File: CHANGELOG

*2.1.2 (October 23rd, 2008)*

Sanitize the URLs passed to redirect_to to prevent a potential response splitting attack [koz]
Fixed FormTagHelper#submit_tag with :disable_with option wouldn‘t submit the button‘s value when was clicked 633 [Jose Fernandez]

*2.1.1 (September 4th, 2008)*

All 2xx requests are considered successful [Josh Peek]
Deprecate the limited follow_redirect in functional tests. If you wish to follow redirects, use integration tests. [Michael Koziarski]
Fixed that AssetTagHelper#compute_public_path shouldn‘t cache the asset_host along with the source or per-request proc‘s won‘t run [DHH]
Deprecate define_javascript_functions, javascript_include_tag and friends are much better [Michael Koziarski]
Fix polymorphic_url with singleton resources. 461 [Tammer Saleh]
Deprecate ActionView::Base.erb_variable. Use the concat helper method instead of appending to it directly. [Jeremy Kemper]
Fixed Request#remote_ip to only raise hell if the HTTP_CLIENT_IP and HTTP_X_FORWARDED_FOR doesn‘t match (not just if they‘re both present) [Mark Imbriaco, Bradford Folkens]

*2.1.0 (May 31st, 2008)*

InstanceTag#default_time_from_options overflows to DateTime [Geoff Buesing]
Fixed that forgery protection can be used without session tracking (Peter Jones) [139]
Added session(:on) to turn session management back on in a controller subclass if the superclass turned it off (Peter Jones) [136]
Change the request forgery protection to go by Content-Type instead of request.format so that you can‘t bypass it by POSTing to "#{request.uri}.xml" [rick]
InstanceTag#default_time_from_options with hash args uses Time.current as default; respects hash settings when time falls in system local spring DST gap [Geoff Buesing]
select_date defaults to Time.zone.today when config.time_zone is set [Geoff Buesing]
Fixed that TextHelper#text_field would corrypt when raw HTML was used as the value (mchenryc, Kevin Glowacz) [80]
Added ActionController::TestCase#rescue_action_in_public! to control whether the action under test should use the regular rescue_action path instead of simply raising the exception inline (great for error testing) [DHH]
Reduce number of instance variables being copied from controller to view. [Pratik]
select_datetime and select_time default to Time.zone.now when config.time_zone is set [Geoff Buesing]
datetime_select defaults to Time.zone.now when config.time_zone is set [Geoff Buesing]
Remove ActionController::Base#view_controller_internals flag. [Pratik]
Add conditional options to caches_page method. [Paul Horsfall]
Move missing template logic to ActionView. [Pratik]
Introduce ActionView::InlineTemplate class. [Pratik]
Automatically parse posted JSON content for Mime::JSON requests. [rick]
POST /posts {"post": {"title": "Breaking News"}}

def create
```
  @post = Post.create params[:post]
  # ...
```
end
add json_escape ERB util to escape html entities in json strings that are output in HTML pages. [rick]
Provide a helper proxy to access helper methods from outside views. Closes 10839 [Josh Peek] e.g. ApplicationController.helpers.simple_format(text)
Improve documentation. [Xavier Noria, leethal, jerome]
Ensure RJS redirect_to doesn‘t html-escapes string argument. Closes 8546 [josh, eventualbuddha, Pratik]
Support render :partial => collection of heterogeneous elements. 11491 [Zach Dennis]
Avoid remote_ip spoofing. [Brian Candler]
Added support for regexp flags like ignoring case in the :requirements part of routes declarations 11421 [NeilW]
Fixed that ActionController::Base#read_multipart would fail if boundary was exactly 10240 bytes 10886 [ariejan]
Fixed HTML::Tokenizer (used in sanitize helper) didn‘t handle unclosed CDATA tags 10071 [esad, packagethief]
Improve documentation. [Radar, Jan De Poorter, chuyeow, xaviershay, danger, miloops, Xavier Noria, Sunny Ripert]
Fixed that FormHelper#radio_button would produce invalid ids 11298 [harlancrystal]
Added :confirm option to submit_tag 11415 [miloops]
Fixed NumberHelper#number_with_precision to properly round in a way that works equally on Mac, Windows, Linux (closes 11409, 8275, 10090, 8027) [zhangyuanyi]
Allow the simple_format text_helper to take an html_options hash for each paragraph. 2448 [Francois Beausoleil, thechrisoshow]
Fix regression from filter refactoring where re-adding a skipped filter resulted in it being called twice. [rick]
Refactor filters to use Active Support callbacks. 11235 [Josh Peek]
Fixed that polymorphic routes would modify the input array 11363 [thomas.lee]
Added :format option to NumberHelper#number_to_currency to enable better localization support 11149 [lylo]
Fixed that TextHelper#excerpt would include one character too many 11268 [Irfy]
Fix more obscure nested parameter hash parsing bug. 10797 [thomas.lee]
Added ActionView::Helpers::register_javascript/stylesheet_expansion to make it easier for plugin developers to inject multiple assets. 10350 [lotswholetime]
Fix nested parameter hash parsing bug. 10797 [thomas.lee]
Allow using named routes in ActionController::TestCase before any request has been made. Closes 11273 [alloy]
Fixed that sweepers defined by cache_sweeper will be added regardless of the perform_caching setting. Instead, control whether the sweeper should be run with the perform_caching setting. This makes testing easier when you want to turn perform_caching on/off [DHH]
Make MimeResponds::Responder#any work without explicit types. Closes 11140 [jaw6]
Better error message for type conflicts when parsing params. Closes 7962 [spicycode, matt]
Remove unused ActionController::Base.template_class. Closes 10787 [Pratik]
Moved template handlers related code from ActionView::Base to ActionView::Template. [Pratik]
Tests for div_for and content_tag_for helpers. Closes 11223 [thechrisoshow]
Allow file uploads in Integration Tests. Closes 11091 [RubyRedRick]
Refactor partial rendering into a PartialTemplate class. [Pratik]
Added that requests with JavaScript as the priority mime type in the accept header and no format extension in the parameters will be treated as though their format was :js when it comes to determining which template to render. This makes it possible for JS requests to automatically render action.js.rjs files without an explicit respond_to block [DHH]
Tests for distance_of_time_in_words with TimeWithZone instances. Closes 10914 [ernesto.jimenez]
Remove support for multivalued (e.g., ’&’-delimited) cookies. [Jamis Buck]
Fix problem with render :partial collections, records, and locals. 11057 [lotswholetime]
Added support for naming concrete classes in sweeper declarations [DHH]
Remove ERB trim variables from trace template in case ActionView::Base.erb_trim_mode is changed in the application. 10098 [tpope, kampers]
Fix typo in form_helper documentation. 10650 [xaviershay, kampers]
Fix bug with setting Request#format= after the getter has cached the value. 10889 [cch1]
Correct inconsistencies in RequestForgeryProtection docs. 11032 [mislav]
Introduce a Template class to ActionView. 11024 [lifofifo]
Introduce the :index option for form_for and fields_for to simplify multi-model forms (see railscasts.com/episodes/75). 9883 [rmm5t]
Introduce map.resources :cards, :as => ‘tarjetas’ to use a custom resource name in the URL: cards_path == ’/tarjetas’. 10578 [blj]
TestSession supports indifferent access. 7372 [tamc, Arsen7, mhackett, julik, jean.helou]
Make assert_routing aware of the HTTP method used. 8039 [mpalmer] e.g. assert_routing({ :method => ‘put’, :path => ’/product/321’ }, { :controller => "product", :action => "update", :id => "321" })
Make map.root accept a single symbol as an argument to declare an alias. 10818 [bscofield]
e.g. map.dashboard ’/dashboard’, :controller=>’dashboard‘
```
      map.root      :dashboard
```
Handle corner case with image_tag when passed ‘messed up’ image names. 9018 [duncanbeevers, mpalmer]
Add label_tag helper for generating elements. 10802 [DefV]
Introduce TemplateFinder to handle view paths and lookups. 10800 [Pratik Naik]
Performance: optimize route recognition. Large speedup for apps with many resource routes. 10835 [oleganza]
Make render :partial recognise form builders and use the _form partial. 10814 [djanowski]
Allow users to declare other namespaces when using the atom feed helpers. 10304 [david.calavera]
Introduce send_file :x_sendfile => true to send an X-Sendfile response header. [Jeremy Kemper]
Fixed ActionView::Helpers::ActiveRecordHelper::form for when protect_from_forgery is used 10739 [jeremyevans]
Provide nicer access to HTTP Headers. Instead of request.env["HTTP_REFERRER"] you can now use request.headers["Referrer"]. [Koz]
UrlWriter respects relative_url_root. 10748 [Cheah Chu Yeow]
The asset_host block takes the controller request as an optional second argument. Example: use a single asset host for SSL requests. 10549 [Cheah Chu Yeow, Peter B, Tom Taylor]
Support render :text => nil. 6684 [tjennings, PotatoSalad, Cheah Chu Yeow]
assert_response failures include the exception message. 10688 [Seth Rasmussen]
All fragment cache keys are now by default prefixed with the "views/" namespace [DHH]
Moved the caching stores from ActionController::Caching::Fragments::* to ActiveSupport::Cache::*. If you‘re explicitly referring to a store, like ActionController::Caching::Fragments::MemoryStore, you need to update that reference with ActiveSupport::Cache::MemoryStore [DHH]
Deprecated ActionController::Base.fragment_cache_store for ActionController::Base.cache_store [DHH]
Made fragment caching in views work for rjs and builder as well 6642 [zsombor]
Fixed rendering of partials with layout when done from site layout 9209 [antramm]
Fix atom_feed_helper to comply with the atom spec. Closes 10672 [xaviershay]
- The tags created do not contain a date (feedvalidator.org/docs/error/InvalidTAG.html)
- IDs are not guaranteed unique
- A default self link was not provided, contrary to the documentation
- NOTE: This changes tags for existing atom entries, but at least they validate now.
Correct indentation in tests. Closes 10671 [l.guidi]
Fix that auto_link looks for =’s in url paths (Amazon urls have them). Closes 10640 [bgreenlee]
Ensure that test case setup is run even if overridden. 10382 [Josh Peek]
Fix HTML Sanitizer to allow trailing spaces in CSS style attributes. Closes 10566 [wesley.moxam]
Add :default option to time_zone_select. 10590 [Matt Aimonetti]

*2.0.2* (December 16th, 2007)

Added delete_via_redirect and put_via_redirect to integration testing 10497 [philodespotos]
Allow headers[‘Accept’] to be set by hand when calling xml_http_request 10461 [BMorearty]
Added OPTIONS to list of default accepted HTTP methods 10449 [holoway]

Added option to pass proc to ActionController::Base.asset_host for maximum configurability 10521 [chuyeow]. Example:

  ActionController::Base.asset_host = Proc.new { |source|
    if source.starts_with?('/images')
      "http://images.example.com"
    else
      "http://assets.example.com"
    end
  }

Fixed that ActionView#file_exists? would be incorrect if @first_render is set 10569 [dbussink]
Added that Array#to_param calls to_param on all it‘s elements 10473 [brandon]
Ensure asset cache directories are automatically created. 10337 [Josh Peek, Cheah Chu Yeow]
render :xml and :json preserve custom content types. 10388 [jmettraux, Cheah Chu Yeow]
Refactor Action View template handlers. 10437, 10455 [Josh Peek]
Fix DoubleRenderError message and leave out mention of returning false from filters. Closes 10380 [Frederick Cheung]
Clean up some cruft around ActionController::Base#head. Closes 10417 [ssoroka]

*2.0.1* (December 7th, 2007)

Fixed send_file/binary_content for testing 8044 [tolsen]
When a NonInferrableControllerError is raised, make the proposed fix clearer in the error message. Closes 10199 [danger]
Update Prototype to 1.6.0.1. [sam]
Update script.aculo.us to 1.8.0.1. [madrobby]
Add ‘disabled’ attribute to <OPTION> separators used in time zone and country selects. Closes 10354 [hasmanyjosh]
Added the same record identification guessing rules to fields_for as form_for has [DHH]
Fixed that verification violations with no specified action didn‘t halt the chain (now they do with a 400 Bad Request) [DHH]
Raise UnknownHttpMethod exception for unknown HTTP methods. Closes 10303 [Tarmo Tänav]
Update to Prototype -r8232. [sam]
Make sure the optimisation code for routes doesn‘t get used if :host, :anchor or :port are provided in the hash arguments. [pager, Koz] 10292
Added protection from trailing slashes on page caching 10229 [devrieda]
Asset timestamps are appended, not prepended. Closes 10276 [mnaberez]
Minor inconsistency in description of render example. Closes 10029 [ScottSchram]
Add prepend_view_path and append_view_path instance methods on ActionController::Base for consistency with the class methods. [rick]
Refactor sanitizer helpers into HTML classes and make it easy to swap them out with custom implementations. Closes 10129. [rick]
Add deprecation for old subtemplate syntax for ActionMailer templates, use render :partial [rick]
Fix TemplateError so it doesn‘t bomb on exceptions while running tests [rick]
Fixed that named routes living under resources shouldn‘t have double slashes 10198 [isaacfeliu]
Make sure that cookie sessions use a secret that is at least 30 chars in length. [Koz]
Fixed that partial rendering should look at the type of the first render to determine its own type if no other clues are available (like when using text.plain.erb as the extension in AM) 10130 [java]
Fixed that has_many :through associations should render as collections too 9051 [mathie/danger]
Added :mouseover short-cut to AssetTagHelper#image_tag for doing easy image swaps 6893 [joost]
Fixed handling of non-domain hosts 9479 [purp]
Fix syntax error in documentation example for cycle method. Closes 8735 [foca]
Document :with option for link_to_remote. Closes 8765 [ryanb]
Document :minute_step option for time_select. Closes 8814 [brupm]
Explain how to use the :href option for link_to_remote to degrade gracefully in the absence of JavaScript. Closes 8911 [vlad]
Disambiguate :size option for text area tag. Closes 8955 [redbeard]
Fix broken tag in assert_tag documentation. Closes 9037 [mfazekas]
Add documentation for route conditions. Closes 9041 [innu, manfred]
Fix typo left over from previous typo fix in url helper. Closes 9414 [Henrik N]
Fixed that ActionController::CgiRequest#host_with_port() should handle standard port 10082 [moro]
Update Prototype to 1.6.0 and script.aculo.us to 1.8.0. [sam, madrobby]
Expose the cookie jar as a helper method (before the view would just get the raw cookie hash) [DHH]
Integration tests: get_ and post_via_redirect take a headers hash. 9130 [simonjefford]
Simplfy view_paths implementation. ActionView templates get the exact object, not a dup. [Rick]
Update tests for ActiveSupport‘s JSON escaping change. [rick]
FormHelper‘s auto_index should use to_param instead of id_before_type_cast. Closes 9994 [mattly]
Doc typo fixes for ActiveRecordHelper. Closes 9973 [mikong]
Make example parameters in restful routing docs idiomatic. Closes 9993 [danger]
Make documentation comment for mime responders match documentation example. Closes 9357 [yon]
Introduce a new test case class for functional tests. ActionController::TestCase. [Koz]
Fix incorrect path in helper rdoc. Closes 9926 [viktor tron]
Partials also set ‘object’ to the default partial variable. 8823 [Nick Retallack, Jeremy Kemper]

Request profiler. [Jeremy Kemper]

  $ cat login_session.rb
  get_with_redirect '/'
  say "GET / => #{path}"
  post_with_redirect '/sessions', :username => 'john', :password => 'doe'
  say "POST /sessions => #{path}"
  $ ./script/performance/request -n 10 login_session.rb

Disabled checkboxes don‘t submit a form value. 9301 [vladr, robinjfisher]
Added tests for options to ActiveRecordHelper#form. Closes 7213 [richcollins, mikong, mislav]
Changed before_filter halting to happen automatically on render or redirect but no longer on simply returning false [DHH]
Ensure that cookies handle array values correctly. Closes 9937 [queso]
Make sure resource routes don‘t clash with internal helpers like javascript_path, image_path etc. 9928 [gbuesing]
caches_page uses a single after_filter instead of one per action. 9891 [Pratik Naik]
Update Prototype to 1.6.0_rc1 and script.aculo.us to 1.8.0 preview 0. [sam, madrobby]
Dispatcher: fix that to_prepare should only run once in production. 9889 [Nathaniel Talbott]
Memcached sessions: add session data on initialization; don‘t silently discard exceptions; add unit tests. 9823 [kamk]
error_messages_for also takes :message and :header_message options which defaults to the old "There were problems with the following fields:" and "<count> errors prohibited this <object_name> from being saved". 8270 [rmm5t, zach-inglis-lt3]
Make sure that custom inflections are picked up by map.resources. 9815 [mislav]
Changed SanitizeHelper#sanitize to only allow the custom attributes and tags when specified in the call [DHH]
Extracted sanitization methods from TextHelper to SanitizeHelper [DHH]
rescue_from accepts :with => lambda { |exception| … } or a normal block. 9827 [Pratik Naik]
Add :status to redirect_to allowing users to choose their own response code without manually setting headers. 8297 [codahale, chasgrundy]
Add link_to :back which uses your referrer with a fallback to a javascript link. 7366 [eventualbuddha, Tarmo Tänav]
error_messages_for and friends also work with local variables. 9699 [Frederick Cheung]
Fix url_for, redirect_to, etc. with :controller => :symbol instead of ‘string’. 8562, 9525 [Justin Lynn, Tarmo Tänav, shoe]
Use require_library_or_gem to load the memcache library for the MemCache session and fragment cache stores. Closes 8662. [Rick]
Move ActionController::Routing.optimise_named_routes to ActionController::Base.optimise_named_routes. Now you can set it in the config. [Rick]
config.action_controller.optimise_named_routes = false
ActionController::Routing::DynamicSegment#interpolation_chunk should call to_s on all values before calling URI.escape. [Rick]
Only accept session ids from cookies, prevents session fixation attacks. [bradediger]

*2.0.0 [Preview Release]* (September 29th, 2007) [Includes duplicates of changes from 1.12.2 - 1.13.3]

Fixed that render template did not honor exempt_from_layout 9698 [pezra]
Better error messages if you leave out the :secret option for request forgery protection. Closes 9670 [rick]
Allow ability to disable request forgery protection, disable it in test mode by default. Closes 9693 [Pratik Naik]
Avoid calling is_missing on LoadErrors. Closes 7460. [ntalbott]
Move Railties’ Dispatcher to ActionController::Dispatcher, introduce before_ and after_dispatch callbacks, and warm up to non-CGI requests. [Jeremy Kemper]
The tag helper may bypass escaping. [Jeremy Kemper]
Cache asset ids. [Jeremy Kemper]
Optimized named routes respect AbstractRequest.relative_url_root. 9612 [danielmorrison, Jeremy Kemper]
Introduce ActionController::Base.rescue_from to declare exception-handling methods. Cleaner style than the case-heavy rescue_action_in_public. 9449 [Norbert Crombach]
Rename some RequestForgeryProtection methods. The class method is now protect_from_forgery, and the default parameter is now ‘authenticity_token’. [Rick]
Merge csrf_killer plugin into rails. Adds RequestForgeryProtection model that verifies session-specific _tokens for non-GET requests. [Rick]
Secure sanitize, strip_tags, and strip_links helpers against xss attacks. Closes 8877. [Rick, Pratik Naik, Jacques Distler]
This merges and renames the popular white_list helper (along with some css sanitizing from Jacques Distler version of the same plugin). Also applied updated versions of strip_tags and strip_links from 8877.
Remove use of & logic operator. Closes 8114. [watson]
Fixed JavaScriptHelper#escape_javascript to also escape closing tags 8023 [rubyruy]
Fixed TextHelper#word_wrap for multiline strings with extra carrier returns 8663 [seth]
Fixed that setting the :host option in url_for would automatically turn off :only_path (since :host would otherwise not be shown) 9586 [Bounga]
Added FormHelper#label. 8641, 9850 [jcoglan, jarkko]
Added AtomFeedHelper (slightly improved from the atom_feed_helper plugin) [DHH]
Prevent errors when generating routes for uncountable resources, (i.e. sheep where plural == singluar). map.resources :sheep now creates sheep_index_url for the collection and sheep_url for the specific item. [Koz]
Added support for HTTP Only cookies (works in IE6+ and FF 2.0.5+) as an improvement for XSS attacks 8895 [Pratik Naik, Spakman]
Don‘t warn when a path segment precedes a required segment. Closes 9615. [Nicholas Seckar]
Fixed CaptureHelper#content_for to work with the optional content parameter instead of just the block 9434 [sandofsky/wildchild].

Added Mime::Type.register_alias for dealing with different formats using the same mime type [DHH]. Example:

  class PostsController < ApplicationController
    before_filter :adjust_format_for_iphone

    def index
      @posts = Post.find(:all)

      respond_to do |format|
        format.html   # => renders index.html.erb and uses "text/html" as the content type
        format.iphone # => renders index.iphone.erb and uses "text/html" as the content type
      end
    end

    private
      def adjust_format_for_iphone
        if request.env["HTTP_USER_AGENT"] && request.env["HTTP_USER_AGENT"][/iPhone/]
          request.format = :iphone
        end
      end
  end

Added that render :json will automatically call .to_json unless it‘s being passed a string [DHH].
Autolink behaves well with emails embedded in URLs. 7313 [Jeremy McAnally, Tarmo Tänav]
Fixed that default layouts did not take the format into account 9564 [Pratik Naik]
Fixed optimized route segment escaping. 9562 [wildchild, Jeremy Kemper]
Added block acceptance to JavaScriptHelper#javascript_tag. 7527 [Bob Silva, Tarmo Tänav, rmm5t]
root_path returns ’/’ not ’’. 9563 [Pratik Naik]
Fixed that setting request.format should also affect respond_to blocks [DHH]
Add option to force binary mode on tempfile used for fixture_file_upload. 6380 [Jonathan Viney]
Fixed that resource namespaces wouldn‘t stick to all nested resources 9399 [pixeltrix]
Moved ActionController::Macros::AutoComplete into the auto_complete plugin on the official Rails svn. 9512 [Pratik Naik]
Moved ActionController::Macros::InPlaceEditing into the in_place_editor plugin on the official Rails svn. 9513 [Pratik Naik]
Removed deprecated form of calling xml_http_request/xhr without the first argument being the http verb [DHH]
Removed deprecated methods [DHH]:
- ActionController::Base#keep_flash (use flash.keep instead)
- ActionController::Base#expire_matched_fragments (just call expire_fragment with a regular expression)
- ActionController::Base.template_root/= methods (use ActionController#Base.view_paths/= instead)
- ActionController::Base.cookie (use ActionController#Base.cookies[]= instead)
Removed the deprecated behavior of appending ".png" to image_tag/image_path calls without an existing extension [DHH]
Removed ActionController::Base.scaffold — it went through the whole idea of scaffolding (card board walls you remove and tweak one by one). Use the scaffold generator instead (it does resources too now!) [DHH]
Optimise named route generation when using positional arguments. [Koz]
This change delivers significant performance benefits for the most common usage scenarios for modern rails applications by avoiding the costly trip through url_for. Initial benchmarks indicate this is between 6 and 20 times as fast.
Explicitly require active_record/query_cache before using it. [Jeremy Kemper]
Fix layout overriding response status. 9476 [lotswholetime]
Add field_set_tag for generating field_sets, closes 9477. [djanowski]
Allow additional parameters to be passed to named route helpers when using positional arguments. Closes 8930 [ian.w.white@gmail.com]
Make render :partial work with a :collection of Hashes, previously this wasn‘t possible due to backwards compatibility restrictions. [Pratik Naik]
request.host works with IPv6 addresses. 9458 [yuya]
Fix bug where action caching sets the content type to the ActionCachePath object. Closes 9282 [mindforge]
Find layouts even if they‘re not in the first view_paths directory. Closes 9258 [caio]
Major improvement to the documentation for the options / select form helpers. Closes 9038 [kampers, jardeon, wesg]
Fix number_to_human_size when using different precisions. Closes 7536. [RichardStrand, mpalmer]
Added partial layouts (see example in action_view/lib/partials.rb) [DHH]
Allow you to set custom :conditions on resource routes. [Rick]
Fixed that file.content_type for uploaded files would include a trailing \r 9053 [bgreenlee]
url_for now accepts a series of symbols representing the namespace of the record [Josh Knowles]
Make :trailing_slash work with query parameters for url_for. Closes 4004 [nov]
Make sure missing template exceptions actually say which template they were looking for. Closes 8683 [dasil003]
Fix errors with around_filters which do not yield, restore 1.1 behaviour with after filters. Closes 8891 [skaes]
After filters will *no longer* be run if an around_filter fails to yield, users relying on this behaviour are advised to put the code in question after a yield statement in an around filter.
Allow you to delete cookies with options. Closes 3685 [Josh Peek, Chris Wanstrath]
Allow you to render views with periods in the name. Closes 8076 [Norbert Crombach]
render :partial => ‘show.html.erb‘
Improve capture helper documentation. 8796 [kampers]
Prefix nested resource named routes with their action name, e.g. new_group_user_path(@group) instead of group_new_user_path(@group). The old nested action named route is deprecated in Rails 1.2.4. 8558 [David Chelimsky]
Allow sweepers to be created solely for expiring after controller actions, not model changes [DHH]
Added assigns method to ActionController::Caching::Sweeper to easily access instance variables on the controller [DHH]
Give the legacy X-POST_DATA_FORMAT header greater precedence during params parsing for backward compatibility. [Jeremy Kemper]
Fixed that link_to with an href of # when using :method will not allow for click-through without JavaScript 7037 [Steven Bristol, Josh Peek]
Fixed that radio_button_tag should generate unique ids 3353 [Bob Silva, Rebecca, Josh Peek]
Fixed that HTTP authentication should work if the header is called REDIRECT_X_HTTP_AUTHORIZATION as well 6754 [mislaw]
Don‘t mistakenly interpret the request uri as the query string. 8731 [Pratik Naik, Jeremy Kemper]
Make ActionView#view_paths an attr_accessor for real this time. Also, don‘t perform an unnecessary compact on the @view_paths array in initialize. Closes 8582 [dasil003, julik, rick]
Tolerate missing content type on multipart file uploads. Fix for Safari 3. [Jeremy Kemper]
Deprecation: remove pagination. Install the classic_pagination plugin for forward compatibility, or move to the superior will_paginate plugin. 8157 [Josh Peek]
Action caching is limited to GET requests returning 200 OK status. 3335 [tom@craz8.com, halfbyte, Dan Kubb, Josh Peek]
Improve Text Helper test coverage. 7274 [Rob Sanheim, Josh Peek]
Improve helper test coverage. 7208, 7212, 7215, 7233, 7234, 7235, 7236, 7237, 7238, 7241, 7243, 7244 [Rich Collins, Josh Peek]
Improve UrlRewriter tests. 7207 [Rich Collins]
Resources: url_for([parent, child]) generates /parents/1/children/2 for the nested resource. Likewise with the other simply helpful methods like form_for and link_to. 6432 [mhw, Jonathan Vaught, lotswholetime]
Assume html format when rendering partials in RJS. 8076 [Rick]
Don‘t double-escape url_for in views. 8144 [Rich Collins, Josh Peek]
Allow JSON-style values for the :with option of observe_field. Closes 8557 [kommen]
Remove RAILS_ROOT from backtrace paths. 8540 [Tim Pope]
Routing: map.resource :logo routes to LogosController so the controller may be reused for multiple nestings or namespaces. [Jeremy Kemper]
render :partial recognizes Active Record associations as Arrays. 8538 [Kamal Fariz Mahyuddin]
Routing: drop semicolon and comma as route separators. [Jeremy Kemper]
request.remote_ip understands X-Forwarded-For addresses with nonstandard whitespace. 7386 [moses]
Don‘t prepare response when rendering a component. 8493 [jsierles]
Reduce file stat calls when checking for template changes. 7736 [alex]
Added custom path cache_page/expire_page parameters in addition to the options hashes [DHH]. Example:
```
  def index
    caches_page(response.body, "/index.html")
  end
```
Action Caching speedup. 8231 [skaes]
Wordsmith resources documentation. 8484 [marclove]
Fix syntax error in code example for routing documentation. 8377. [Norbert Crombach]
Routing: respond with 405 Method Not Allowed status when the route path matches but the HTTP method does not. 6953 [Josh Peek, defeated, Dan Kubb, Coda Hale]
Add support for assert_select_rjs with :show and :hide. 7780 [dchelimsky]
Make assert_select‘s failure messages clearer about what failed. 7779 [dchelimsky]
Introduce a default respond_to block for custom types. 8174 [Josh Peek]
auto_complete_field takes a :method option so you can GET or POST. 8120 [zapnap]
Added option to suppress :size when using :maxlength for FormTagHelper#text_field 3112 [Tim Pope]
catch possible WSOD when trying to render a missing partial. Closes 8454 [Catfish]
Rewind request body after reading it, if possible. 8438 [s450r1]
Resource namespaces are inherited by their has_many subresources. 8280 [marclove, ggarside]
Fix filtered parameter logging with nil parameter values. 8422 [choonkeat]
Integration tests: alias xhr to xml_http_request and add a request_method argument instead of always using POST. 7124 [Nik Wakelin, Francois Beausoleil, Wizard]
Document caches_action. 5419 [Jarkko Laine]
Update to Prototype 1.5.1. [Sam Stephenson]

Allow routes to be decalred under namespaces [Tobias Luetke]:

map.namespace :admin do |admin|

  admin.root :controller => "products"
  admin.feed 'feed.xml', :controller => 'products', :action => 'feed', :format => 'xml'

end

Update to script.aculo.us 1.7.1_beta3. [Thomas Fuchs]
observe_form always sends the serialized form. 5271 [manfred, normelton@gmail.com]
Parse url-encoded and multipart requests ourselves instead of delegating to CGI. [Jeremy Kemper]
select :include_blank option can be set to a string instead of true, which just uses an empty string. 7664 [Wizard]
Added url_for usage on render :location, which allows for record identification [DHH]. Example:
```
  render :xml => person, :status => :created, :location => person
```
…expands the location to person_url(person).
Introduce the request.body stream. Lazy-read to parse parameters rather than always setting RAW_POST_DATA. Reduces the memory footprint of large binary PUT requests. [Jeremy Kemper]
Add some performance enhancements to ActionView.
- Cache base_paths in @@cached_base_paths
- Cache template extensions in @@cached_template_extension
- Remove unnecessary rescues

Assume that rendered partials go by the HTML format by default

def my_partial

  render :update do |page|
    # in this order
    # _foo.html.erb
    # _foo.erb
    # _foo.rhtml
    page.replace :foo, :partial => 'foo'
  end

end

Added record identifications to FormHelper#form_for and PrototypeHelper#remote_form_for [DHH]. Examples:

  <% form_for(@post) do |f| %>
    ...
  <% end %>

This will expand to be the same as:

  <% form_for :post, @post, :url => post_path(@post), :html => { :method => :put, :class => "edit_post", :id => "edit_post_45" } do |f| %>
    ...
  <% end %>

And for new records:

  <% form_for(Post.new) do |f| %>
    ...
  <% end %>

This will expand to be the same as:

  <% form_for :post, @post, :url => posts_path, :html => { :class => "new_post", :id => "new_post" } do |f| %>
    ...
  <% end %>

Rationalize route path escaping according to RFC 2396 section 3.3. 7544, 8307. [Jeremy Kemper, chrisroos, begemot, jugend]

Added record identification with polymorphic routes for ActionController::Base#url_for and ActionView::Base#url_for [DHH]. Examples:

  redirect_to(post)         # => redirect_to(posts_url(post))         => Location: http://example.com/posts/1
  link_to(post.title, post) # => link_to(post.title, posts_url(post)) => <a href="/posts/1">Hello world</a>

Any method that calls url_for on its parameters will automatically benefit from this.

Removed deprecated parameters_for_method_reference concept (legacy from before named routes) [DHH]
Add ActionController::Routing::Helpers, a module to contain common URL helpers such as polymorphic_url. [Nicholas Seckar]
Included the HttpAuthentication plugin as part of core (ActionController::HttpAuthentication::Basic) [DHH]
Modernize documentation for form helpers. [jeremymcanally]
Add brief introduction to REST to the resources documentation. [fearoffish]
Fix various documentation typos throughout ActionPack. [Henrik N]
Enhance documentation and add examples for url_for. [jeremymcanally]
Fix documentation typo in routes. [Norbert Crombach, pam]
Sweep flash when filter chain is halted. [Caio Chassot <lists@v2studio.com>]
Fixed that content_tag with a block will just return the result instead of concate it if not used in a ERb view 7857, 7432 [michael.niessner]
Replace the current block/continuation filter chain handling by an implementation based on a simple loop. 8226 [Stefan Kaes]
Update UrlWriter to accept :anchor parameter. Closes 6771. [octopod]

Added RecordTagHelper for using RecordIdentifier conventions on divs and other container elements [DHH]. Example:

  <% div_for(post) do %>     <div id="post_45" class="post">
    <%= post.body %>           What a wonderful world!
  <% end %>                  </div>

Added page[record] accessor to JavaScriptGenerator that relies on RecordIdentifier to find the right dom id [DHH]. Example:

  format.js do
    # Calls: new Effect.fade('post_45');
    render(:update) { |page| page[post].visual_effect(:fade) }
  end

Added RecordIdentifier to enforce view conventions on records for dom ids, classes, and partial paths [DHH]

Added map.namespace to deal with the common situation of admin sections and the like [DHH]

  Before:

    map.resources :products, :path_prefix => "admin", :controller => "admin/products", :collection => { :inventory => :get }, :member => { :duplicate => :post }
    map.resources :tags, :name_prefix => 'admin_product_', :path_prefix => "admin/products/:product_id", :controller => "admin/product_tags"
    map.resources :images, :name_prefix => 'admin_product_', :path_prefix => "admin/products/:product_id", :controller => "admin/product_images"
    map.resources :variants, :name_prefix => 'admin_product_', :path_prefix => "admin/products/:product_id", :controller => "admin/product_variants"

  After:

    map.namespace(:admin) do |admin|
      admin.resources :products,
        :collection => { :inventory => :get },
        :member     => { :duplicate => :post },
        :has_many   => [ :tags, :images, :variants ]
    end

Added :name_prefix as standard for nested resources [DHH]. WARNING: May be backwards incompatible with your app

  Before:

    map.resources :emails do |emails|
      emails.resources :comments,    :name_prefix => "email_"
      emails.resources :attachments, :name_prefix => "email_"
    end

  After:

    map.resources :emails do |emails|
      emails.resources :comments
      emails.resources :attachments
    end

  This does mean that if you intended to have comments_url go to /emails/5/comments, then you'll have to set :name_prefix to nil explicitly.

Added :has_many and :has_one for declaring plural and singular resources beneath the current [DHH]

  Before:

    map.resources :notes do |notes|
      notes.resources :comments
      notes.resources :attachments
      notes.resource :author
    end

  After:

    map.resources :notes, :has_many => [ :comments, :attachments ], :has_one => :author

Added that render :xml will try to call to_xml if it can [DHH]. Makes these work:
```
  render :xml => post
  render :xml => comments
```
Added :location option to render so that the common pattern of rendering a response after creating a new resource is now a 1-liner [DHH]
```
  render :xml => post.to_xml, :status => :created, :location => post_url(post)
```
Ensure that render_text only adds string content to the body of the response [DHH]
Return the string representation from an Xml Builder when rendering a partial. Closes 5044 [Tim Pope]
Fixed that parameters from XML should also be presented in a hash with indifferent access [DHH]
Tweak template format rules so that the ACCEPT header is only used if it‘s text/javascript. This is so ajax actions without a :format param get recognized as Mime::JS. [Rick]
The default respond_to blocks don‘t set a specific extension anymore, so that both ‘show.rjs’ and ‘show.js.rjs’ will work. [Rick]
Allow layouts with extension of .html.erb. Closes 8032 [Josh Knowles]
Change default respond_to templates for xml and rjs formats. [Rick]
- Default xml template goes from #{action_name}.rxml => #{action_name}.xml.builder.
- Default rjs template goes from #{action_name}.rjs => #{action_name}.js.rjs.
You can still specify your old templates:
```
  respond_to do |format|
    format.xml do
      render :action => "#{action_name}.rxml"
    end
  end
```
Fix WSOD due to modification of a formatted template extension so that requests to templates like ‘foo.html.erb’ fail on the second hit. [Rick]
Fix WSOD when template compilation fails [Rick]
Change ActionView template defaults. Look for templates using the request format first, such as "show.html.erb" or "show.xml.builder", before looking for the old defaults like "show.erb" or "show.builder" [Rick]
Highlight helper highlights one or many terms in a single pass. [Jeremy Kemper]
Dropped the use of ; as a separator of non-crud actions on resources and went back to the vanilla slash. It was a neat idea, but lots of the non-crud actions turned out not to be RPC (as the ; was primarily intended to discourage), but legitimate sub-resources, like /parties/recent, which didn‘t deserve the uglification of /parties;recent. Further more, the semicolon caused issues with caching and HTTP authentication in Safari. Just Not Worth It [DHH]
Added that FormTagHelper#submit_tag will return to its original state if the submit fails and you‘re using :disable_with [DHH]
Cleaned up, corrected, and mildly expanded ActionPack documentation. Closes 7190 [jeremymcanally]
Small collection of ActionController documentation cleanups. Closes 7319 [jeremymcanally]
Make sure the route expiry hash is constructed by comparing the to_param-ized values of each hash. [Jamis Buck]

Allow configuration of the default action cache path for caches_action calls. [Rick Olson]

class ListsController < ApplicationController

  caches_action :index, :cache_path => Proc.new { |controller|
    controller.params[:user_id] ?
      controller.send(:user_lists_url, c.params[:user_id]) :
      controller.send(:lists_url) }

end

Performance: patch cgi/session/pstore to require digest/md5 once rather than per initialize. 7583 [Stefan Kaes]
Cookie session store: ensure that new sessions doesn‘t reuse data from a deleted session in the same request. [Jeremy Kemper]
Deprecation: verification with :redirect_to => :named_route shouldn‘t be deprecated. 7525 [Justin French]
Cookie session store: raise ArgumentError when :session_key is blank. [Jeremy Kemper]
Deprecation: remove deprecated request, redirect, and dependency methods. Remove deprecated instance variables. Remove deprecated url_for(:symbol, *args) and redirect_to(:symbol, *args) in favor of named routes. Remove uses_component_template_root for toplevel components directory. Privatize deprecated render_partial and render_partial_collection view methods. Remove deprecated link_to_image, link_image_to, update_element_function, start_form_tag, and end_form_tag helper methods. Remove deprecated human_size helper alias. [Jeremy Kemper]
Consistent public/protected/private visibility for chained methods. 7813 [Dan Manges]
Prefer MIME constants to strings. 7707 [Dan Kubb]
Allow array and hash query parameters. Array route parameters are converted/to/a/path as before. 6765, 7047, 7462 [bgipsy, Jeremy McAnally, Dan Kubb, brendan]

# Add a dbman attr_reader for CGI::Session and make CGI::Session::CookieStore#generate_digest public so it‘s easy to generate digests using the cookie store‘s secret. [Rick]

Added Request#url that returns the complete URL used for the request [DHH]
Extract dynamic scaffolding into a plugin. 7700 [Josh Peek]
Added user/password options for url_for to add http authentication in a URL [DHH]
Fixed that FormTagHelper#text_area_tag should disregard :size option if it‘s not a string [Brendon Davidson]
Set the original button value in an attribute of the button when using the :disable_with key with submit_tag, so that the original can be restored later. [Jamis Buck]
session_enabled? works with session :off. 6680 [Catfish]
Added :port and :host handling to UrlRewriter (which unified url_for usage, regardless of whether it‘s called in view or controller) 7616 [alancfrancis]
Allow send_file/send_data to use a registered mime type as the :type parameter 7620 [jonathan]
Allow routing requirements on map.resource(s) 7633 [quixoten]. Example:
map.resources :network_interfaces, :requirements => { :id => /^\d+\.\d+\.\d+\.\d+$/ }
Cookie session store: empty and unchanged sessions don‘t write a cookie. [Jeremy Kemper]
Added helper(:all) as a way to include all helpers from app/helpers/**/*.rb in ApplicationController [DHH]
Integration tests: introduce methods for other HTTP methods. 6353 [caboose]
Routing: better support for escaped values in route segments. 7544 [Chris

Roos]

Introduce a cookie-based session store as the Rails default. Sessions typically contain at most a user_id and flash message; both fit within the 4K cookie size limit. A secure message digest is included with the cookie to ensure data integrity (a user cannot alter his user_id without knowing the secret key included in the digest). If you have more than 4K of session data or don‘t want your data to be visible to the user, pick another session store. Cookie-based sessions are dramatically faster than the alternatives. [Jeremy Kemper]
Example config/environment.rb:
```
  # Use an application-wide secret key and the default SHA1 message digest.
  config.action_controller.session = { :secret => "can't touch this" }

  # Store a secret key per user and employ a stronger message digest.
  config.action_controller.session = {
    :digest => 'SHA512',
    :secret => Proc.new { User.current.secret_key }
  }
```
Added .erb and .builder as preferred aliases to the now deprecated .rhtml and .rxml extensions [Chad Fowler]. This is done to separate the renderer from the mime type. .erb templates are often used to render emails, atom, csv, whatever. So labeling them .rhtml doesn‘t make too much sense. The same goes for .rxml, which can be used to build everything from HTML to Atom to whatever. .rhtml and .rxml will continue to work until Rails 3.0, though. So this is a slow phasing out. All generators and examples will start using the new aliases, though.

Added caching option to AssetTagHelper#stylesheet_link_tag and AssetTagHelper#javascript_include_tag [DHH]. Examples:

  stylesheet_link_tag :all, :cache => true # when ActionController::Base.perform_caching is false =>
    <link href="/stylesheets/style1.css"  media="screen" rel="Stylesheet" type="text/css" />
    <link href="/stylesheets/styleB.css"  media="screen" rel="Stylesheet" type="text/css" />
    <link href="/stylesheets/styleX2.css" media="screen" rel="Stylesheet" type="text/css" />

  stylesheet_link_tag :all, :cache => true # when ActionController::Base.perform_caching is true =>
    <link href="/stylesheets/all.css"  media="screen" rel="Stylesheet" type="text/css" />

…when caching is on, all.css is the concatenation of style1.css, styleB.css, and styleX2.css. Same deal for JavaScripts.

Work around the two connection per host browser limit: use asset%d.myapp.com to distribute asset requests among asset[0123].myapp.com. Use a DNS wildcard or CNAMEs to map these hosts to your asset server. See www.die.net/musings/page_load_time/ for background. [Jeremy Kemper]
Added default mime type for CSS (Mime::CSS) [DHH]
Added that rendering will automatically insert the etag header on 200 OK responses. The etag is calculated using MD5 of the response body. If a request comes in that has a matching etag, the response will be changed to a 304 Not Modified and the response body will be set to an empty string. [DHH]
Added X-Runtime to all responses with the request run time [DHH]
Add Mime::Type convenience methods to check the current mime type. [Rick]
request.format.html? # => true if Mime::HTML request.format.jpg? # => true if Mime::JPG

# ActionController sample usage: # the session will be disabled for non html/ajax requests session :off, :if => Proc.new { |req| !(req.format.html? || req.format.js?) }
Performance: patch cgi/session to require digest/md5 once rather than per create_new_id. [Stefan Kaes]
Add a :url_based_filename => true option to ActionController::Streaming::send_file, which allows URL-based filenames. [Thomas Fuchs]
Fix that FormTagHelper#submit_tag using :disable_with should trigger the onsubmit handler of its form if available [DHH]
Fix render_file so that TemplateError is called with the correct params and you don‘t get the WSOD. [Rick]
Fix issue with deprecation messing up template_root= usage. Add prepend_view_path and append_view_path to allow modification of a copy of the

superclass’ view_paths. [Rick]

Allow Controllers to have multiple view_paths instead of a single template_root. Closes 2754 [John Long]
Add much-needed html-scanner tests. Fixed CDATA parsing bug. [Rick]
improve error message for Routing for named routes. Closes 7346 [Rob Sanheim]
Added enhanced docs to routing assertions. Closes 7359 [Rob Sanheim]
fix form_for example in ActionController::Resources documentation. Closes 7362 [gnarg]
Make sure that the string returned by TextHelper#truncate is actually a string, not a char proxy — that should only be used internally while working on a multibyte-safe way of truncating [DHH]
Added FormBuilder#submit as a delegate for FormTagHelper#submit_tag [DHH]
Allow Routes to generate all urls for a set of options by specifying :generate_all => true. Allows caching to properly set or expire all paths for a resource. References 1739. [Nicholas Seckar]
Change the query parser to map empty GET params to "" rather than nil. Closes 5694. [Nicholas Seckar]

date_select and datetime_select take a :default option. 7052 [nik.wakelin]

  date_select "post", "written_on", :default => 3.days.from_now
  date_select "credit_card", "bill_due", :default => { :day => 20 }

select :multiple => true suffixes the attribute name with [] unless already suffixed. 6977 [nik.kakelin, ben, julik]
Improve routes documentation. 7095 [zackchandler]
mail_to :encode => ‘hex’ also encodes the mailto: part of the href attribute as well as the linked email when no name is given. 2061 [Jarkko Laine, pfc.pille@gmx.net]
Resource member routes require :id, eliminating the ambiguous overlap with collection routes. 7229 [dkubb]
Remove deprecated assertions. [Jeremy Kemper]
Change session restoration to allow namespaced models to be autoloaded. Closes 6348. [Nicholas Seckar]
Fix doubly appearing parameters due to string and symbol mixups. Closes 2551. [aeden]
Fix overly greedy rescues when loading helpers. Fixes 6268. [Nicholas Seckar]
Fixed NumberHelper#number_with_delimiter to use "." always for splitting the original number, not the delimiter parameter 7389 [ceefour]
Autolinking recognizes trailing and embedded . , : ; 7354 [Jarkko Laine]
Make TextHelper::auto_link recognize URLs with colons in path correctly, fixes 7268. [imajes]
Update to script.aculo.us 1.7.0. [Thomas Fuchs]
Modernize cookie testing code, and increase coverage (Heckle++) 7101 [Kevin Clark]
Improve Test Coverage for ActionController::Routing::Route#matches_controller_and_action? (Heckle++) 7115 [Kevin Clark]
Heckling ActionController::Resources::Resource revealed that set_prefixes didn‘t break when :name_prefix was munged. 7081 [Kevin Clark]
Fix distance_of_time_in_words to report accurately against the Duration class. 7114 [eventualbuddha]
Refactor form_tag to allow easy extending. [Rick]
Update to Prototype 1.5.0. [Sam Stephenson]
RecordInvalid, RecordNotSaved => 422 Unprocessable Entity, StaleObjectError => 409 Conflict. 7097 [dkubb]
Allow fields_for to be nested inside form_for, so that the name and id get properly constructed [Jamis Buck]
Allow inGroupsOf and eachSlice to be called through rjs. 7046 [Cody Fauser]
Allow exempt_from_layout :rhtml. 6742, 7026 [Dan Manges, Squeegy]
Recognize the .txt extension as Mime::TEXT [Rick]
Fix parsing of array[] CGI parameters so extra empty values aren‘t included. 6252 [Nicholas Seckar, aiwilliams, brentrowland]
link_to_unless_current works with full URLs as well as paths. 6891 [Jarkko Laine, manfred, idrifter]
Lookup the mime type for auto_discovery_link_tag in the Mime::Type class. Closes 6941 [Josh Peek]
Fix bug where nested resources ignore a parent singleton parent‘s path prefix. Closes 6940 [Dan Kubb]
Fix no method error with error_messages_on. Closes 6935 [nik.wakelin Koz]
Slight doc tweak to the ActionView::Helpers::PrototypeHelper#replace docs. Closes 6922 [Steven Bristol]
Slight doc tweak to prepend_filter. Closes 6493 [Jeremy Voorhis]
Add more extensive documentation to the AssetTagHelper. Closes 6452 [Bob Silva]
Clean up multiple calls to stringify_keys in TagHelper, add better documentation and testing for TagHelper. Closes 6394 [Bob Silva]
[DOCS] fix reference to ActionController::Macros::AutoComplete for text_field_with_auto_complete. Closes 2578 [Jan Prill]
Make sure html_document is reset between integration test requests. [ctm]
Set session to an empty hash if :new_session => false and no session cookie or param is present. CGI::Session was raising an unrescued ArgumentError. [Josh Susser]
Routing uses URI escaping for path components and CGI escaping for query parameters. [darix, Jeremy Kemper]
Fix assert_redirected_to bug where redirecting from a nested to to a top-level controller incorrectly added the current controller‘s nesting. Closes 6128. [Rick Olson]
Singleton resources: POST /singleton => create, GET /singleton/new => new. [Jeremy Kemper]
Use 400 Bad Request status for unrescued ActiveRecord::RecordInvalid exceptions. [Jeremy Kemper]
Silence log_error deprecation warnings from inspecting deprecated instance variables. [Nate Wiger]
Only cache GET requests with a 200 OK response. 6514, 6743 [RSL, anamba]
Add a ‘referer’ attribute to TestRequest. [Jamis Buck]
Ensure render :json => … skips the layout. Closes 6808 [Josh Peek]
Fix HTML::Node to output double quotes instead of single quotes. Closes 6845 [mitreandy]
Correctly report which filter halted the chain. 6699 [Martin Emde]
Fix a bug in Routing where a parameter taken from the path of the current request could not be used as a query parameter for the next. Closes 6752. [Nicholas Seckar]
Unrescued ActiveRecord::RecordNotFound responds with 404 instead of 500. [Jeremy Kemper]
Improved auto_link to match more valid urls correctly [Tobias Luetke]
Add singleton resources. [Rick Olson]
map.resource :account

GET /account GET /account;edit UPDATE /account DELETE /account
respond_to recognizes JSON. render :json => @person.to_json automatically sets the content type and takes a :callback option to specify a client-side function to call using the rendered JSON as an argument. 4185 [Scott Raymond, eventualbuddha]
```
  # application/json response with body 'Element.show({:name: "David"})'
  respond_to do |format|
    format.json { render :json => { :name => "David" }.to_json, :callback => 'Element.show' }
  end
```
Makes :discard_year work without breaking multi-attribute parsing in AR. 1260, 3800 [sean@ardismg.com, jmartin@desertflood.com, stephen@touset.org, Bob Silva]
Adds html id attribute to date helper elements. 1050, 1382 [mortonda@dgrmm.net, David North, Bob Silva]
Add :index and @auto_index capability to model driven date/time selects. 847, 2655 [moriq, Doug Fales, Bob Silva]
Add :order to datetime_select, select_datetime, and select_date. 1427 [Timothee Peignier, patrick@lenz.sh, Bob Silva]
Added time_select to work with time values in models. Update scaffolding. 2489, 2833 [Justin Palmer, Andre Caum, Bob Silva]
Added :include_seconds to select_datetime, datetime_select and time_select. 2998 [csn, Bob Silva]
All date/datetime selects can now accept an array of month names with :use_month_names. Allows for localization. 363 [tomasj, Bob Silva]
Adds :time_separator to select_time and :date_separator to select_datetime. Preserves BC. 3811 [Bob Silva]
Added map.root as an alias for map.connect ’’ [DHH]
Added Request#format to return the format used for the request as a mime type. If no format is specified, the first Request#accepts type is used. This means you can stop using respond_to for anything else than responses [DHH]. Examples:
```
  GET /posts/5.xml   | request.format => Mime::XML
  GET /posts/5.xhtml | request.format => Mime::HTML
  GET /posts/5       | request.format => request.accepts.first (usually Mime::HTML for browsers)
```
Added the option for extension aliases to mime type registration [DHH]. Example (already in the default routes):
```
  Mime::Type.register "text/html", :html, %w( application/xhtml+xml ), %w( xhtml )
```
…will respond on both .html and .xhtml.
@response.redirect_url works with 201 Created responses: just return headers[‘Location’] rather than checking the response status. [Jeremy Kemper]
Added CSV to Mime::SET so that respond_to csv will work [Cody Fauser]
Fixed that HEAD should return the proper Content-Length header (that is, actually use @body.size, not just 0) [DHH]
Added GET-masquarading for HEAD, so request.method will return :get even for HEADs. This will help anyone relying on case request.method to automatically work with HEAD and map.resources will also allow HEADs to all GET actions. Rails automatically throws away the response content in a reply to HEAD, so you don‘t even need to worry about that. If you, for whatever reason, still need to distinguish between GET and HEAD in some edge case, you can use Request#head? and even Request.headers["REQUEST_METHOD"] for get the "real" answer. Closes 6694 [DHH]
Update Routing to complain when :controller is not specified by a route. Closes 6669. [Nicholas Seckar]
Ensure render_to_string cleans up after itself when an exception is raised. 6658 [Rob Sanheim]
Extract template_changed_since? from compile_template? so plugins may override its behavior for non-file-based templates. 6651 [Jeff Barczewski]
Update to Prototype and script.aculo.us [5579]. [Thomas Fuchs]
simple_format helper doesn‘t choke on nil. 6644 [jerry426]
Update to Prototype 1.5.0_rc2 [5550] which makes it work in Opera again [Thomas Fuchs]
Reuse named route helper module between Routing reloads. Use remove_method to delete named route methods after each load. Since the module is never collected, this fixes a significant memory leak. [Nicholas Seckar]
ActionView::Base.erb_variable accessor names the buffer variable used to render templates. Defaults to _erbout; use _buf for erubis. [Rick Olson]
assert_select_rjs :remove. [Dylan Egan]
Always clear model associations from session. 4795 [sd@notso.net, andylien@gmail.com]
Update to Prototype 1.5.0_rc2. [Sam Stephenson]
Remove JavaScriptLiteral in favor of ActiveSupport::JSON::Variable. [Sam Stephenson]
Sync ActionController::StatusCodes::STATUS_CODES with www.iana.org/assignments/http-status-codes. 6586 [dkubb]
Multipart form values may have a content type without being treated as uploaded files if they do not provide a filename. 6401 [Andreas Schwarz, Jeremy Kemper]

assert_response supports symbolic status codes. 6569 [Kevin Clark]

  assert_response :ok
  assert_response :not_found
  assert_response :forbidden

Cache parsed query parameters. 6559 [Stefan Kaes]
Deprecate JavaScriptHelper#update_element_function, which is superseeded by RJS [Thomas Fuchs]
pluralize helper interprets nil as zero. 6474 [Tim Pope]
Fix invalid test fixture exposed by stricter Ruby 1.8.5 multipart parsing. 6524 [Bob Silva]
Set ActionView::Base.default_form_builder once rather than passing the :builder option to every form or overriding the form helper methods. [Jeremy Kemper]
Deprecate expire_matched_fragments. Use expire_fragment instead. 6535 [Bob Silva]
Update to latest Prototype, which doesn‘t serialize disabled form elements, adds clone() to arrays, empty/non-string Element.update() and adds a fixes excessive error reporting in WebKit beta versions [Thomas Fuchs]
Deprecate start_form_tag and end_form_tag. Use form_tag / ’</form>’ from now on. [Rick]
Added block-usage to PrototypeHelper#form_remote_tag, document block-usage of FormTagHelper#form_tag [Rick]
Add a 0 margin/padding div around the hidden _method input tag that form_tag outputs. [Rick]

Added block-usage to TagHelper#content_tag [DHH]. Example:

 <% content_tag :div, :class => "strong" %>
   Hello world!
 <% end %>

Will output:

  <div class="strong">Hello world!</div>

Deprecated UrlHelper#link_to_image and UrlHelper#link_to :post => true 6409 [BobSilva]
Upgraded NumberHelper with number_to_phone support international formats to comply with ITU E.123 by supporting area codes with less than 3 digits, added precision argument to number_to_human_size (defaults to 1) 6421 [BobSilva]
Fixed that setting RAILS_ASSET_ID to "" should not add a trailing slash after assets 6454 [BobSilva/chrismear]
Force *_url named routes to show the host in ActionView [Rick]
<%= url_for … %> # no host <%= foo_path %> # no host <%= foo_url %> # host!
Add support for converting blocks into function arguments to JavaScriptGenerator#call and JavaScriptProxy#call. [Sam Stephenson]
Add JavaScriptGenerator#literal for wrapping a string in an object whose to_json is the string itself. [Sam Stephenson]
Add <%= escape_once html %> to escape html while leaving any currently escaped entities alone. Fix button_to double-escaping issue. [Rick]
Fix double-escaped entities, such as &amp;, &123;, etc. [Rick]
Fix deprecation warnings when rendering the template error template. [Nicholas Seckar]
Fix routing to correctly determine when generation fails. Closes 6300. [psross].
Fix broken assert_generates when extra keys are being checked. [Jamis Buck]
Replace KCODE checks with String#chars for truncate. Closes 6385 [Manfred Stienstra]
Make page caching respect the format of the resource that is being requested even if the current route is the default route so that, e.g. posts.rss is not transformed by url_for to ’/’ and subsequently cached as ’/index.html’ when it should be cached as ’/posts.rss’. [Marcel Molina Jr.]
Use String#chars in TextHelper::excerpt. Closes 6386 [Manfred Stienstra]
Install named routes into ActionView::Base instead of proxying them to the view via helper_method. Closes 5932. [Nicholas Seckar]
Update to latest Prototype and script.aculo.us trunk versions [Thomas Fuchs]
Fix relative URL root matching problems. [Mark Imbriaco]
Fix filter skipping in controller subclasses. 5949, 6297, 6299 [Martin Emde]
render_text may optionally append to the response body. render_javascript appends by default. This allows you to chain multiple render :update calls by setting @performed_render = false between them (awaiting a better public API). [Jeremy Kemper]
Rename test assertion to prevent shadowing. Closes 6306. [psross]
Fixed that NumberHelper#number_to_delimiter should respect precision of higher than two digits 6231 [phallstrom]
Fixed that FormHelper#radio_button didn‘t respect an :id being passed in 6266 [evansj]
Added an html_options hash parameter to javascript_tag() and update_page_tag() helpers 6311 [tzaharia]. Example:
```
  update_page_tag :defer => 'true' { |page| ... }
```
Gives:
```
  <script defer="true" type="text/javascript">...</script>
```
Which is needed for dealing with the IE6 DOM when it‘s not yet fully loaded.
Fixed that rescue template path shouldn‘t be hardcoded, then it‘s easier to hook in your own 6295 [mnaberez]
Fixed escaping of backslashes in JavaScriptHelper#escape_javascript 6302 [sven@c3d2.de]
Fixed that some 500 rescues would cause 500‘s themselves because the response had not yet been generated 6329 [cmselmer]
respond_to :html doesn‘t assume .rhtml. 6281 [Hampton Catlin]
Fixed some deprecation warnings in ActionPack [Rick Olson]
assert_select_rjs decodes escaped unicode chars since the Javascript generators encode them. 6240 [japgolly]
Deprecation: @cookies, @headers, @request, @response will be removed after 1.2. Use the corresponding method instead. [Jeremy Kemper]

Make the :status parameter expand to the default message for that status code if it is an integer. Also support symbol statuses. [Jamis Buck]. Examples:

  head :status => 404        # expands to "404 Not Found"
  head :status => :not_found # expands to "404 Not Found"
  head :status => :created   # expands to "201 Created"

Add head(options = {}) for responses that have no body. [Jamis Buck]. Examples:

  head :status => 404 # return an empty response with a 404 status
  head :location => person_path(@person), :status => 201

Fix bug that kept any before_filter except the first one from being able to halt the before_filter chain. [Rick Olson]
strip_links is case-insensitive. 6285 [tagoh, Bob Silva]
Clear the cache of possible controllers whenever Routes are reloaded. [Nicholas Seckar]
Filters overhaul including meantime filter support using around filters + blocks. 5949 [Martin Emde, Roman Le Negrate, Stefan Kaes, Jeremy Kemper]
Update RJS render tests. [sam]
Update CGI process to allow sessions to contain namespaced models. Closes 4638. [dfelstead@site5.com]
Fix routing to respect user provided requirements and defaults when assigning default routing options (such as :action => ‘index’). Closes 5950. [Nicholas Seckar]
Rescue Errno::ECONNRESET to handle an unexpectedly closed socket connection. Improves SCGI reliability. 3368, 6226 [sdsykes, fhanshaw@vesaria.com]

Added that respond_to blocks will automatically set the content type to be the same as is requested [DHH]. Examples:

  respond_to do |format|
    format.html { render :text => "I'm being sent as text/html" }
    format.rss  { render :text => "I'm being sent as application/rss+xml" }
    format.atom { render :text => "I'm being sent as application/xml", :content_type => Mime::XML }
  end

Added utf-8 as the default charset for all renders. You can change this default using ActionController::Base.default_charset=(encoding) [DHH]

Added proper getters and setters for content type and charset [DHH]. Example of what we used to do:

  response.headers["Content-Type"] = "application/atom+xml; charset=utf-8"

…now:

  response.content_type = Mime::ATOM
  response.charset      = "utf-8"

Updated prototype.js to 1.5.0_rc1 with latest fixes. [Rick Olson]
- XPATH support
- Make Form.getElements() return elements in the correct order
- fix broken Form.serialize return

Declare file extensions exempt from layouts. 6219 [brandon]

  Example: ActionController::Base.exempt_from_layout 'rpdf'

Add chained replace/update support for assert_select_rjs [Rick Olson]

  Given RJS like...

    page['test1'].replace "<div id=\"1\">foo</div>"
    page['test2'].replace_html "<div id=\"2\">foo</div>"

  Test it with...

    assert_select_rjs :chained_replace
    assert_select_rjs :chained_replace, "test1"

    assert_select_rjs :chained_replace_html
    assert_select_rjs :chained_replace_html, "test2"

Load helpers in alphabetical order for consistency. Resolve cyclic javascript_helper dependency. 6132, 6178 [choonkeat@gmail.com]
Skip params with empty names, such as the &=Save query string from <input type="submit"/>. 2569 [manfred, raphinou@yahoo.com]
Fix assert_tag so that :content => "foo" does not match substrings, but only exact strings. Use :content => /foo/ to match substrings. 2799 [Eric Hodel]
Add descriptive messages to the exceptions thrown by cgi_methods. 6091, 6103 [Nicholas Seckar, Bob Silva]
Update JavaScriptGenerator#show/hide/toggle/remove to new Prototype syntax for multiple ids, 6068 [petermichaux@gmail.com]
Update UrlWriter to support :only_path. [Nicholas Seckar, Dave Thomas]
Fixed JavaScriptHelper#link_to_function and JavaScriptHelper#button_to_function to have the script argument be optional [DHH]. So what used to require a nil, like this:
```
  link_to("Hider", nil, :class => "hider_link") { |p| p[:something].hide }
```
…can be written like this:
```
  link_to("Hider", :class => "hider_link") { |p| p[:something].hide }
```
Update to script.aculo.us 1.6.3 [Thomas Fuchs]
Update to Prototype 1.5.0_rc1 [sam]

Added access to nested attributes in RJS 4548 [richcollins@gmail.com]. Examples:

  page['foo']['style']                  # => $('foo').style;
  page['foo']['style']['color']         # => $('blank_slate').style.color;
  page['foo']['style']['color'] = 'red' # => $('blank_slate').style.color = 'red';
  page['foo']['style'].color = 'red'    # => $('blank_slate').style.color = 'red';

Fixed that AssetTagHelper#image_tag and others using compute_public_path should not modify the incoming source argument (closes 5102) [eule@space.ch]
Deprecated the auto-appending of .png to AssetTagHelper#image_tag calls that doesn‘t have an extension [DHH]
Fixed FormOptionsHelper#select to respect :selected value 5813
Fixed TextHelper#simple_format to deal with multiple single returns within a single paragraph 5835 [moriq@moriq.com]
Fixed TextHelper#pluralize to handle 1 as a string 5909 [rails@bencurtis.com]
Improved resolution of DateHelper#distance_of_time_in_words for better precision 5994 [Bob Silva]
Changed that uncaught exceptions raised any where in the application will cause RAILS_ROOT/public/500.html to be read and shown instead of just the static "Application error (Rails)" [DHH]
Integration tests: thoroughly test ActionController::Integration::Session. 6022 [Kevin Clark]
```
  (tests skipped unless you `gem install mocha`)
```
Added deprecation language for pagination which will become a plugin by Rails 2.0 [DHH]
Added deprecation language for in_place_editor and auto_complete_field that both pieces will become plugins by Rails 2.0 [DHH]
Deprecated all of ActionController::Dependencies. All dependency loading is now handled from Active Support [DHH]
Added assert_select* for CSS selector-based testing (deprecates assert_tag) 5936 [assaf.arkin@gmail.com]
radio_button_tag generates unique id attributes. 3353 [Bob Silva, somekool@gmail.com]
strip_tags passes through blank args such as nil or "". 2229, 6702 [duncan@whomwah.com, dharana]
Cleanup assert_tag :children counting. 2181 [jamie@bravenet.com]
button_to accepts :method so you can PUT and DELETE with it. 6005 [Dan Webb]
Update sanitize text helper to strip plaintext tags, and <img src="javascript:bang">. [Rick Olson]
Update routing documentation. Closes 6017 [Nathan Witmer]
Add routing tests to assert that RoutingError is raised when conditions aren‘t met. Closes 6016 [Nathan Witmer]
Deprecation: update docs. 5998 [jakob@mentalized.net, Kevin Clark]
Make auto_link parse a greater subset of valid url formats. [Jamis Buck]
Integration tests: headers beginning with X aren‘t excluded from the HTTP_ prefix, so X-Requested-With becomes HTTP_X_REQUESTED_WITH as expected. [Mike Clark]
Tighten rescue clauses. 5985 [james@grayproductions.net]
Fix send_data documentation typo. 5982 [brad@madriska.com]
Switch to using FormEncodedPairParser for parsing request parameters. [Nicholas Seckar, DHH]
respond_to .html now always renders #{action_name}.rhtml so that registered custom template handlers do not override it in priority. Custom mime types require a block and throw proper error now. [Tobias Luetke]
Deprecation: test deprecated instance vars in partials. [Jeremy Kemper]
Add UrlWriter to allow writing urls from Mailers and scripts. [Nicholas Seckar]
Clean up and run the Active Record integration tests by default. 5854 [kevin.clark@gmail.com, Jeremy Kemper]
Correct example in cookies docs. 5832 [jessemerriman@warpmail.net]
Updated to script.aculo.us 1.6.2 [Thomas Fuchs]
Relax Routing‘s anchor pattern warning; it was preventing use of [^/] inside restrictions. [Nicholas Seckar]
Add controller_paths variable to Routing. [Nicholas Seckar]
Fix assert_redirected_to issue with named routes for module controllers. [Rick Olson]
Tweak RoutingError message to show option diffs, not just missing named route significant keys. [Rick Olson]
Invoke method_missing directly on hidden actions. Closes 3030. [Nicholas Seckar]
Require Tempfile explicitly for TestUploadedFile due to changes in class auto loading. [Rick Olson]
Add RoutingError exception when RouteSet fails to generate a path from a Named Route. [Rick Olson]
Replace Reloadable with Reloadable::Deprecated. [Nicholas Seckar]
Deprecation: check whether instance variables have been monkeyed with before assigning them to deprecation proxies. Raises a RuntimeError if so. [Jeremy Kemper]
Add support for the param_name parameter to the auto_complete_field helper. 5026 [david.a.williams@gmail.com]
Deprecation! @params, @session, @flash will be removed after 1.2. Use the corresponding instance methods instead. You‘ll get printed warnings during tests and logged warnings in dev mode when you access either instance variable directly. [Jeremy Kemper]
Make Routing noisy when an anchor regexp is assigned to a segment. 5674 [francois.beausoleil@gmail.com]
Added months and years to the resolution of DateHelper#distance_of_time_in_words, such that "60 days ago" becomes "2 months ago" 5611 [pjhyett@gmail.com]
Short documentation to mention use of Mime::Type.register. 5710 [choonkeat@gmail.com]
Make controller_path available as an instance method. 5724 [jmckible@gmail.com]
Update query parser to support adjacent hashes. [Nicholas Seckar]
Make action caching aware of different formats for the same action so that, e.g. foo.xml is cached separately from foo.html. Implicitly set content type when reading in cached content with mime revealing extensions so the entire onous isn‘t on the webserver. [Marcel Molina Jr.]
Restrict Request Method hacking with ?_method to POST requests. [Rick Olson]
Fix bug when passing multiple options to SimplyRestful, like :new => { :preview => :get, :draft => :get }. [Rick Olson, Josh Susser, Lars Pind]
Dup the options passed to map.resources so that multiple resources get the same options. [Rick Olson]
Fixed the new_#{resource}_url route and added named route tests for Simply Restful. [Rick Olson]

Added map.resources from the Simply Restful plugin [DHH]. Examples (the API has changed to use plurals!):

  map.resources :messages
  map.resources :messages, :comments
  map.resources :messages, :new => { :preview => :post }

Fixed that integration simulation of XHRs should set Accept header as well [Edward Frederick]
TestRequest#reset_session should restore a TestSession, not a hash [Koz]
Don‘t search a load-path of ’.’ for controller files [Jamis Buck]
Update integration.rb to require test_process explicitly instead of via Dependencies. [Nicholas Seckar]
Fixed that you can still access the flash after the flash has been reset in reset_session. Closes 5584 [lmarlow@yahoo.com]
Allow form_for and fields_for to work with indexed form inputs. [Jeremy Kemper, Matt Lyon]
<% form_for ‘post[]’, @post do |f| -%> <% end -%>
Remove leak in development mode by replacing define_method with module_eval. [Nicholas Seckar]
Provide support for decimal columns to form helpers. Closes 5672. [dave@pragprog.com]
Update documentation for erb trim syntax. 5651 [matt@mattmargolis.net]
Pass :id => nil or :class => nil to error_messages_for to supress that html attribute. 3586 [olivier_ansaldi@yahoo.com, sebastien@goetzilla.info]
Reset @html_document between requests so assert_tag works. 4810 [jarkko@jlaine.net, easleydp@gmail.com]
Update render :partial documentation. 5646 [matt@mattmargolis.net]
Integration tests behave well with render_component. 4632 [edward.frederick@revolution.com, dev.rubyonrails@maxdunn.com]
Added exception handling of missing layouts 5373 [chris@ozmm.org]
Fixed that real files and symlinks should be treated the same when compiling templates 5438 [zachary@panandscan.com]
Fixed that the flash should be reset when reset_session is called 5584 [shugo@ruby-lang.org]
Added special case for "1 Byte" in NumberHelper#number_to_human_size 5593 [murpyh@rubychan.de]
Fixed proper form-encoded parameter parsing for requests with "Content-Type: application/x-www-form-urlencoded; charset=utf-8" (note the presence of a charset directive) [DHH]
Add route_name_path method to generate only the path for a named routes. For example, map.person will add person_path. [Nicholas Seckar]
Avoid naming collision among compiled view methods. [Jeremy Kemper]
Fix CGI extensions when they expect string but get nil in Windows. Closes 5276 [mislav@nippur.irb.hr]
Determine the correct template_root for deeply nested components. 2841 [s.brink@web.de]
Fix that routes with *path segments in the recall can generate URLs. [Rick]
Fix strip_links so that it doesn‘t hang on multiline <acronym> tags [Jamis Buck]
Remove problematic control chars in rescue template. 5316 [Stefan Kaes]
Make sure passed routing options are not mutated by routing code. 5314 [Blair Zajac]
Make sure changing the controller from foo/bar to bing/bang does not change relative to foo. [Jamis Buck]
Escape the path before routing recognition. 3671
Make sure :id and friends are unescaped properly. 5275 [me@julik.nl]
Fix documentation for with_routing to reflect new reality. 5281 [rramdas@gmail.com]
Rewind readable CGI params so others may reread them (such as CGI::Session when passing the session id in a multipart form). 210 [mklame@atxeu.com, matthew@walker.wattle.id.au]
Added Mime::TEXT (text/plain) and Mime::ICS (text/calendar) as new default types [DHH]
Added Mime::Type.register(string, symbol, synonyms = []) for adding new custom mime types [DHH]. Example: Mime::Type.register("image/gif", :gif)
Added support for Mime objects in render :content_type option [DHH]. Example: render :text => some_atom, :content_type => Mime::ATOM
Add :status option to send_data and send_file. Defaults to ‘200 OK’. 5243 [Manfred Stienstra <m.stienstra@fngtps.com>]
Routing rewrite. Simpler, faster, easier to understand. The published API for config/routes.rb is unchanged, but nearly everything else is different, so expect breakage in plugins and libs that try to fiddle with routes. [Nicholas Seckar, Jamis Buck]
map.connect ’/foo/:id’, :controller => ’…’, :action => ’…’ map.connect ’/foo/:id.:format’, :controller => ’…’, :action => ’…’ map.connect ’/foo/:id’, …, :conditions => { :method => :get }
Cope with missing content type and length headers. Parse parameters from multipart and urlencoded request bodies only. [Jeremy Kemper]
Accept multipart PUT parameters. 5235 [guy.naor@famundo.com]
Added interrogation of params[:format] to determine Accept type. If :format is specified and matches a declared extension, like "rss" or "xml", that mime type will be put in front of the accept handler. This means you can link to the same action from different extensions and use that fact to determine output [DHH]. Example:
class WeblogController < ActionController::Base
```
  def index
    @posts = Post.find :all

    respond_to do |format|
      format.html
      format.xml { render :xml => @posts.to_xml }
      format.rss { render :action => "feed.rxml" }
    end
  end
```
end

# returns HTML when requested by a browser, since the browser # has the HTML mimetype at the top of its priority list Accept: text/html GET /weblog

# returns the XML Accept: application/xml GET /weblog

# returns the HTML Accept: application/xml GET /weblog.html

# returns the XML Accept: text/html GET /weblog.xml

All this relies on the fact that you have a route that includes .:format.
Expanded :method option in FormTagHelper#form_tag, FormHelper#form_for, PrototypeHelper#remote_form_for, PrototypeHelper#remote_form_tag, and PrototypeHelper#link_to_remote to allow for verbs other than GET and POST by automatically creating a hidden form field named _method, which will simulate the other verbs over post [DHH]
Added :method option to UrlHelper#link_to, which allows for using other verbs than GET for the link. This replaces the :post option, which is now deprecated. Example: link_to "Destroy", person_url(:id => person), :method => :delete [DHH]
follow_redirect doesn‘t complain about being redirected to the same controller. 5153 [dymo@mk.ukrtelecom.ua]
Add layout attribute to response object with the name of the layout that was rendered, or nil if none rendered. [Kevin Clark kevin.clark@gmail.com]
Fix NoMethodError when parsing params like &&. [Adam Greenfield]
Fix flip flopped logic in docs for url_for‘s :only_path option. Closes 4998. [esad@esse.at]
form.text_area handles the :size option just like the original text_area (:size => ‘60x10’ becomes cols="60" rows="10"). [Jeremy Kemper]
Excise ingrown code from FormOptionsHelper#options_for_select. 5008 [anonymous]
Small fix in routing to allow dynamic routes (broken after [4242]) [Rick]
```
  map.connect '*path', :controller => 'files', :action => 'show'
```
Replace alias method chaining with Module#alias_method_chain. [Marcel Molina Jr.]
Replace Ruby‘s deprecated append_features in favor of included. [Marcel Molina Jr.]
Use flush between switching from write to syswrite. Closes 4907. [Blair Zajac <blair@orcaware.com>]
Documentation fix: integration test scripts don‘t require integration_test. Closes 4914. [Frederick Ros <sl33p3r@free.fr>]
ActionController::Base Summary documentation rewrite. Closes 4900. [kevin.clark@gmail.com]
Fix text_helper.rb documentation rendering. Closes 4725. [Frederick Ros]
Fixes bad rendering of JavaScriptMacrosHelper rdoc (closes 4910) [Frederick Ros]
Allow error_messages_for to report errors for multiple objects, as well as support for customizing the name of the object in the error summary header. Closes 4186. [andrew@redlinesoftware.com, Marcel Molina Jr.]
error_messages_for :account, :user, :subscription, :object_name => :account
Enhance documentation for setting headers in integration tests. Skip auto HTTP prepending when its already there. Closes 4079. [Rick Olson]
Documentation for AbstractRequest. Closes 4895. [kevin.clark@gmail.com]
Refactor various InstanceTag instance method to class methods. Closes 4800. [skaes@web.de]
Remove all remaining references to @params in the documentation. [Marcel Molina Jr.]
Add documentation for redirect_to :back‘s RedirectBackError exception. [Marcel Molina Jr.]
Update layout and content_for documentation to use yield rather than magic @content_for instance variables. [Marcel Molina Jr.]
Fix assert_redirected_to tests according to real-world usage. Also, don‘t fail if you add an extra :controller option: [Rick]
```
  redirect_to :action => 'new'
  assert_redirected_to :controller => 'monkeys', :action => 'new'
```
Cache CgiRequest#request_parameters so that multiple calls don‘t re-parse multipart data. [Rick]

Diff compared routing options. Allow assert_recognizes to take a second arg as a hash to specify optional request method [Rick]

  assert_recognizes({:controller => 'users', :action => 'index'}, 'users')
  assert_recognizes({:controller => 'users', :action => 'create'}, {:path => 'users', :method => :post})

Diff compared options with assert_redirected_to [Rick]
Add support in routes for semicolon delimited "subpaths", like /books/:id;:action [Jamis Buck]
Change link_to_function and button_to_function to (optionally) take an update_page block instead of a JavaScript string. Closes 4804. [zraii@comcast.net, Sam Stephenson]
Fixed that remote_form_for can leave out the object parameter and default to the instance variable of the object_name, just like form_for [DHH]
Modify routing so that you can say :require => { :method => :post } for a route, and the route will never be selected unless the request method is POST. Only works for route recognition, not for route generation. [Jamis Buck]
Added :add_headers option to verify which merges a hash of name/value pairs into the response‘s headers hash if the prerequisites cannot be satisfied. [Sam Stephenson] ex. verify :only => :speak, :method => :post,
```
           :render => { :status => 405, :text => "Must be post" },
           :add_headers => { "Allow" => "POST" }
```
Added ActionController.filter_parameter_logging that makes it easy to remove passwords, credit card numbers, and other sensitive information from being logged when a request is handled 1897 [jeremye@bsa.ca.gov]

*1.13.3* (March 12th, 2007)

Apply [5709] to stable.
session_enabled? works with session :off. 6680 [Catfish]
Performance: patch cgi/session to require digest/md5 once rather than per create_new_id. [Stefan Kaes]

*1.13.2* (February 5th, 2007)

Add much-needed html-scanner tests. Fixed CDATA parsing bug. [Rick]
improve error message for Routing for named routes. [Rob Sanheim]
Added enhanced docs to routing assertions. [Rob Sanheim]
fix form_for example in ActionController::Resources documentation. [gnarg]
Add singleton resources from trunk [Rick Olson]
select :multiple => true suffixes the attribute name with [] unless already suffixed. 6977 [nik.kakelin, ben, julik]
Improve routes documentation. 7095 [zackchandler]
Resource member routes require :id, eliminating the ambiguous overlap with collection routes. 7229 [dkubb]
Fixed NumberHelper#number_with_delimiter to use "." always for splitting the original number, not the delimiter parameter 7389 [ceefour]
Autolinking recognizes trailing and embedded . , : ; 7354 [Jarkko Laine]
Make TextHelper::auto_link recognize URLs with colons in path correctly, fixes 7268. [imajes]
Improved auto_link to match more valid urls correctly [Tobias Luetke]

*1.13.1* (January 18th, 2007)

Fixed content-type bug in Prototype [sam]

*1.13.0* (January 16th, 2007)

Modernize cookie testing code, and increase coverage (Heckle++) 7101 [Kevin Clark]
Heckling ActionController::Resources::Resource revealed that set_prefixes didn‘t break when :name_prefix was munged. 7081 [Kevin Clark]
Update to Prototype 1.5.0. [Sam Stephenson]
Allow exempt_from_layout :rhtml. 6742, 7026 [dcmanges, Squeegy]
Fix parsing of array[] CGI parameters so extra empty values aren‘t included. 6252 [Nicholas Seckar, aiwilliams, brentrowland]
link_to_unless_current works with full URLs as well as paths. 6891 [Jarkko Laine, manfred, idrifter]
Fix HTML::Node to output double quotes instead of single quotes. Closes 6845 [mitreandy]
Fix no method error with error_messages_on. Closes 6935 [nik.wakelin Koz]
Slight doc tweak to the ActionView::Helpers::PrototypeHelper#replace docs. Closes 6922 [Steven Bristol]
Slight doc tweak to prepend_filter. Closes 6493 [Jeremy Voorhis]
Add more extensive documentation to the AssetTagHelper. Closes 6452 [Bob Silva]
Clean up multiple calls to stringify_keys in TagHelper, add better documentation and testing for TagHelper. Closes 6394 [Bob Silva]
[DOCS] fix reference to ActionController::Macros::AutoComplete for text_field_with_auto_complete. Closes 2578 [Jan Prill]
Make sure html_document is reset between integration test requests. [ctm]
Set session to an empty hash if :new_session => false and no session cookie or param is present. CGI::Session was raising an unrescued ArgumentError. [Josh Susser]
Fix assert_redirected_to bug where redirecting from a nested to to a top-level controller incorrectly added the current controller‘s nesting. Closes 6128. [Rick Olson]
Ensure render :json => … skips the layout. 6808 [Josh Peek]
Silence log_error deprecation warnings from inspecting deprecated instance variables. [Nate Wiger]
Only cache GET requests with a 200 OK response. 6514, 6743 [RSL, anamba]
Correctly report which filter halted the chain. 6699 [Martin Emde]
respond_to recognizes JSON. render :json => @person.to_json automatically sets the content type and takes a :callback option to specify a client-side function to call using the rendered JSON as an argument. 4185 [Scott Raymond, eventualbuddha]
```
  # application/json response with body 'Element.show({:name: "David"})'
  respond_to do |format|
    format.json { render :json => { :name => "David" }.to_json, :callback => 'Element.show' }
  end
```
Makes :discard_year work without breaking multi-attribute parsing in AR. 1260, 3800 [sean@ardismg.com, jmartin@desertflood.com, stephen@touset.org, Bob Silva]
Adds html id attribute to date helper elements. 1050, 1382 [mortonda@dgrmm.net, David North, Bob Silva]
Add :index and @auto_index capability to model driven date/time selects. 847, 2655 [moriq, Doug Fales, Bob Silva]
Add :order to datetime_select, select_datetime, and select_date. 1427 [Timothee Peignier, patrick@lenz.sh, Bob Silva]
Added time_select to work with time values in models. Update scaffolding. 2489, 2833 [Justin Palmer, Andre Caum, Bob Silva]
Added :include_seconds to select_datetime, datetime_select and time_select. 2998 [csn, Bob Silva]
All date/datetime selects can now accept an array of month names with :use_month_names. Allows for localization. 363 [tomasj, Bob Silva]
Adds :time_separator to select_time and :date_separator to select_datetime. Preserves BC. 3811 [Bob Silva]
@response.redirect_url works with 201 Created responses: just return headers[‘Location’] rather than checking the response status. [Jeremy Kemper]
Fixed that HEAD should return the proper Content-Length header (that is, actually use @body.size, not just 0) [DHH]
Added GET-masquarading for HEAD, so request.method will return :get even for HEADs. This will help anyone relying on case request.method to automatically work with HEAD and map.resources will also allow HEADs to all GET actions. Rails automatically throws away the response content in a reply to HEAD, so you don‘t even need to worry about that. If you, for whatever reason, still need to distinguish between GET and HEAD in some edge case, you can use Request#head? and even Request.headers["REQUEST_METHOD"] for get the "real" answer. Closes 6694 [DHH]

*1.13.0 RC1* (r5619, November 22nd, 2006)

Update Routing to complain when :controller is not specified by a route. Closes 6669. [Nicholas Seckar]
Ensure render_to_string cleans up after itself when an exception is raised. 6658 [rsanheim]
Update to Prototype and script.aculo.us [5579]. [Sam Stephenson, Thomas Fuchs]
simple_format helper doesn‘t choke on nil. 6644 [jerry426]
Reuse named route helper module between Routing reloads. Use remove_method to delete named route methods after each load. Since the module is never collected, this fixes a significant memory leak. [Nicholas Seckar]
Deprecate standalone components. [Jeremy Kemper]
Always clear model associations from session. 4795 [sd@notso.net, andylien@gmail.com]
Remove JavaScriptLiteral in favor of ActiveSupport::JSON::Variable. [Sam Stephenson]
Sync ActionController::StatusCodes::STATUS_CODES with www.iana.org/assignments/http-status-codes. 6586 [dkubb]
Multipart form values may have a content type without being treated as uploaded files if they do not provide a filename. 6401 [Andreas Schwarz, Jeremy Kemper]