playground
/
flask
mirror of https://github.com/mitsuhiko/flask.git
1
0
Fork 0
Code Issues Releases Activity
Browse Source

docs: :mimetype:`application/json`

pull/1240/head
defuz 10 years ago
parent
663802e976
commit
d4b9b9854c
6 changed files with 9 additions and 9 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Unified View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 2
      docs/htmlfaq.rst
  2. 2
      docs/patterns/apierrors.rst
  3. 2
      docs/quickstart.rst
  4. 4
      docs/security.rst
  5. 2
      flask/json.py
  6. 6
      flask/wrappers.py

2
docs/htmlfaq.rst
Unescape View File

@ -16,7 +16,7 @@ However, barely any websites on the Internet are actual XHTML (which is
HTML processed using XML rules). There are a couple of major reasons HTML processed using XML rules). There are a couple of major reasons
why this is the case. One of them is Internet Explorer's lack of proper why this is the case. One of them is Internet Explorer's lack of proper
XHTML support. The XHTML spec states that XHTML must be served with the MIME XHTML support. The XHTML spec states that XHTML must be served with the MIME
type `application/xhtml+xml`, but Internet Explorer refuses to read files type :mimetype:`application/xhtml+xml`, but Internet Explorer refuses to read files
with that MIME type. with that MIME type.
While it is relatively easy to configure Web servers to serve XHTML properly, While it is relatively easy to configure Web servers to serve XHTML properly,
few people do. This is likely because properly using XHTML can be quite few people do. This is likely because properly using XHTML can be quite

2
docs/patterns/apierrors.rst
Unescape View File

@ -4,7 +4,7 @@ Implementing API Exceptions
It's very common to implement RESTful APIs on top of Flask. One of the It's very common to implement RESTful APIs on top of Flask. One of the
first thing that developers run into is the realization that the builtin first thing that developers run into is the realization that the builtin
exceptions are not expressive enough for APIs and that the content type of exceptions are not expressive enough for APIs and that the content type of
``text/html`` they are emitting is not very useful for API consumers. :mimetype:`text/html` they are emitting is not very useful for API consumers.
The better solution than using ``abort`` to signal errors for invalid API The better solution than using ``abort`` to signal errors for invalid API
usage is to implement your own exception type and install an error handler usage is to implement your own exception type and install an error handler

2
docs/quickstart.rst
Unescape View File

@ -708,7 +708,7 @@ About Responses
The return value from a view function is automatically converted into a The return value from a view function is automatically converted into a
response object for you. If the return value is a string it's converted response object for you. If the return value is a string it's converted
into a response object with the string as response body, a ``200 OK`` into a response object with the string as response body, a ``200 OK``
status code and a ``text/html`` mimetype. The logic that Flask applies to status code and a :mimetype:`text/html` mimetype. The logic that Flask applies to
converting return values into response objects is as follows: converting return values into response objects is as follows:
1. If a response object of the correct type is returned it's directly 1. If a response object of the correct type is returned it's directly

4
docs/security.rst
Unescape View File

@ -161,8 +161,8 @@ and social engineers a victim to visiting his site:
If you know a bit of JavaScript internals you might know that it's If you know a bit of JavaScript internals you might know that it's
possible to patch constructors and register callbacks for setters. An possible to patch constructors and register callbacks for setters. An
attacker can use this (like above) to get all the data you exported in attacker can use this (like above) to get all the data you exported in
your JSON file. The browser will totally ignore the ``application/json`` your JSON file. The browser will totally ignore the :mimetype:`application/json`
mimetype if ``text/javascript`` is defined as content type in the script mimetype if :mimetype:`text/javascript` is defined as content type in the script
tag and evaluate that as JavaScript. Because top-level array elements are tag and evaluate that as JavaScript. Because top-level array elements are
allowed (albeit useless) and we hooked in our own constructor, after that allowed (albeit useless) and we hooked in our own constructor, after that
page loaded the data from the JSON response is in the `captured` array. page loaded the data from the JSON response is in the `captured` array.

2
flask/json.py
Unescape View File

@ -200,7 +200,7 @@ def htmlsafe_dump(obj, fp, **kwargs):
def jsonify(*args, **kwargs): def jsonify(*args, **kwargs):
"""Creates a :class:`~flask.Response` with the JSON representation of """Creates a :class:`~flask.Response` with the JSON representation of
the given arguments with an `application/json` mimetype. The arguments the given arguments with an :mimetype:`application/json` mimetype. The arguments
to this function are the same as to the :class:`dict` constructor. to this function are the same as to the :class:`dict` constructor.
Example usage:: Example usage::

6
flask/wrappers.py
Unescape View File

@ -98,7 +98,7 @@ class Request(RequestBase):
@property @property
def json(self): def json(self):
"""If the mimetype is `application/json` this will contain the """If the mimetype is :mimetype:`application/json` this will contain the
parsed JSON data. Otherwise this will be ``None``. parsed JSON data. Otherwise this will be ``None``.
The :meth:`get_json` method should be used instead. The :meth:`get_json` method should be used instead.
@ -112,7 +112,7 @@ class Request(RequestBase):
def is_json(self): def is_json(self):
"""Indicates if this request is JSON or not. By default a request """Indicates if this request is JSON or not. By default a request
is considered to include JSON data if the mimetype is is considered to include JSON data if the mimetype is
``application/json`` or ``application/*+json``. :mimetype:`application/json` or :mimetype:`application/*+json`.
.. versionadded:: 0.11 .. versionadded:: 0.11
""" """
@ -127,7 +127,7 @@ class Request(RequestBase):
"""Parses the incoming JSON request data and returns it. If """Parses the incoming JSON request data and returns it. If
parsing fails the :meth:`on_json_loading_failed` method on the parsing fails the :meth:`on_json_loading_failed` method on the
request object will be invoked. By default this function will request object will be invoked. By default this function will
only load the json data if the mimetype is ``application/json`` only load the json data if the mimetype is :mimetype:`application/json`
but this can be overridden by the `force` parameter. but this can be overridden by the `force` parameter.
:param force: if set to ``True`` the mimetype is ignored. :param force: if set to ``True`` the mimetype is ignored.

Write Preview
Loading…
Cancel
Save