On 10.02.2011 02:23, Jenna Fox wrote:
class LoadScript < R '/(.*).js'
def get(script)
@headers['Content-Type'] = 'text/javascript; charset=utf-8'
return File.read("my scripts/#{script}.js");
end
end
remember [http://en.wikipedia.org/wiki/Directory_traversal] – even if you accor
access to just .js files it’s not good practice to use ‘script’ unchecked.
– Matthias
_______________________________________________
Camping-list mailing list
[email protected]
http://rubyforge.org/mailman/listinfo/camping-list
