2017-07-10 11:12:45 -04:00
|
|
|
* Protect from forgery by default
|
|
|
|
|
2017-07-10 17:45:53 -04:00
|
|
|
Rather than protecting from forgery in the generated `ApplicationController`,
|
|
|
|
add it to `ActionController::Base` depending on
|
2017-07-10 11:12:45 -04:00
|
|
|
`config.action_controller.default_protect_from_forgery`. This configuration
|
|
|
|
defaults to false to support older versions which have removed it from their
|
2017-07-10 17:45:53 -04:00
|
|
|
`ApplicationController`, but is set to true for Rails 5.2.
|
2017-07-10 11:12:45 -04:00
|
|
|
|
|
|
|
*Lisa Ugray*
|
|
|
|
|
2017-06-30 16:08:10 -04:00
|
|
|
* Fallback `ActionController::Parameters#to_s` to `Hash#to_s`.
|
|
|
|
|
|
|
|
*Kir Shatrov*
|
|
|
|
|
2017-06-01 15:58:42 -04:00
|
|
|
* `driven_by` now registers poltergeist and capybara-webkit
|
|
|
|
|
|
|
|
If driver poltergeist or capybara-webkit is set for System Tests,
|
|
|
|
`driven_by` will register the driver and set additional options passed via
|
|
|
|
`:options` param.
|
|
|
|
|
|
|
|
Refer to drivers documentation to learn what options can be passed.
|
|
|
|
|
|
|
|
*Mario Chavez*
|
|
|
|
|
2017-02-23 13:54:17 -05:00
|
|
|
* AEAD encrypted cookies and sessions with GCM
|
|
|
|
|
|
|
|
Encrypted cookies now use AES-GCM which couples authentication and
|
|
|
|
encryption in one faster step and produces shorter ciphertexts. Cookies
|
|
|
|
encrypted using AES in CBC HMAC mode will be seamlessly upgraded when
|
|
|
|
this new mode is enabled via the
|
|
|
|
`action_dispatch.use_authenticated_cookie_encryption` configuration value.
|
|
|
|
|
|
|
|
*Michael J Coyne*
|
|
|
|
|
2017-05-18 19:28:15 -04:00
|
|
|
* Change the cache key format for fragments to make it easier to debug key churn. The new format is:
|
2017-05-18 12:12:32 -04:00
|
|
|
|
2017-05-18 19:28:15 -04:00
|
|
|
views/template/action.html.erb:7a1156131a6928cb0026877f8b749ac9/projects/123
|
|
|
|
^template path ^template tree digest ^class ^id
|
2017-05-18 12:12:32 -04:00
|
|
|
|
2017-05-18 19:28:15 -04:00
|
|
|
*DHH*
|
2017-05-18 12:12:32 -04:00
|
|
|
|
2017-05-18 19:28:15 -04:00
|
|
|
* Add support for recyclable cache keys with fragment caching. This uses the new versioned entries in the
|
|
|
|
`ActiveSupport::Cache` stores and relies on the fact that Active Record has split `#cache_key` and `#cache_version`
|
|
|
|
to support it.
|
2017-05-18 12:12:32 -04:00
|
|
|
|
2017-05-18 19:28:15 -04:00
|
|
|
*DHH*
|
|
|
|
|
|
|
|
* Add `action_controller_api` and `action_controller_base` load hooks to be called in `ActiveSupport.on_load`
|
2017-04-11 18:52:02 -04:00
|
|
|
|
|
|
|
`ActionController::Base` and `ActionController::API` have differing implementations. This means that
|
|
|
|
the one umbrella hook `action_controller` is not able to address certain situations where a method
|
|
|
|
may not exist in a certain implementation.
|
|
|
|
|
|
|
|
This is fixed by adding two new hooks so you can target `ActionController::Base` vs `ActionController::API`
|
|
|
|
|
|
|
|
Fixes #27013.
|
|
|
|
|
|
|
|
*Julian Nadeau*
|
|
|
|
|
2017-04-29 13:41:44 -04:00
|
|
|
|
2017-03-21 19:41:39 -04:00
|
|
|
Please check [5-1-stable](https://github.com/rails/rails/blob/5-1-stable/actionpack/CHANGELOG.md) for previous changes.
|