Author: assaf
Date: Tue May 27 12:54:23 2008
New Revision: 660671
URL: http://svn.apache.org/viewvc?rev=660671&view=rev
Log:
Added protection from forgery, and therefore removed task actions from Atom
feed.
Fixed logout link to discard session.
Modified:
ode/sandbox/singleshot/NOTICE
ode/sandbox/singleshot/app/controllers/application.rb
ode/sandbox/singleshot/app/views/layouts/application.html.erb
ode/sandbox/singleshot/app/views/tasks/index.atom.builder
Modified: ode/sandbox/singleshot/NOTICE
URL:
http://svn.apache.org/viewvc/ode/sandbox/singleshot/NOTICE?rev=660671&r1=660670&r2=660671&view=diff
==============================================================================
--- ode/sandbox/singleshot/NOTICE (original)
+++ ode/sandbox/singleshot/NOTICE Tue May 27 12:54:23 2008
@@ -1,4 +1,6 @@
Apache Singleshot
+Copyright 2008 The Apache Software Foundation
+
This product includes software developed at
The Apache Software Foundation (http://www.apache.org/).
Modified: ode/sandbox/singleshot/app/controllers/application.rb
URL:
http://svn.apache.org/viewvc/ode/sandbox/singleshot/app/controllers/application.rb?rev=660671&r1=660670&r2=660671&view=diff
==============================================================================
--- ode/sandbox/singleshot/app/controllers/application.rb (original)
+++ ode/sandbox/singleshot/app/controllers/application.rb Tue May 27 12:54:23
2008
@@ -5,10 +5,6 @@
helper :all # include all helpers, all the time
- # See ActionController::RequestForgeryProtection for details
- # Uncomment the :secret if you're not using the cookie session store
- protect_from_forgery # :secret => '{secret}}'
-
# See ActionController::Base for details
# Uncomment this to filter the contents of submitted sensitive data
parameters
# from your application log (in this case, all fields with names like
"password").
@@ -21,6 +17,10 @@
# authentication on all other content types (JSON, iCal, etc).
session :off, :if=>lambda { |req| !(req.format.html? || req.xhr?) }
+ # See ActionController::RequestForgeryProtection for details
+ # Uncomment the :secret if you're not using the cookie session store
+ protect_from_forgery # :secret => '{secret}}'
+
before_filter :authenticate
# Authentication filter, added by default on all actions in all controllers.
Modified: ode/sandbox/singleshot/app/views/layouts/application.html.erb
URL:
http://svn.apache.org/viewvc/ode/sandbox/singleshot/app/views/layouts/application.html.erb?rev=660671&r1=660670&r2=660671&view=diff
==============================================================================
--- ode/sandbox/singleshot/app/views/layouts/application.html.erb (original)
+++ ode/sandbox/singleshot/app/views/layouts/application.html.erb Tue May 27
12:54:23 2008
@@ -10,7 +10,7 @@
</head>
<body>
<div id='header'>
- <ul class='links'><li><%= link_to 'Logout',
session_url(:method=>:delete) %></li></ul>
+ <ul class='links'><li><%= link_to 'Logout', session_url,
:method=>:delete %></li></ul>
<ul class='tabs'><%=
[ ['â Tasks', tasks_url, 'Pending and available tasks'],
['Following', following_tasks_url, 'Tasks you create, observing or
administrating'],
Modified: ode/sandbox/singleshot/app/views/tasks/index.atom.builder
URL:
http://svn.apache.org/viewvc/ode/sandbox/singleshot/app/views/tasks/index.atom.builder?rev=660671&r1=660670&r2=660671&view=diff
==============================================================================
--- ode/sandbox/singleshot/app/views/tasks/index.atom.builder (original)
+++ ode/sandbox/singleshot/app/views/tasks/index.atom.builder Tue May 27
12:54:23 2008
@@ -8,7 +8,6 @@
entry.content :type=>'html' do |content|
content.text! sanitize(simple_format(task.description))
content.text! "<p><em>#{task_vitals(task)}</em></p>"
- content.text! "<div>#{quick_actions(task)}</div>"
end
end
end
