Changeset 8578

Timestamp:

01/06/08 20:53:23 (4 months ago)

Author:

bitsweat

Message:

The asset_host block takes the controller request as an optional second argument. Example: use a single asset host for SSL requests. Closes #10549.

Files:

• trunk/actionpack/CHANGELOG (modified) (1 diff)
• trunk/actionpack/lib/action_controller/cgi_process.rb (modified) (3 diffs)
• trunk/actionpack/lib/action_view/helpers/asset_tag_helper.rb (modified) (3 diffs)
• trunk/actionpack/lib/action_view/template_handlers/erb.rb (modified) (1 diff)
• trunk/actionpack/test/template/asset_tag_helper_test.rb (modified) (3 diffs)

trunk/actionpack/CHANGELOG

@@ -1 +1 @@
-*SVN*
+
+* The asset_host block takes the controller request as an optional second argument. Example: use a single asset host for SSL requests.  #10549 [Cheah Chu Yeow, Peter B, Tom Taylor]
-
-* Support render :text => nil.  #6684 [tjennings, PotatoSalad, Cheah Chu Yeow]

trunk/actionpack/lib/action_controller/cgi_process.rb

@@ -4 +4 @@
-module ActionController #:nodoc:
-  class Base
-n
+
-    # sessions (large performance increase if sessions are not needed). The <tt>session_options</tt> are the same as for CGI::Session:
-    #
@@ -18 +18 @@
-    # * <tt>:session_expires</tt> - the time the current session expires, as a +Time+ object.  If not set, the session will continue
-    #   indefinitely.
- 
+
-    #   server.
-    # * <tt>:session_secure</tt> - if +true+, this session will only work over HTTPS.
@@ -35 +35 @@
-  class CgiRequest < AbstractRequest #:nodoc:
-    attr_accessor :cgi, :session_options
-
+
+
-
-    DEFAULT_SESSION_OPTIONS = {

trunk/actionpack/lib/action_view/helpers/asset_tag_helper.rb

@@ -51 +51 @@
-    #     => <link href="http://assets1.example.com/stylesheets/application.css" media="screen" rel="stylesheet" type="text/css" />
-    #
-
-
+
+
+
+
-    #
-    #    ActionController::Base.asset_host = Proc.new { |source|
@@ -65 +67 @@
-    #   stylesheet_include_tag("application")
-    #     => <link href="http://assets.example.com/stylesheets/application.css" media="screen" rel="stylesheet" type="text/css" />
+    #
+    # The optional <tt>request</tt> parameter to the proc is useful in particular for serving assets from an
+    # SSL-protected page. The example proc below disables asset hosting for HTTPS connections, while still sending
+    # assets for plain HTTP requests from asset hosts. This is useful for avoiding mixed media warnings when serving
+    # non-HTTP assets from HTTPS web pages when you don't have an SSL certificate for each of the asset hosts.
+    #
+    #   ActionController::Base.asset_host = Proc.new { |source, request|
+    #     if request.ssl?
+    #       "#{request.protocol}#{request.host_with_port}"
+    #     else
+    #       "#{request.protocol}assets.example.com"
+    #     end
+    #   }
-    #
-    # === Using asset timestamps
@@ -462 +477 @@
-          if host = ActionController::Base.asset_host
-            if host.is_a?(Proc)
-
+
+
+
+
+
+
-            else
-              host % (source.hash % 4)

trunk/actionpack/lib/action_view/template_handlers/erb.rb

@@ -5 +5 @@
-    HTML_ESCAPE = { '&' => '&amp;', '"' => '&quot;', '>' => '&gt;', '<' => '&lt;' }
-
+    # A utility method for escaping HTML tag characters.
+    # This method is also aliased as <tt>h</tt>.
+    #
+    # In your ERb templates, use this method to escape any unsafe content. For example:
+    #   <%=h @person.name %>
+    #
+    # ==== Example:
+    #   puts html_escape("is a > 0 & a < 10?")
+    #   # => is a &gt; 0 &amp; a &lt; 10?
-    def html_escape(s)
-      s.to_s.gsub(/[&"><]/) { |special| HTML_ESCAPE[special] }

trunk/actionpack/test/template/asset_tag_helper_test.rb

@@ -35 +35 @@
-      def relative_url_root() "" end
-      def protocol() 'http://' end
+      def ssl?() false end
+      def host_with_port() 'localhost' end
-    end.new
-
@@ -249 +251 @@
-
-  def test_caching_javascript_include_tag_when_caching_on_with_proc_asset_host
-"RAILS_ASSET_ID"] = ""
+'RAILS_ASSET_ID'] = ''
-    ActionController::Base.asset_host = Proc.new { |source| "http://a#{source.length}.example.com" }
-    ActionController::Base.perform_caching = true
@@ -263 +265 @@
-  ensure
-    FileUtils.rm_f(File.join(ActionView::Helpers::AssetTagHelper::JAVASCRIPTS_DIR, 'scripts.js'))
+  end
+
+  def test_caching_javascript_include_tag_when_caching_on_with_2_argument_proc_asset_host
+    ENV['RAILS_ASSET_ID'] = ''
+    ActionController::Base.asset_host = Proc.new { |source, request|
+      if request.ssl?
+        "#{request.protocol}#{request.host_with_port}"
+      else
+        "#{request.protocol}assets#{source.length}.example.com"
+      end
+    }
+    ActionController::Base.perform_caching = true
+
+    assert_equal '/javascripts/vanilla.js'.length, 23
+    assert_dom_equal(
+      %(<script src="http://assets23.example.com/javascripts/vanilla.js" type="text/javascript"></script>),
+      javascript_include_tag(:all, :cache => 'vanilla')
+    )
+
+    assert File.exist?(File.join(ActionView::Helpers::AssetTagHelper::JAVASCRIPTS_DIR, 'vanilla.js'))
+
+    class << @controller.request
+      def protocol() 'https://' end
+      def ssl?() true end
+    end
+
+    assert_equal '/javascripts/secure.js'.length, 22
+    assert_dom_equal(
+      %(<script src="https://localhost/javascripts/secure.js" type="text/javascript"></script>),
+      javascript_include_tag(:all, :cache => 'secure')
+    )
+
+    assert File.exist?(File.join(ActionView::Helpers::AssetTagHelper::JAVASCRIPTS_DIR, 'secure.js'))
+
+  ensure
+    FileUtils.rm_f(File.join(ActionView::Helpers::AssetTagHelper::JAVASCRIPTS_DIR, 'vanilla.js'))
+    FileUtils.rm_f(File.join(ActionView::Helpers::AssetTagHelper::JAVASCRIPTS_DIR, 'secure.js'))
-  end
-