- 11 7月, 2014 13 次提交
-
-
由 Xavier Noria 提交于
[Guides] Sentence break for clarity [ci-skip]
-
由 Max Goldstein 提交于
-
由 Santiago Pastorino 提交于
Fix incorrect unsubscription.
-
由 Santiago Pastorino 提交于
Use `#bytesize` instead of `#size` when checking for cookie overflow
-
由 Agis- 提交于
Although the cookie values happens to be ASCII strings because they are Base64 encoded, it is semantically incorrect to check for the number of the characters in the cookie, when we actually want to check for the number of the bytes it consists of. Furthermore it is unecessary coupling with the current implementation that uses Base64 for encoding the values.
-
由 Godfrey Chan 提交于
Also reordered some of the items to put newer ones on top (same order as CHANGELOGs), which makes it easier to diff while we are still working on it.
-
由 Guo Xiang Tan 提交于
-
由 Godfrey Chan 提交于
-
由 Guillermo Iguaran 提交于
Removed the single space character for Safari
-
由 Godfrey Chan 提交于
`render nothing: true` or rendering a `nil` body no longer add a single space to the response body. The old behavior was added as a workaround for a bug in an early version of Safari, where the HTTP headers are not returned correctly if the response body has a 0-length. This is been fixed since and the workaround is no longer necessary. Use `render body: ' '` if the old behavior is desired.
-
由 Aaron Patterson 提交于
Address CVE-2014-4671 (JSONP Flash exploit)
-
https://github.com/gcampbell/rails由 Aaron Patterson 提交于
* 'rosetta_flash' of https://github.com/gcampbell/rails: Address CVE-2014-4671 (JSONP Flash exploit) Conflicts: actionpack/CHANGELOG.md
- 10 7月, 2014 9 次提交
-
-
由 Andrew White 提交于
Force encoding of US-ASCII to UTF-8 in unescape_uri.
-
由 Karl Entwistle 提交于
Because URI paths may contain non US-ASCII characters we need to force the encoding of any unescaped URIs to UTF-8 if they are US-ASCII. This essentially replicates the functionality of the monkey patch to URI.parser.unescape in active_support/core_ext/uri.rb. Fixes #16104.
-
由 Zachary Scott 提交于
[ci skip] Fixed link to strong params in Getting Started section 5.6.
-
由 JayK31 提交于
-
由 Zachary Scott 提交于
[ci skip] Document millisecond precision change in ActiveSupport::TimeWithZone#as_json
-
由 Santiago Pastorino 提交于
Reduce number of subscriptions created.
-
由 Carlos Antonio da Silva 提交于
Since 68574151 we are using #safe_join to join the content when an Array is given, so we must include the dependent module here to make sure it's available when this module is used alone. This was making Simple Form tests to fail with current master due to the missing dependency.
-
由 Eugene Gilburg 提交于
-
由 Greg Campbell 提交于
Adds a comment before JSONP callbacks. See http://miki.it/blog/2014/7/8/abusing-jsonp-with-rosetta-flash/ for more details on the exploit in question.
-
- 09 7月, 2014 13 次提交
-
-
由 Matthew Draper 提交于
[ci skip] Fix 4.2 release notes list items. [Matthew Draper & Juanito Fatas]
-
由 Juanito Fatas 提交于
-
由 Zachary Scott 提交于
[ci skip] Fix 4.2 release notes rendered display.
-
由 Zachary Scott 提交于
Use proper possessive punctuation [ci skip]
-
由 Juanito Fatas 提交于
-
由 Guo Xiang Tan 提交于
-
由 Zachary Scott 提交于
correct markdown usage [ci skip]
-
由 Nishant Modak 提交于
-
由 Aaron Patterson 提交于
This updates rails to use edge rack
-
由 Rafael Mendonça França 提交于
Add changelog for PR #14899
-
由 eileencodes 提交于
The changelog entry for #14899 was missing.
-
由 Rafael Mendonça França 提交于
Include fixtures to prevent foreign key violation.
-
由 Zuhao Wan 提交于
-
- 08 7月, 2014 5 次提交
-
-
由 Rafael Mendonça França 提交于
Warm up cache to prevent assertion failure.
-
由 Zuhao Wan 提交于
-
由 Rafael Mendonça França 提交于
Remove PG's definition of `type_cast`
-
由 Rafael Mendonça França 提交于
Don't rely on the sql type to quote XML columns in PG
-
由 Guo Xiang Tan 提交于
-