github-mirror/discourse
2
0
Fork 0
mirror of https://github.com/discourse/discourse.git synced 2024-11-24 12:42:57 +08:00
Code Issues Actions 1 Packages Projects Releases Wiki Activity
0d01c33482
discourse/config/initializers
History
Ian Christian Myers 0d01c33482 Enabled strong_parameters across all models/controllers. 
All models are now using ActiveModel::ForbiddenAttributesProtection, which shifts the responsibility for parameter whitelisting for mass-assignments from the model to the controller. attr_accessible has been disabled and removed as this functionality replaces that.

The require_parameters method in the ApplicationController has been removed in favor of strong_parameters' #require method.

It is important to note that there is still some refactoring required to get all parameters to pass through #require and #permit so that we can guarantee that parameter values are scalar. Currently strong_parameters, in most cases, is only being utilized to require parameters and to whitelist the few places that do mass-assignments.
2013-06-06 00:30:59 -07:00
..
01-redis.rb forking in passenger was bust, message bus subscriptions would stop working after fork 2013-06-03 16:50:30 +10:00
02-freedom_patches.rb added basic passenger support, no long polling but functions 2013-03-11 05:33:20 -07:00
03-sql_builder.rb added basic passenger support, no long polling but functions 2013-03-11 05:33:20 -07:00
04-message_bus.rb Nuke message_bus_observer move to service class and classes 2013-05-16 15:03:16 +10:00
05-site_settings.rb init message_bus before site_settings 2013-03-13 15:15:22 +00:00
06-mini_profiler.rb introduce rack:cache as a default, so users don't need to configure apache or nginx 2013-04-11 16:24:21 +10:00
07-backtrace_silencers.rb introduce rack:cache as a default, so users don't need to configure apache or nginx 2013-04-11 16:24:21 +10:00
08-rack-cors.rb Implements support for rack-cors for API JavaScript access in end-user browser 2013-04-22 11:16:58 +02:00
99-rack-cache.rb redis rack cache was crazy, it was just storing stuff in redis FOREVER, added a PR to fix, forked to my repo, sourcing a sane version 2013-05-07 17:33:04 +10:00
airbrake.rb.sample amend airbrake location 2013-03-11 17:16:54 -07:00
discourse_iife.rb Clean up JS, add YUIDoc support, automatically create IIFE via asset pipeline 2013-02-25 17:16:57 -05:00
inflections.rb Initial release of Discourse 2013-02-05 14:16:51 -05:00
mime_types.rb Initial release of Discourse 2013-02-05 14:16:51 -05:00
oj.rb Initial release of Discourse 2013-02-05 14:16:51 -05:00
omniauth.rb add cas support with a few tests 2013-05-23 13:40:50 -07:00
pluralization.rb implement pluralization for server-side and js 2013-03-31 19:55:02 +02:00
quiet_logger.rb remove trailing whitespaces ❤️ 2013-02-26 07:31:35 +03:00
rails3_ar_after_commit_tests.rb Initial release of Discourse 2013-02-05 14:16:51 -05:00
secret_token.rb added profile environment for perftools profiling (1.9.3 only) 2013-03-10 17:21:56 -07:00
session_store.rb Initial release of Discourse 2013-02-05 14:16:51 -05:00
sidekiq.rb Set Sidekiq log level to WARN 2013-05-29 09:36:15 -07:00
silence_logger.rb Convert a lot of :a => b to a: b and bring peace to the world 2013-03-25 05:07:36 +05:30
strong_parameters.rb Enabled strong_parameters across all models/controllers. 2013-06-06 00:30:59 -07:00
verify_config.rb If assets haven't been precompiled, fail to start server in production mode with a message 2013-03-25 13:33:58 -04:00
vestal_versions.rb Initial release of Discourse 2013-02-05 14:16:51 -05:00
watch_for_restart.rb remove trailing whitespaces ❤️ 2013-02-26 07:31:35 +03:00
wrap_parameters.rb Initial release of Discourse 2013-02-05 14:16:51 -05:00