed
-
由 Rafael Mendonça França 提交于
Make sure that when transforming the keys of a HashWithIndifferentAccess we can still access with indifferent access in Ruby 2.5. Closes #32007.
-