- 28 6月, 2011 1 次提交
-
-
由 Esad Hajdarevic 提交于
-
- 16 6月, 2011 1 次提交
-
-
由 José Valim 提交于
-
- 14 6月, 2011 2 次提交
-
-
由 Damien Mathieu 提交于
-
由 Damien Mathieu 提交于
-
- 25 5月, 2011 1 次提交
-
-
由 Josh Kalderimis 提交于
-
- 24 5月, 2011 1 次提交
-
-
由 Sebastian Martinez 提交于
-
- 23 5月, 2011 1 次提交
-
-
由 wycats 提交于
-
- 18 5月, 2011 1 次提交
-
-
由 José Valim 提交于
-
- 10 5月, 2011 1 次提交
-
-
由 José Valim 提交于
Fix previous commit by allowing a proc to be given as response_body. This is deprecated and is going to be removed in future releases.
-
- 05 5月, 2011 3 次提交
-
-
由 David Heinemeier Hansson 提交于
-
由 Josh Kalderimis 提交于
-
由 José Valim 提交于
-
- 03 5月, 2011 3 次提交
-
-
由 José Valim 提交于
-
由 José Valim 提交于
-
由 José Valim 提交于
-
- 21 4月, 2011 1 次提交
-
-
由 José Valim 提交于
-
- 19 4月, 2011 1 次提交
-
-
由 José Valim 提交于
-
- 11 3月, 2011 1 次提交
-
-
This provides more safety to applications that put secret information in the query string, such as API keys or SSO tokens. Signed-off-by: NXavier Noria <fxn@hashref.com>
-
- 09 3月, 2011 1 次提交
-
-
由 Andrew White 提交于
-
- 11 2月, 2011 1 次提交
-
-
由 Carlos Antonio da Silva 提交于
Signed-off-by: NSantiago Pastorino <santiago@wyeworks.com>
-
- 09 2月, 2011 2 次提交
-
-
由 Michael Koziarski 提交于
Unfortunately the previous method of browser detection and XHR whitelisting is unable to prevent requests issued from some Flash animations and Java applets. To ease the work required to include the CSRF token in ajax requests rails now supports providing the token in a custom http header: X-CSRF-Token: ... This fixes CVE-2011-0447
-
由 José Valim 提交于
-
- 03 2月, 2011 1 次提交
-
-
由 Stephen Celis 提交于
[#5774 state:committed] Signed-off-by: NSantiago Pastorino <santiago@wyeworks.com>
-
- 18 1月, 2011 1 次提交
-
-
由 Aaron Patterson 提交于
-
- 05 12月, 2010 1 次提交
-
-
由 Carlos Antonio da Silva 提交于
-
- 03 12月, 2010 1 次提交
-
-
由 José Valim 提交于
-
- 30 11月, 2010 1 次提交
-
-
由 Josh Kalderimis 提交于
The redirect routing method now allows for a hash of options which only changes the relevant parts of the url, or an object which responds to call can be supplied so common redirect rules can be easily reused. This commit includes a change where url generation from parts has been moved to AD::Http::URL as a class method.
-
- 28 11月, 2010 2 次提交
-
-
由 José Valim 提交于
-
由 José Valim 提交于
-
- 25 11月, 2010 3 次提交
-
-
由 Neeraj Singh 提交于
HTTP_ACCEPT parameter
-
由 Neeraj Singh 提交于
a test case which expects image/* to not to be expanded. So I am leaving image/* as it is and process only text/* and application/*
-
由 Neeraj Singh 提交于
-
- 24 11月, 2010 1 次提交
-
-
由 Josh Kalderimis 提交于
Signed-off-by: NJosé Valim <jose.valim@gmail.com>
-
- 23 11月, 2010 7 次提交
-
-
由 Josh Kalderimis 提交于
:subdomain, :domain and :tld_length options can now be used in url_for, allowing for easy manipulation of the host during link generation. Signed-off-by: NJosé Valim <jose.valim@gmail.com>
-
由 Neeraj Singh 提交于
something better Signed-off-by: NJosé Valim <jose.valim@gmail.com>
-
由 Neeraj Singh 提交于
a new regex object every single time Signed-off-by: NJosé Valim <jose.valim@gmail.com>
-
由 Neeraj Singh 提交于
Signed-off-by: NJosé Valim <jose.valim@gmail.com>
-
由 Neeraj Singh 提交于
and image/* Signed-off-by: NJosé Valim <jose.valim@gmail.com>
-
由 Neeraj Singh 提交于
Signed-off-by: NJosé Valim <jose.valim@gmail.com>
-
由 Neeraj Singh 提交于
leading */* and comma Signed-off-by: NJosé Valim <jose.valim@gmail.com>
-