1
0
Fork 0
mirror of https://github.com/rails/rails.git synced 2022-11-09 12:12:34 -05:00
rails--rails/actionpack/test/dispatch/request
Andrew White 6520ea5f7e Deprecate :controller and :action path parameters
Allowing :controller and :action values to be specified via the path
in config/routes.rb has been an underlying cause of a number of issues
in Rails that have resulted in security releases. In light of this it's
better that controllers and actions are explicitly whitelisted rather
than trying to blacklist or sanitize 'bad' values.
2016-03-01 08:48:53 +00:00
..
json_params_parsing_test.rb Deprecate :controller and :action path parameters 2016-03-01 08:48:53 +00:00
multipart_params_parsing_test.rb Deprecate :controller and :action path parameters 2016-03-01 08:48:53 +00:00
query_string_parsing_test.rb Deprecate :controller and :action path parameters 2016-03-01 08:48:53 +00:00
session_test.rb Revert "Merge pull request #20851 from tomprats/indifferent-sessions" 2016-02-26 04:47:30 +10:30
url_encoded_params_parsing_test.rb Deprecate :controller and :action path parameters 2016-03-01 08:48:53 +00:00