annotate config/initializers/new_framework_defaults.rb @ 211:e07f6ea17deb

Less xhtml more escaping It looks like some older tweets aren't quite escaped properly for xhtml. Example (assuming not deleted): https://twitter.com/aaaa/status/169688458900668416
author nanaya <me@nanaya.pro>
date Fri, 11 Dec 2020 03:31:25 +0900
parents d5a0d66ee457
children
Ignore whitespace changes - Everywhere: Within whitespace: At end of lines:
rev   line source
89
d5a0d66ee457 Finish updating to rails 5
nanaya <me@myconan.net>
parents:
diff changeset
1 # Be sure to restart your server when you modify this file.
d5a0d66ee457 Finish updating to rails 5
nanaya <me@myconan.net>
parents:
diff changeset
2 #
d5a0d66ee457 Finish updating to rails 5
nanaya <me@myconan.net>
parents:
diff changeset
3 # This file contains migration options to ease your Rails 5.0 upgrade.
d5a0d66ee457 Finish updating to rails 5
nanaya <me@myconan.net>
parents:
diff changeset
4 #
d5a0d66ee457 Finish updating to rails 5
nanaya <me@myconan.net>
parents:
diff changeset
5 # Read the Rails 5.0 release notes for more info on each option.
d5a0d66ee457 Finish updating to rails 5
nanaya <me@myconan.net>
parents:
diff changeset
6
d5a0d66ee457 Finish updating to rails 5
nanaya <me@myconan.net>
parents:
diff changeset
7 # Enable per-form CSRF tokens. Previous versions had false.
d5a0d66ee457 Finish updating to rails 5
nanaya <me@myconan.net>
parents:
diff changeset
8 # Rails.application.config.action_controller.per_form_csrf_tokens = true
d5a0d66ee457 Finish updating to rails 5
nanaya <me@myconan.net>
parents:
diff changeset
9
d5a0d66ee457 Finish updating to rails 5
nanaya <me@myconan.net>
parents:
diff changeset
10 # Enable origin-checking CSRF mitigation. Previous versions had false.
d5a0d66ee457 Finish updating to rails 5
nanaya <me@myconan.net>
parents:
diff changeset
11 # Rails.application.config.action_controller.forgery_protection_origin_check = true
d5a0d66ee457 Finish updating to rails 5
nanaya <me@myconan.net>
parents:
diff changeset
12
d5a0d66ee457 Finish updating to rails 5
nanaya <me@myconan.net>
parents:
diff changeset
13 # Make Ruby 2.4 preserve the timezone of the receiver when calling `to_time`.
d5a0d66ee457 Finish updating to rails 5
nanaya <me@myconan.net>
parents:
diff changeset
14 # Previous versions had false.
d5a0d66ee457 Finish updating to rails 5
nanaya <me@myconan.net>
parents:
diff changeset
15 ActiveSupport.to_time_preserves_timezone = true
d5a0d66ee457 Finish updating to rails 5
nanaya <me@myconan.net>
parents:
diff changeset
16
d5a0d66ee457 Finish updating to rails 5
nanaya <me@myconan.net>
parents:
diff changeset
17 # Require `belongs_to` associations by default. Previous versions had false.
d5a0d66ee457 Finish updating to rails 5
nanaya <me@myconan.net>
parents:
diff changeset
18 # Rails.application.config.active_record.belongs_to_required_by_default = true
d5a0d66ee457 Finish updating to rails 5
nanaya <me@myconan.net>
parents:
diff changeset
19
d5a0d66ee457 Finish updating to rails 5
nanaya <me@myconan.net>
parents:
diff changeset
20 # Do not halt callback chains when a callback returns false. Previous versions had true.
d5a0d66ee457 Finish updating to rails 5
nanaya <me@myconan.net>
parents:
diff changeset
21 # ActiveSupport.halt_callback_chains_on_return_false = false
d5a0d66ee457 Finish updating to rails 5
nanaya <me@myconan.net>
parents:
diff changeset
22
d5a0d66ee457 Finish updating to rails 5
nanaya <me@myconan.net>
parents:
diff changeset
23 # Configure SSL options to enable HSTS with subdomains. Previous versions had false.
d5a0d66ee457 Finish updating to rails 5
nanaya <me@myconan.net>
parents:
diff changeset
24 # Rails.application.config.ssl_options = { hsts: { subdomains: true } }