Rails 3 提供了 match 方法供我们自定义 routes,然而我们要小心使用它以避免“跨站脚本攻击”(XSS Attack)。比如像这样的 routes:
注:(r3 代表 Rails 3,r4 代表 Rails 4)
# routes.rb
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| /* | |
| * Grammar to generate an S-Expressions parser for Javascript using http://pegjs.majda.cz/ | |
| */ | |
| start | |
| = expression* | |
| integer "integer" | |
| = digits:[0-9]+ { return parseInt(digits.join(""), 10); } |
bshamric
/ cache.js
Last active
January 24, 2021 12:08
I like phantomjs, but it doesn't directly support getting images from webpages without requesting them separately like in casperjs. I went through QTNetworking code in the phantomjs repo until I figured out where the cache was. To use this, have all three files in the same directory. Then modify test.js for whatever you need. Call phantom js wit…
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| var fs = require('fs'); | |
| //this is the path that QTNetwork classes uses for caching files for it's http client | |
| //the path should be the one that has 16 folders labeled 0,1,2,3,...,F | |
| exports.cachePath = '/path/to/phantomjs/cache/data/folder'; | |
| //this is the extension used for files in the cache path | |
| exports.cacheExtension = "d"; | |
| //the resources that are to be saved |
BrendanEich
/ gist:5753666
Created
June 11, 2013 00:36
ES6 version of Peter Norvig's Sudoku solver originally written in Python
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| // XXX should be standard (and named clone, after Java?) | |
| Object.prototype.copy = function () { | |
| let o = {} | |
| for (let i in this) | |
| o[i] = this[i] | |
| return o | |
| } | |
| // Containment testing for arrays and strings that should be coherent with their iterator. | |
| Array.prototype.contains = String.prototype.contains = function (e) { |
TCTicketScript是一段浏览器脚本,帮你自动查询火车票余票。
- 请使用Chrome浏览器;
- 拖拽这个链接到你的书签栏,抢票工具,拷贝下面的代码;
javascript:var QPscript=document.createElement('script');QPscript.src='https://gist.github.com/oklai/6533698/raw/4c29378caebcc0fe9c80f2592f0951846ece1e04/TCTicketScript.js';document.body.appendChild(QPscript);
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| var web = require('webjs'); | |
| var redis = require('redis'); | |
| var client = redis.createClient(); | |
| // webjs style | |
| web.run(process.argv[2] || 8080) | |
| .config({ | |
| 'views': __dirname + '/views', | |
| 'view engine': 'ejs', // jade, etc. |
Javascript #router. Features:
- Just 70 lines of code.
- Router scope can be bound to any object (default window); just change first parameter
- Triggers custom DOM (Level 2) events on window.document.
- IE 9+, FF, and Webkit based browsers [Tested only in Chrome and FF].
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| define('mods/xss',function(require,exports,module){ | |
| /** | |
| * 过滤XSS攻击 | |
| * | |
| * @author 老雷<[email protected]> | |
| */ | |
| /* | |
| * 默认HTML标签白名单 | |
| * 标签名=>属性列表 |
staltz
/ introrx.md
Last active
May 9, 2025 12:50
The introduction to Reactive Programming you've been missing
(by @andrestaltz)
If you prefer to watch video tutorials with live-coding, then check out this series I recorded with the same contents as in this article: Egghead.io - Introduction to Reactive Programming.
chunpu
/ jquery-animate.js
Last active
August 29, 2015 14:04
jQuery css3 animate, if browser support css3 transition, use it. (ps: however, the performance is not obvious improved, and it is not in promise queue, so just for simplest situation)
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| !function($, doc) { | |
| if (!$ || !$.fn) return | |
| var css3 = function() { | |
| var style = doc.body.style | |
| var test = ['transition', 'webkitTransition', 'MozTransition', 'msTransition'] | |
| for (var i = 0, x; x = test[i++];) { | |
| if (x in style) { | |
| return x | |
| } |
OlderNewer