summaryrefslogtreecommitdiff
path: root/www/ruby-actionpack42
AgeCommit message (Collapse)AuthorFilesLines
2019-05-05Pullup ticket #5952 - requested by tacabsiegert2-7/+6
www/ruby-rails42: security fix Revisions pulled up: - databases/ruby-activerecord42/distinfo 1.4 - devel/ruby-activejob42/distinfo 1.4 - devel/ruby-activemodel42/distinfo 1.4 - devel/ruby-activesupport42/Makefile 1.7 - devel/ruby-activesupport42/distinfo 1.4 - devel/ruby-railties42/distinfo 1.4 - lang/ruby/rails.mk 1.75 - mail/ruby-actionmailer42/distinfo 1.4 - www/ruby-actionpack42/Makefile 1.8 - www/ruby-actionpack42/distinfo 1.4 - www/ruby-actionview42/distinfo 1.4 - www/ruby-rails42/Makefile 1.8 - www/ruby-rails42/distinfo 1.4 --- Module Name: pkgsrc Committed By: taca Date: Sun Apr 14 10:10:49 UTC 2019 Modified Files: pkgsrc/lang/ruby: rails.mk Log Message: lang/ruby: start update rails42 to 4.2.11 Start update of ruby-rails42. --- Module Name: pkgsrc Committed By: taca Date: Sun Apr 14 10:11:22 UTC 2019 Modified Files: pkgsrc/devel/ruby-activesupport42: Makefile distinfo Log Message: devel/ruby-activesupport42: update to 4.2.11.1 ## Rails 4.2.11.1 (March 11, 2019) ## * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Apr 14 10:11:56 UTC 2019 Modified Files: pkgsrc/devel/ruby-activejob42: distinfo Log Message: devel/ruby-activejob42: update to 4.2.11.1 ## Rails 4.2.11.1 (March 11, 2019) ## * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Apr 14 10:12:26 UTC 2019 Modified Files: pkgsrc/devel/ruby-activemodel42: distinfo Log Message: devel/ruby-activemodel42: update to 4.2.11.1 ## Rails 4.2.11.1 (March 11, 2019) ## * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Apr 14 10:13:03 UTC 2019 Modified Files: pkgsrc/databases/ruby-activerecord42: distinfo Log Message: databases/ruby-activerecord42: update to 4.2.11.1 ## Rails 4.2.11.1 (March 11, 2019) ## * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Apr 14 10:13:39 UTC 2019 Modified Files: pkgsrc/www/ruby-actionview42: distinfo Log Message: www/ruby-actionview42: update to 4.2.11.1 ## Rails 4.2.11.1 (March 11, 2019) ## * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Apr 14 10:14:25 UTC 2019 Modified Files: pkgsrc/www/ruby-actionpack42: Makefile distinfo Log Message: www/ruby-actionpack42: update to 4.2.11.1 ## Rails 4.2.11.1 (March 11, 2019) ## * Fix [CVE-2019-5418] and [CVE-2019-5419]. --- Module Name: pkgsrc Committed By: taca Date: Sun Apr 14 10:14:57 UTC 2019 Modified Files: pkgsrc/mail/ruby-actionmailer42: distinfo Log Message: mail/ruby-actionmailer42: update to 4.2.11.1 ## Rails 4.2.11.1 (March 11, 2019) ## * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Apr 14 10:15:29 UTC 2019 Modified Files: pkgsrc/devel/ruby-railties42: distinfo Log Message: devel/ruby-railties42: update to 4.2.11.1 ## Rails 4.2.11.1 (March 11, 2019) ## * No changes. --- Module Name: pkgsrc Committed By: taca Date: Sun Apr 14 10:16:19 UTC 2019 Modified Files: pkgsrc/www/ruby-rails42: Makefile distinfo Log Message: www/ruby-rails42: update to 4.2.11.1 Update ruby-rails24 to 4.2.11.1; security fix of actionpack.
2019-03-03www/ruby-actionpack42: depends on ruby-rack-test06taca1-2/+3
Change dependency from ruby-rack-test to ruby-rack-test06. Bump PKGREVISION.
2018-11-29www/ruby-actionpack42: update to 4.2.11taca1-5/+5
No change except version.
2018-03-18lang/ruby: replace RUBY_RAILS_SUPPORTED to RUBY_RAILS_ACCEPTEDtaca1-2/+2
Change RUBY_RAILS_SUPPORTED to RUBY_RAILS_ACCEPTED for better wording.
2018-03-13www/ruby-actionpack42: update to 4.2.10taca2-8/+7
pkgsrc change: switch to depends on textproc/ruby-rails-dom-testing1 ## Rails 4.2.10 (September 27, 2017) ## * Fix regression in behavior of `normalize_path`. In Rails 5 there was a change to ensure the encoding of the original string in a path was maintained. This was incorrectly backported to Rails 4.2 which caused a regression. *Eileen M. Uchitelle* ## Rails 4.2.9 (June 26, 2017) ## * Use more specific check for :format in route path The current check for whether to add an optional format to the path is very lax and will match things like `:format_id` where there are nested resources, e.g: ``` ruby resources :formats do resources :items end ``` Fix this by using a more restrictive regex pattern that looks for the patterns `(.:format)`, `.:format` or `/` at the end of the path. Note that we need to allow for multiple closing parenthesis since the route may be of this form: ``` ruby get "/books(/:action(.:format))", controller: "books" ``` This probably isn't what's intended since it means that the default index action route doesn't support a format but we have a test for it so we need to allow it. Fixes #28517. *Andrew White*
2017-07-18Reduce dependency to packages: comment out dependencies which already hastaca1-3/+5
ruby-actionview. Bump PKGREVISION.
2017-06-21Switch most of Ruby on Rails related packages to updated frame work.taca1-3/+3
2017-06-04Switch to depends on www/ruby-rack16 from ruby-rack.taca1-2/+3
Bump PKGREVISION.
2017-04-20Import ruby-actionpack-4.2.8 as www/ruby-actionpack42minskim4-0/+188
Notable changes since 3.2: - Change the stylesheet of exception pages for development mode. Additionally display also the line of code and fragment that raised the exception in all exceptions pages. - protect_from_forgery also prevents cross-origin <script> tags. Update your tests to use xhr :get, :foo, format: :js instead of get :foo, format: :js. - #url_for takes a hash with options inside an array. - Added session#fetch method fetch behaves similarly to Hash#fetch, #with the exception that the returned value is always saved into the #session. - Separated Action View completely from Action Pack. - Log which keys were affected by deep munge. - New config option config.action_dispatch.perform_deep_munge to opt out of params "deep munging" that was used to address security vulnerability CVE-2013-0155. - New config option config.action_dispatch.cookies_serializer for specifying a serializer for the signed and encrypted cookie jars. - Added render :plain, render :html and render :body. - The *_filter family of methods have been removed from the documentation. Their usage is discouraged in favor of the *_action family of methods: - render nothing: true or rendering a nil body no longer add a single space padding to the response body. - Rails now automatically includes the template's digest in ETags. - Segments that are passed into URL helpers are now automatically escaped. - Introduced the always_permitted_parameters option to configure which parameters are permitted globally. The default value of this configuration is ['controller', 'action']. - Added the HTTP method MKCALENDAR from RFC 4791. - *_fragment.action_controller notifications now include the controller and action name in the payload. - Improved the Routing Error page with fuzzy matching for route search. - Added an option to disable logging of CSRF failures. - When the Rails server is set to serve static assets, gzip assets will now be served if the client supports it and a pre-generated gzip file (.gz) is on disk. By default the asset pipeline generates .gz files for all compressible assets. Serving gzip files minimizes data transfer and speeds up asset requests. Always use a CDN if you are serving assets from your Rails server in production. - When calling the process helpers in an integration test the path needs to have a leading slash. Previously you could omit it but that was a byproduct of the implementation and not an intentional feature.
generated by cgit v1.2.3 (git 2.39.1) at 2025-04-18 03:08:36 +0000