Upgrade to Rails 2.0.2

Upgraded to Rails 2.0.2, except that we maintain vendor/rails/actionpack/lib/action_controller/routing.rb from Rail 1.2.6 (at least for now), so that Routes don't change. We still get to enjoy Rails's many new features. Also fixed a bug in Chunk-handling: disable WikiWord processing in tags (for real this time).
2007-12-21 01:48:59 -06:00 · 2007-12-21 01:48:59 -06:00 · 6873fc8026
commit 6873fc8026
parent 0f6889e09f
1083 changed files with 52810 additions and 41058 deletions
--- a/vendor/rails/actionpack/lib/action_controller/verification.rb
+++ b/vendor/rails/actionpack/lib/action_controller/verification.rb
@ -12,7 +12,8 @@ module ActionController #:nodoc:
    # parameters being set, or without certain session values existing.
    #
    # When a verification is violated, values may be inserted into the flash, and
-    # a specified redirection is triggered.
+    # a specified redirection is triggered. If no specific action is configured,
+    # verification failures will by default result in a 400 Bad Request response.
    #
    # Usage:
    #
@ -42,37 +43,37 @@ module ActionController #:nodoc:
      # the user is redirected to a different action. The +options+ parameter
      # is a hash consisting of the following key/value pairs:
      #
-      # * <tt>:params</tt>: a single key or an array of keys that must
+      # * <tt>:params</tt> - a single key or an array of keys that must
      #   be in the <tt>params</tt> hash in order for the action(s) to be safely
      #   called.
-      # * <tt>:session</tt>: a single key or an array of keys that must
+      # * <tt>:session</tt> - a single key or an array of keys that must
      #   be in the <tt>session</tt> in order for the action(s) to be safely called.
-      # * <tt>:flash</tt>: a single key or an array of keys that must
+      # * <tt>:flash</tt> - a single key or an array of keys that must
      #   be in the flash in order for the action(s) to be safely called.
-      # * <tt>:method</tt>: a single key or an array of keys--any one of which
+      # * <tt>:method</tt> - a single key or an array of keys--any one of which
      #   must match the current request method in order for the action(s) to
      #   be safely called. (The key should be a symbol: <tt>:get</tt> or
      #   <tt>:post</tt>, for example.)
-      # * <tt>:xhr</tt>: true/false option to ensure that the request is coming
+      # * <tt>:xhr</tt> - true/false option to ensure that the request is coming
      #   from an Ajax call or not. 
-      # * <tt>:add_flash</tt>: a hash of name/value pairs that should be merged
+      # * <tt>:add_flash</tt> - a hash of name/value pairs that should be merged
      #   into the session's flash if the prerequisites cannot be satisfied.
-      # * <tt>:add_headers</tt>: a hash of name/value pairs that should be
+      # * <tt>:add_headers</tt> - a hash of name/value pairs that should be
      #   merged into the response's headers hash if the prerequisites cannot
      #   be satisfied.
-      # * <tt>:redirect_to</tt>: the redirection parameters to be used when
+      # * <tt>:redirect_to</tt> - the redirection parameters to be used when
      #   redirecting if the prerequisites cannot be satisfied. You can 
      #   redirect either to named route or to the action in some controller.
-      # * <tt>:render</tt>: the render parameters to be used when
+      # * <tt>:render</tt> - the render parameters to be used when
      #   the prerequisites cannot be satisfied.
-      # * <tt>:only</tt>: only apply this verification to the actions specified
+      # * <tt>:only</tt> - only apply this verification to the actions specified
      #   in the associated array (may also be a single value).
-      # * <tt>:except</tt>: do not apply this verification to the actions
+      # * <tt>:except</tt> - do not apply this verification to the actions
      #   specified in the associated array (may also be a single value).
      def verify(options={})
        filter_opts = { :only => options[:only], :except => options[:except] }
        before_filter(filter_opts) do |c|
-          c.send :verify_action, options
+          c.send! :verify_action, options
        end
      end
    end
@ -81,7 +82,7 @@ module ActionController #:nodoc:
      prereqs_invalid =
        [*options[:params] ].find { |v| params[v].nil?  } ||
        [*options[:session]].find { |v| session[v].nil? } ||
-        [*options[:flash]  ].find { |v| flash[v].nil?    }
+        [*options[:flash]  ].find { |v| flash[v].nil?   }
      
      if !prereqs_invalid && options[:method]
        prereqs_invalid ||= 
@ -93,16 +94,21 @@ module ActionController #:nodoc:
      if prereqs_invalid
        flash.update(options[:add_flash]) if options[:add_flash]
        response.headers.update(options[:add_headers]) if options[:add_headers]
-        unless performed?
-          render(options[:render]) if options[:render]
-          options[:redirect_to] = self.send(options[:redirect_to]) if options[:redirect_to].is_a? Symbol
-          redirect_to(options[:redirect_to]) if options[:redirect_to]
-        end
-        return false
-      end

-      true
+        unless performed?
+          case
+          when options[:render]
+            render(options[:render])
+          when options[:redirect_to]
+            options[:redirect_to] = self.send!(options[:redirect_to]) if options[:redirect_to].is_a?(Symbol)
+            redirect_to(options[:redirect_to])
+          else
+            head(:bad_request)
+          end
+        end
+      end
    end
+
    private :verify_action
  end
-end
+end