165357bfa3
refactor(forms): remove useless imports
...
Remove useless imports and change `bindings` to `providers` inside
`@Component` and `@Directive`.
Closes #7904
2016-05-20 13:13:27 -07:00
33c7f74cb9
style(platform/browser): fix type spacing
...
Closes #7980
2016-05-20 13:05:40 -07:00
cb84cbf545
feat(shadow_css): add encapsulation support for CSS @supports at-rule
...
Closes #7944
2016-05-20 13:02:24 -07:00
b2e0946696
fix(Request): Change Request.text's return type to string
...
Change the return typing for the .text method to `string` so typescript treats it
like a normal string.
Closes #8138
2016-05-20 12:57:31 -07:00
67c80fbb5e
fix(compiler): support string tokens with `.` inside.
...
Closes #8178
2016-05-20 12:56:02 -07:00
0035575c82
build: turn on tsc's stripInternal when producint public d.ts file
...
I also made some changes to fix imports and remove some stuff that caused
breakage once stripInternals was turned on.
2016-05-20 10:59:57 -07:00
1bff47f97d
docs: fix syntax errors in HostBinding metadata example
...
add missing parentheses to getters, remove erroneous brackets in HostBindings
Closes #8269
2016-05-20 10:56:11 -07:00
e8e61de28d
refactor(WebWorker): move XHR worker side
2016-05-20 10:48:55 -07:00
54f8308999
refactor(browser): merge static & dynamic platforms
2016-05-20 10:48:55 -07:00
6c99746f0b
Update tools.ts
...
Closes #8296
2016-05-20 10:12:54 -07:00
4086b49046
feat(enableDebugTools): return ComponentRef
...
allows for
```
bootstrap(App, [
...HTTP_PROVIDERS,
...ROUTER_PROVIDERS
])
.then(enableDebugTools)
```
without breaking the rule of always returning a value in a promise
2016-05-20 10:12:54 -07:00
19e65382f7
fix(core): accurate dev mode message for dart ( #8403 )
2016-05-20 10:01:39 -07:00
c6f2b3e96b
docs(router): fix import and replace RouteConfig ( #8433 )
2016-05-20 10:00:04 -07:00
55921be1af
fix(router-deprecated): export RootRoute
...
Fix #8449
Closes #8450
2016-05-20 09:59:21 -07:00
3857c8226e
docs(MockConnection) update mockRespond usage example ( #8487 )
...
Closes : #8486
2016-05-20 09:19:59 -07:00
595bcdd1ac
fix(router): browser back and forward buttons not working correctly.
...
Closes #8524
Closes #8532
2016-05-19 22:42:08 -07:00
aec95015f8
docs(http): update http docs to mention .map operator
...
Closes #5947
2016-05-19 22:15:26 -07:00
390046d7b3
feat(AsyncPipe): allow onError argument
...
Closes #7990
2016-05-19 16:49:28 -07:00
587c119c75
feat(NgZone): isStable
...
Closes #8108
2016-05-19 16:10:08 -07:00
3019140e7e
feat(http): set the statusText property from the XMLHttpRequest instance
...
Closes #4162
2016-05-19 15:58:59 -07:00
7a80f0d1e1
change property and event to use camel case
...
Closes #6580
2016-05-19 15:21:54 -07:00
0894318f50
change property and event to use camel case:
...
* some-property -> someProperty
* some-event -> someEvent
Closes #6609
2016-05-19 15:20:34 -07:00
9019c6f937
Condition using component as well.
...
Closes #7755
2016-05-19 15:15:25 -07:00
166b73f4f3
Condition using urlPath, component is null on UnresolvedException of child AsyncRoute.
2016-05-19 15:15:25 -07:00
cb94111f18
style(Forms): remove unused imports
...
remove unused imports from the forms package
2016-05-19 14:50:33 -07:00
a88b887a05
docs(cheatsheet): Document SVG idiosyncrasies ( #6055 )
2016-05-19 10:20:08 -07:00
6e62217b78
fix(WebWorker): remove the platform-browser dependency on compiler
2016-05-18 16:23:09 -07:00
a01a54c180
adds 'repository' metadata to npm modules ( #8649 )
2016-05-17 23:17:15 -07:00
db8290632f
fix(upgrade): fallback to root ng2 injector when element is compiled outside the document ( #8684 )
...
Currently downgraded ng2 elements fail inside a ui-router view because they are unable
to require an ng2 Injector via the require attribute of the DDO, because ui-router compiles
its templates before they are inserted in a ui-view. This adds a "fallback" behavior if
a parent injector cannot be found to go to the root ng2 Injector.
2016-05-17 15:55:53 -07:00
6cdc53c497
fix(UpgradeNg1ComponentAdapter): make bindings available on $scope in controller & link function ( #8645 )
...
Delays NG1 Directive controller instatiation where possible and pre-link function always
to the ngOnInit() lifecycle hook. This way bindings are always available on $scope in both
the controller and the link function.
2016-05-17 14:53:59 -07:00
15ae710d22
feat(security): allow url(...) style values.
...
Allows sanitized URLs for CSS properties. These can be abused for information
leakage, but only if the CSS rules are already set up to allow for it. That is,
an attacker cannot cause information leakage without controlling the style rules
present, or a very particular setup.
Fixes #8514 .
2016-05-17 11:23:31 +02:00
dd50124254
feat(security): allow data: URLs for images and videos.
...
Allows known-to-be-safe media types in data URIs.
Part of #8511 .
2016-05-17 10:57:14 +02:00
ff36b0384a
fix(compiler_cli): normalize used directives
...
- e.g. needed for content projection.
Closes #8677
2016-05-16 13:07:13 -07:00
50c9bed630
feat(security): expose the safe value types.
...
This allows users to properly type their `SafeHtml`, `SafeStyle`, etc values.
Fixes #8568 .
2016-05-15 11:47:06 +02:00
8b1b427195
feat(security): support transform CSS functions for sanitization.
...
Fixes part of #8514 .
2016-05-14 13:25:45 +02:00
9a05ca95f6
fix(build): Release compiler_cli packages along with rest of @angular packages and use ANGULAR_VERSION for package version and peer dependencies.
2016-05-13 13:35:10 -07:00
61b339678d
test(compiler): test schema generation only in Chrome
...
Closes #8581
2016-05-11 17:01:26 -07:00
817ddfa847
fix(compiler): allow --noImplicitAny
2016-05-11 16:56:12 -07:00
c1154b30c7
fix(compiler): allow decorators defined in the same file
2016-05-11 16:56:12 -07:00
0d71345b93
fix(codegen): codegen all files in the program, not just roots
...
fixes #8475
2016-05-11 16:56:12 -07:00
9e3df8eefe
chore(tsickle): remove redundant jsdoc types
...
tsickle doesn't like them, and anyway they are bound to get out-of-sync with the inline TS types
2016-05-10 17:38:10 +02:00
3e68b7eb1f
feat(security): warn users when sanitizing in dev mode.
...
This should help developers to figure out what's going on when the sanitizer
strips some input.
Fixes #8522 .
2016-05-09 16:46:31 +02:00
9fbafba993
chore(parsing): change internal usage of `@` to `:` for namespaced values
...
Closes #8346
2016-05-09 16:20:32 +02:00
7a524e3deb
feat(security): add tests for URL sanitization.
2016-05-09 16:00:24 +02:00
7b6c4d5acc
feat(security): add tests for style sanitisation.
2016-05-09 16:00:24 +02:00
f86edae9f3
feat(security): add an HTML sanitizer.
...
This is based on Angular 1's implementation, parsing an HTML document
into an inert DOM Document implementation, and then serializing only
specifically whitelisted elements.
It currently does not support SVG sanitization, all SVG elements are
rejected.
If available, the sanitizer uses the `<template>` HTML element as an
inert container.
Sanitization works client and server-side.
Reviewers: rjamet, tbosch , molnarg , koto
Differential Revision: https://reviews.angular.io/D108
2016-05-09 16:00:24 +02:00
df1b1f6957
feat(security): strip XSSI prefix from XHR responses.
2016-05-05 14:25:44 -07:00
9099160038
chore: fix comment indent.
2016-05-05 12:46:07 -07:00
67ed2e2c0a
feat(security): fill in missing security contexts.
...
Reviewers: koto, rjamet, molnarg
Differential Revision: https://reviews.angular.io/D109
2016-05-04 19:28:50 -07:00
6d36a7a45f
chore: fix unit tests on node.js
...
Closes #8476
2016-05-04 18:00:29 -07:00
e2b1e1577d
fix(core): don’t detach nested view containers when destroying a view
...
When a view is destroyed, we destroy all
views in view containers and should not detach them. However, previously, we also detached them which lead to problems during the iteration loop.
Closes #8458
Closes #8471
Introduced by 0c600cf6e3
2016-05-04 16:27:20 -07:00
b30ddfbfc5
chore(router): clang-format
2016-05-04 15:01:27 -07:00
abfb522f83
refactor(router): reuse existing segmentes when constructing new route trees
2016-05-04 14:51:04 -07:00
b8136cc26e
fix(router): provide a top-level route segment for injection
2016-05-04 14:51:04 -07:00
d00b26d941
refactor(router): update link to reuse url segments when possible
2016-05-04 14:51:04 -07:00
12637a761c
refactor(router): make names consistent
2016-05-04 14:50:00 -07:00
1a0aea67a0
feat(core): add a component resolver that can load components lazily using system.js
2016-05-04 14:50:00 -07:00
0f1465b899
feat(router): update router to support lazy loading
2016-05-04 14:50:00 -07:00
a81923b793
fix(compiler): emit correct types for literal arrays and maps.
2016-05-04 12:14:44 -07:00
7150ace7c7
fix(compiler): support lifecycle hooks in compiler_cli
2016-05-04 12:14:43 -07:00
bdce154282
chore: add test script for compiler_cli
2016-05-04 12:14:43 -07:00
5a84048f72
chore: adjust build for `tools/metadata` name change
2016-05-04 12:14:38 -07:00
52595f52f9
chore: make workaround_empty_observable_list_diff @internal
2016-05-04 01:12:40 -06:00
edec158dd8
fix(compiler_cli): allow to use builtin directives like `NgIf`, …
...
Related to #8448
Closes #8454
2016-05-03 20:49:17 -07:00
0297398f5e
chore: clang-format master
2016-05-03 18:56:39 -07:00
9485f5a813
fix: platform-server should declare it's dependency on parse5 via package.json
2016-05-03 18:07:52 -06:00
eba6e7946d
refactor(compiler_cli): move it into modules/@angular and integrate properly into the build
...
This also does no more depend on a version
on npm for the compiler_cli.
Also runs the tests for tools/metadata
2016-05-03 15:57:49 -07:00
b600915953
build: add licensing preamble to umd bundles
2016-05-03 13:59:30 -06:00
905f38acb8
build: fix source map paths for npm packages
...
the bundles have source mpas disabled for now because when we downlevel
the esm bundle to es5 tsc doesn't consider the original source map so
we end up with a source map pointing to the esm bundle instead which is
not useful.
2016-05-03 13:36:33 -06:00
509f4ec611
fix(testing): Check for pending macrotasks in ComponentFixture.whenStable() and ComponentFixture.isStable()
...
Closes #8389
2016-05-03 11:50:35 -07:00
27a7b51d99
fix(docs): upgrade deprecated ngFor-Syntax
2016-05-03 11:49:33 -07:00
b98c9e74e1
docs(router): add api docs
2016-05-03 11:35:07 -07:00
9f784dcc5a
cleanup(router): fix e2e tests
2016-05-03 10:25:44 -07:00
b625f2471a
feat(router): make RouterLink accept single values
2016-05-03 10:25:44 -07:00
3aa2606ff1
cleanup(router): make names consistent
2016-05-03 10:25:44 -07:00
89704e0f93
fix(router): add support for ../
2016-05-03 10:25:44 -07:00
908a102a87
feat: security implementation in Angular 2.
...
Summary:
This adds basic security hooks to Angular 2.
* `SecurityContext` is a private API between core, compiler, and
platform-browser. `SecurityContext` communicates what context a value is used
in across template parser, compiler, and sanitization at runtime.
* `SanitizationService` is the bare bones interface to sanitize values for a
particular context.
* `SchemaElementRegistry.securityContext(tagName, attributeOrPropertyName)`
determines the security context for an attribute or property (it turns out
attributes and properties match for the purposes of sanitization).
Based on these hooks:
* `DomSchemaElementRegistry` decides what sanitization applies in a particular
context.
* `DomSanitizationService` implements `SanitizationService` and adds *Safe
Value*s, i.e. the ability to mark a value as safe and not requiring further
sanitization.
* `url_sanitizer` and `style_sanitizer` sanitize URLs and Styles, respectively
(surprise!).
`DomSanitizationService` is the default implementation bound for browser
applications, in the three contexts (browser rendering, web worker rendering,
server side rendering).
BREAKING CHANGES:
*** SECURITY WARNING ***
Angular 2 Release Candidates do not implement proper contextual escaping yet.
Make sure to correctly escape all values that go into the DOM.
*** SECURITY WARNING ***
Reviewers: IgorMinar
Differential Revision: https://reviews.angular.io/D103
2016-05-03 09:21:43 -07:00
dd6e0cf1b5
fix(compiler): fix where pipes live
...
Impure pipes need to live on the view
that used them and need a new instance for
each call site.
Impure pipes need to live on the component view, cached across all child views,
and need a new pure proxy for each for
each call site that lives on the view
of the call site.
Fixes #8408
This bug was introduced not long ago by 152a117d5c
2016-05-03 09:00:23 -07:00
3a40cb1a85
fix(compiler): calculate the right moduleUrl
2016-05-02 22:36:32 -06:00
00d3b6083c
fix(compiler): support css stylesheets in offline compiler
2016-05-02 15:06:46 -07:00
43527172ed
chore: don’t shadow `tsconfig.json` used for editors by build specific tsconfig.json
2016-05-02 15:06:46 -07:00
107016ec12
chore: router move import changes
2016-05-02 13:27:03 -07:00
d930ad1816
chore: router move-only
2016-05-02 13:27:03 -07:00
b6fd81169b
feat(core): support the decorator data that tsickle produces
2016-05-01 23:40:59 -07:00
3ae856ab8b
build(tsc): Use angular2-template-compiler in place of tsc
...
This lets us down-level Decorators with tsickle and produce .metadata.json
files for users to reference when offline-compiling their app.
2016-05-01 23:40:59 -07:00
3e17c99f4e
chore: clang-reformat
2016-05-01 22:59:41 -07:00
cd52318f48
fix: parse browser detection lazily
2016-05-01 22:27:55 -07:00
2570b72158
fix: textSelection on FireFox
2016-05-01 22:27:55 -07:00
6e79de794c
fix: function name shim test
2016-05-01 22:27:55 -07:00
c4be30d2e8
Revert "build(tsc): Use angular2-template-compiler in place of tsc"
...
This reverts commit 3d25294f706e0fd6224b20372be1e961959c0af8.
2016-05-01 20:51:00 -07:00
57240c85a5
build(tsc): Use angular2-template-compiler in place of tsc
...
This gives us tsickle pre-processing of Decorators, and produces
.metadata.json files for users to consume in their offline compilation.
2016-05-01 20:51:00 -07:00
a66cdb469f
repackaging: all the repackaging changes squashed
2016-05-01 20:51:00 -07:00
505da6c0a8
repackaging: all the file moves
2016-05-01 20:51:00 -07:00
mgechev
Andrew
alexcastillo
Elliott Davis
Tobias Bosch
Igor Minar
Drew Moore
Victor Berchet
PatrickJS
Jake Garelick
Yang Lin
agpreynolds
Dimitrios Loukadakis
Rob Wormald
Aliaksei Palkanau
BeastCode
William Welling
Sekib Omazic
Kai Ruhnau
Joost de Vries
Hannah Howard
Martin Probst
Vikram Subramanian
Marc Laval
Alex Eagle
Matias Niemelä
vsavkin
Felix Itzenplitz
Misko Hevery