aboutsummaryrefslogtreecommitdiffstats
path: root/config
diff options
context:
space:
mode:
Diffstat (limited to 'config')
-rw-r--r--config/application.rb5
-rw-r--r--config/initializers/alaveteli.rb2
2 files changed, 6 insertions, 1 deletions
diff --git a/config/application.rb b/config/application.rb
index eccf0937c..ed7488454 100644
--- a/config/application.rb
+++ b/config/application.rb
@@ -84,6 +84,11 @@ module Alaveteli
require "#{Rails.root}/lib/whatdotheyknow/strip_empty_sessions"
config.middleware.insert_before ::ActionDispatch::Cookies, WhatDoTheyKnow::StripEmptySessions, :key => '_wdtk_cookie_session', :path => "/", :httponly => true
+ # Strip non-UTF-8 request parameters
+ if RUBY_VERSION.to_f >= 1.9
+ config.middleware.insert 0, Rack::UTF8Sanitizer
+ end
+
# Allow the generation of full URLs in emails
config.action_mailer.default_url_options = { :host => AlaveteliConfiguration::domain }
if AlaveteliConfiguration::force_ssl
diff --git a/config/initializers/alaveteli.rb b/config/initializers/alaveteli.rb
index 7c3b76b43..506e3471f 100644
--- a/config/initializers/alaveteli.rb
+++ b/config/initializers/alaveteli.rb
@@ -11,7 +11,7 @@ load "debug_helpers.rb"
load "util.rb"
# Application version
-ALAVETELI_VERSION = '0.21.0.33'
+ALAVETELI_VERSION = '0.21.0.36'
# Add new inflection rules using the following format
# (all these examples are active by default):
generated by cgit v1.2.3 (git 2.25.1) at 2025-08-26 11:33:05 +0000