e972d34120
Prior to this commit shallow resources would only generate paths for
non-direct children (with a nested depth greater than 1).
Take the following routes file.
resources :blogs do
resources :posts, shallow: true do
resources :comments do
resources :tags
end
end
end
This would generate shallow paths for `tags` nested under `posts`,
e.g `/posts/:id/tags/`, however it would not generate shallow paths
for `comments` nested under `posts`, e.g `/posts/:id/comments/new`.
This commit changes the behaviour of the route mapper so that it
generate paths for direct children of shallow resources, for example
if you take the previous routes file, this will now generate
shallow paths for `comments` nested under `posts`, .e.g
`posts/:id/comments/new`.
This was the behaviour in Rails `4.0.4` however this was broken in
@jcoglan's fix for another routes related issue[1].
This also fixes an issue[2] reported by @smdern.
[1] https://github.com/rails/rails/commit/d0e5963
[2] https://github.com/rails/rails/issues/15783
5.4 KiB
-
Generate shallow paths for all children of shallow resources.
Fixes #15783.
Seb Jacobs
-
JSONP responses are now rendered with the
text/javascriptcontent type when rendering through arespond_toblock.Fixes #15081.
Lucas Mazza
-
Add
config.action_controller.always_permitted_parametersto configure which parameters are permitted globally. The default value of this configuration is['controller', 'action'].Gary S. Weaver, Rafael Chacon
-
Fix env['PATH_INFO'] missing leading slash when a rack app mounted at '/'.
Fixes #15511.
Larry Lv
-
ActionController::Parameters#require now accepts
falsevalues.Fixes #15685.
Sergio Romano
-
With authorization header
Authorization: Token token=,authenticatenow recognize token as nil, instead of "token".Fixes #14846.
Larry Lv
-
Ensure the controller is always notified as soon as the client disconnects during live streaming, even when the controller is blocked on a write.
Nicholas Jakobsen, Matthew Draper
-
Routes specifying 'to:' must be a string that contains a "#" or a rack application. Use of a symbol should be replaced with
action: symbol. Use of a string without a "#" should be replaced withcontroller: string. -
Fix URL generation with
:trailing_slashsuch that it does not add a trailing slash after.:formatDan Langevin
-
Build full URI as string when processing path in integration tests for performance reasons.
Guo Xiang Tan
-
Fix
'Stack level too deep'when renderinghead :okin an action method called 'status' in a controller.Fixes #13905.
Christiaan Van den Poel
-
Add MKCALENDAR HTTP method (RFC 4791).
Sergey Karpesh
-
Instrument fragment cache metrics.
Adds
:controller: and:actionkeys to the instrumentation payload for the*_fragment.action_controllernotifications. This allows tracking e.g. the fragment cache hit rates for each controller action.Daniel Schierbeck
-
Always use the provided port if the protocol is relative.
Fixes #15043.
Guilherme Cavalcanti, Andrew White
-
Moved
params[request_forgery_protection_token]into its own method and improved tests.Fixes #11316.
Tom Kadwill
-
Added verification of route constraints given as a Proc or an object responding to
:matches?. Previously, when given an non-complying object, it would just silently fail to enforce the constraint. It will now raise anArgumentErrorwhen setting up the routes.Xavier Defrang
-
Properly treat the entire IPv6 User Local Address space as private for purposes of remote IP detection. Also handle uppercase private IPv6 addresses.
Fixes #12638.
Caleb Spare
-
Fixed an issue with migrating legacy json cookies.
Previously, the
VerifyAndUpgradeLegacySignedMessageassumes all incoming cookies are marshal-encoded. This is not the case whensecret_tokenis used in conjunction with the:jsonor:hybridserializer.In those case, when upgrading to use
secret_key_base, this would cause aTypeError: incompatible marshal file formatand a 500 error for the user.Fixes #14774.
Godfrey Chan
-
Make URL escaping more consistent:
- Escape '%' characters in URLs - only unescaped data should be passed to URL helpers
- Add an
escape_segmenthelper toRouter::Utilsthat escapes '/' characters - Use
escape_segmentrather thanescape_fragmentin optimized URL generation - Use
escape_segmentrather thanescape_pathin URL generation
For point 4 there are two exceptions. Firstly, when a route uses wildcard segments (e.g.
*foo) then we useescape_pathas the value may contain '/' characters. This means that wildcard routes can't be optimized. Secondly, if a:controllersegment is used in the path then this usesescape_pathas the controller may be namespaced.Fixes #14629, #14636 and #14070.
Andrew White, Edho Arief
-
Add alias
ActionDispatch::Http::UploadedFile#to_iotoActionDispatch::Http::UploadedFile#tempfile.Tim Linquist
-
Returns null type format when format is not know and controller is using
anyformat block.Fixes #14462.
Rafael Mendonça França
-
Improve routing error page with fuzzy matching search.
Winston
-
Only make deeply nested routes shallow when parent is shallow.
Fixes #14684.
Andrew White, James Coglan
-
Append link to bad code to backtrace when exception is
SyntaxError.Boris Kuznetsov
-
Swapped the parameters of assert_equal in
assert_selectso that the proper values were printed correctly.Fixes #14422.
Vishal Lal
-
The method
shallow?returns false if the parent resource is a singleton so we need to check if we're not inside a nested scope before copying the :path and :as options to their shallow equivalents.Fixes #14388.
Andrew White
-
Make logging of CSRF failures optional (but on by default) with the
log_warning_on_csrf_failureconfiguration setting inActionController::RequestForgeryProtection.John Barton
-
Fix URL generation in controller tests with request-dependent
default_url_optionsmethods.Tony Wooster
Please check 4-1-stable for previous changes.