1
0
Fork 0
mirror of https://github.com/rails/rails.git synced 2022-11-09 12:12:34 -05:00
rails--rails/activestorage/test
George Claghorn b221a4dc43
Proxying: sanitize Content-Type and Content-Disposition
Prevent XSS where unsafe content is served inline on the application origin.

Follows up on #34477. References 06ab7b2 and d40284b.
2020-08-31 11:24:13 -04:00
..
analyzer Fall back to video container for duration 2020-08-31 08:48:06 -04:00
controllers Proxying: sanitize Content-Type and Content-Disposition 2020-08-31 11:24:13 -04:00
database touch parent model when an attachment is purged 2020-07-26 12:22:37 -05:00
dummy Unify raise_on_missing_translations for views and controllers 2020-05-20 02:42:59 +03:00
fixtures/files Fall back to video container for duration 2020-08-31 08:48:06 -04:00
jobs Correct test class name 2019-09-28 10:31:26 -04:00
models Identify directly-uploaded blobs before saving the associated record 2020-08-11 18:08:09 -04:00
previewer Change video preview format from PNG to JPG 2018-05-23 14:32:34 -04:00
service Include Content-Length in signature for ActiveStorage direct upload 2020-05-15 14:32:19 -07:00
template url -> URL where apt except inside actionpack/ 2019-04-01 22:56:35 +05:30
javascript_package_test.rb Enforce that activestorage compiled JS is in sync with source code 2019-10-18 18:02:02 -07:00
test_helper.rb Fix attaching blobs via nested attributes 2020-08-04 00:26:27 -04:00