aboutsummaryrefslogtreecommitdiffstats
path: root/app
Commit message (Collapse)AuthorAgeLines
* Fixup up test_code_redirect_by_email_token for rspec 2Matthew Landauer2013-01-29-1/+2
|
* Workaround for setting default value on attribute when exists? is calledMatthew Landauer2013-01-29-2/+7
|
* Don't depend on javascript for button to do a post. More semanticMatthew Landauer2013-01-28-1/+1
|
* Time doesn't need to be converted from string to time anymoreMatthew Landauer2013-01-28-7/+1
|
* Don't need both url_helpersHenare Degan2013-01-25-1/+0
|
* Overwriting validate has been deprecatedHenare Degan2013-01-25-9/+12
|
* path helper should be html safe and fix up view test for rspec 2Matthew Landauer2013-01-25-1/+1
|
* Merge branch 'rails_xss' into rails-3-spikeMatthew Landauer2013-01-25-13/+16
|\ | | | | | | | | | | | | | | Conflicts: Gemfile Gemfile.lock config/environment.rb lib/i18n_fixes.rb
| * html escaping fixMatthew Landauer2013-01-15-1/+1
| |
| * Merge remote-tracking branch 'mysociety/develop' into rails_xssMatthew Landauer2013-01-15-562/+338
| |\
| | * As we're validating filename with validates_presence_of, which doesn't allow ↵Louise Crow2013-01-14-1/+1
| | | | | | | | | | | | blanks, ensure_filename! should populate a default filename on a blank filename, as well as on nil.
| | * Don't export the fake authorities that we use for admin.Louise Crow2013-01-08-0/+2
| | |
| | * Handle case where info request doesn't have a user_nameLouise Crow2013-01-07-0/+1
| | |
| * | More escaping fixesMatthew Landauer2013-01-15-4/+4
| | |
| * | More small html escaping fixesMatthew Landauer2013-01-15-2/+2
| | |
| * | Don't escape text emailsMatthew Landauer2013-01-15-1/+1
| | |
| * | Layouts for text emails should not escape their contentsMatthew Landauer2013-01-15-4/+4
| | |
* | | Rename mailer method to avoid naming conflict in Rails 3Matthew Landauer2013-01-25-2/+2
| | |
* | | Change method name as it conflicts with globalize3 method nameHenare Degan2013-01-24-2/+2
| | |
* | | Update one method in RequestMailer to new mailer rails 3 apiMatthew Landauer2013-01-04-6/+8
| | |
* | | PublicBody.locale doesn't exist anymoreMatthew Landauer2013-01-04-2/+2
| | |
* | | Temporary hack to disable mailer monkeypatch for overriding multipart mail ↵Matthew Landauer2013-01-04-7/+9
| | | | | | | | | | | | templates in themes
* | | Activerecord 3 small api change for find_or_create_byMatthew Landauer2013-01-04-1/+1
| | |
* | | Merge remote-tracking branch 'mysociety/develop' into rails-3-spikeMatthew Landauer2013-01-04-21/+62
|\ \ \ | | |/ | |/| | | | | | | | | | | | | | | | | | | | | | | | | Conflicts: Gemfile.lock Rakefile app/controllers/request_controller.rb lib/tasks/rspec.rake spec/controllers/services_controller_spec.rb spec/spec_helper.rb spec/views/request/_after_actions.rhtml_spec.rb
| * | Handle the case of a comment on an external request.Louise Crow2012-12-21-1/+1
| | |
| * | Limit pagination on similar pages in line with new upper limit on page offset.Louise Crow2012-12-17-1/+3
| | |
| * | Only serve up 'similar' pages up to the offset we use for list.Louise Crow2012-12-17-0/+5
| | |
| * | Merge branch 'hotfix/authenticate-and-expire-download-zips' into developLouise Crow2012-12-13-11/+39
| |\ \
| | * | Remove any download zip files when a request's cached files are expired.Louise Crow2012-12-13-0/+8
| | | |
| | * | Put download zips in a predictable location - sharded folders based on ↵Louise Crow2012-12-13-1/+9
| | | | | | | | | | | | | | | | request ID, rather than distributing them across the download directories by the generated SHA. Preserve the uniqueness of the subdirectory.
| | * | Use helper method for download path, and use Rails.root instead of file ↵Louise Crow2012-12-13-1/+5
| | | | | | | | | | | | | | | | location.
| | * | Check that a request is publicly visible before generating a download link.Louise Crow2012-12-13-9/+15
| | | |
| | * | Only offer download links on publicly visible requestsLouise Crow2012-12-13-0/+2
| | | |
| | * | Don't offer or allow viewing of an HTML version of a response attachment if ↵Louise Crow2012-12-13-8/+14
| | | | | | | | | | | | | | | | the request is hidden, or requester_only. Google docs viewer won't be able to access it, and our own conversion process currently can produce image files that will then be publicly viewable directly from the webserver (see config/httpd.conf). If necessary we can revisit this code to enable admins and requesters to view the HTML version created by our own conversion without adding these files to a path that is served directly by the web server.
| * | | Don't offer or allow viewing of an HTML version of a request if it is ↵Louise Crow2012-12-13-8/+14
| | | | | | | | | | | | | | | | hidden, or requester_only. Google docs viewer won't be able to access it, and our own conversion process currently produces image files that will then be publicly viewable. If necessary we can revisit this code to enable admins and requesters to view the HTML version created by our own conversion without adding these files to a path that is served directly by the web server.
* | | | Merge branch 'rails_xss' into rails-3-spikeMatthew Landauer2013-01-04-77/+81
|\ \ \ \ | | |_|/ | |/| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Conflicts: Gemfile Gemfile.lock app/views/request/_hidden_correspondence.rhtml app/views/request/hidden.rhtml app/views/request/new_please_describe.rhtml app/views/user/show.rhtml lib/i18n_fixes.rb
| * | | html content of messages and comments are html safeMatthew Landauer2013-01-03-3/+3
| | | |
| * | | Escaping fixesMatthew Landauer2013-01-03-2/+6
| | | |
| * | | Escaping fixes involving the unpleasant mix of translations, html and string ↵Matthew Landauer2013-01-03-56/+56
| | | | | | | | | | | | | | | | interpolation
| * | | Escaping fixesMatthew Landauer2013-01-03-2/+2
| | | |
| * | | Escape error messages in foi_error_messages_forMatthew Landauer2013-01-03-3/+3
| | | |
| * | | Escaping fixesMatthew Landauer2013-01-03-4/+4
| | | |
| * | | Escaping fixesMatthew Landauer2013-01-02-2/+2
| | | |
| * | | Escaping fixesMatthew Landauer2013-01-02-3/+3
| | | |
| * | | Escaping fixMatthew Landauer2013-01-02-2/+2
| | | |
* | | | Overwriting validate_on_create in your models has been deprecatedHenare Degan2012-12-12-13/+15
| | | |
* | | | We don't need to specify the attribute againHenare Degan2012-12-12-1/+1
| | | | | | | | | | | | | | | | Makes FoiAttachment model specs pass
* | | | Overwriting validate in your models has been deprecatedHenare Degan2012-12-12-3/+5
| | | | | | | | | | | | | | | | User model specs now pass with no deprecation warnings
* | | | Errors#add_to_base(msg) has been deprecated, use Errors#add(:base, msg) insteadHenare Degan2012-12-12-2/+2
| | | |
* | | | Overwriting validate in your models has been deprecatedHenare Degan2012-12-12-9/+11
| | | |
generated by cgit v1.2.3 (git 2.25.1) at 2025-10-04 02:00:17 +0000