diff options
author | Kevin Deisz <kevin.deisz@gmail.com> | 2018-08-24 16:10:17 -0400 |
---|---|---|
committer | Kevin Deisz <kevin.deisz@gmail.com> | 2018-08-24 16:10:17 -0400 |
commit | c14859513a648270705b61210dc3ab2fe5d04004 (patch) | |
tree | df253cd04ba9ffb7f4797eebe4af1031d1b0f5cc /activerecord/lib/active_record/sanitization.rb | |
parent | e2d8a2ccfd3b0d2030920346a2ff0cad93fcb188 (diff) | |
download | rails-c14859513a648270705b61210dc3ab2fe5d04004.tar.gz rails-c14859513a648270705b61210dc3ab2fe5d04004.tar.bz2 rails-c14859513a648270705b61210dc3ab2fe5d04004.zip |
Convert over the rest of the whitelist references
Diffstat (limited to 'activerecord/lib/active_record/sanitization.rb')
-rw-r--r-- | activerecord/lib/active_record/sanitization.rb | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/activerecord/lib/active_record/sanitization.rb b/activerecord/lib/active_record/sanitization.rb index c6c268855e..d398d03ebb 100644 --- a/activerecord/lib/active_record/sanitization.rb +++ b/activerecord/lib/active_record/sanitization.rb @@ -61,8 +61,8 @@ module ActiveRecord # # => "id ASC" def sanitize_sql_for_order(condition) if condition.is_a?(Array) && condition.first.to_s.include?("?") - enforce_raw_sql_whitelist([condition.first], - whitelist: AttributeMethods::ClassMethods::COLUMN_NAME_ORDER_WHITELIST + enforce_raw_sql_permit_list([condition.first], + permit_list: AttributeMethods::ClassMethods::COLUMN_NAME_ORDER_PERMIT_LIST ) # Ensure we aren't dealing with a subclass of String that might |