diff options
| author | Pete Campbell <pete@pmcampbell.com> | 2011-07-28 09:44:51 -0400 |
|---|---|---|
| committer | Xavier Noria <fxn@hashref.com> | 2011-08-04 16:40:25 -0700 |
| commit | 3c3f8087647a15a5e88dd18a45d41358eacce142 (patch) | |
| tree | ebe08e2378bad7af6fb9a6a8f6dd2bdfcc61112d /activerecord | |
| parent | e84ea65e71062109d9e95e36ea0c5640fb0d6d6f (diff) | |
| download | rails-3c3f8087647a15a5e88dd18a45d41358eacce142.tar.gz rails-3c3f8087647a15a5e88dd18a45d41358eacce142.tar.bz2 rails-3c3f8087647a15a5e88dd18a45d41358eacce142.zip | |
Explicitly included hashes in sentence regarding SQL-injection-safe forms
Diffstat (limited to 'activerecord')
| -rw-r--r-- | activerecord/lib/active_record/base.rb | 6 |
1 files changed, 3 insertions, 3 deletions
diff --git a/activerecord/lib/active_record/base.rb b/activerecord/lib/active_record/base.rb index 4136868b39..461df0555f 100644 --- a/activerecord/lib/active_record/base.rb +++ b/activerecord/lib/active_record/base.rb @@ -63,9 +63,9 @@ module ActiveRecord #:nodoc: # == Conditions # # Conditions can either be specified as a string, array, or hash representing the WHERE-part of an SQL statement. - # The array form is to be used when the condition input is tainted and requires sanitization. The string form can - # be used for statements that don't involve tainted data. The hash form works much like the array form, except - # only equality and range is possible. Examples: + # The array form is to be used when the condition input is tainted and requires sanitization. The string and hash + # forms can be used for statements that don't involve tainted data. The hash form works much like the array form, + # except only equality and range is possible. Examples: # # class User < ActiveRecord::Base # def self.authenticate_unsafely(user_name, password) |