Commit message (Collapse) | Author | Age | Files | Lines | ||
---|---|---|---|---|---|---|
... | ||||||
* | | do not break params filtering on nil values | Vasiliy Ermolovich | 2013-09-07 | 1 | -1/+1 | |
| | | | | | | | | closes #12149 | |||||
* | | Stop messing up with instance variables, use protected as it was meant for | Carlos Antonio da Silva | 2013-08-30 | 1 | -2/+7 | |
| | | ||||||
* | | Added data for permit array into scalar value | Rahul P. Chaudhari | 2013-08-05 | 1 | -0/+1 | |
| | | ||||||
* | | fixed missing comma in example | Ilya Vorontsov | 2013-04-24 | 1 | -1/+1 | |
| | | ||||||
* | | Fix some typos | Vipul A M | 2013-03-24 | 1 | -1/+1 | |
| | | ||||||
* | | Fix documentation markup [ci skip] | Rafael Mendonça França | 2013-03-23 | 1 | -0/+2 | |
| | | ||||||
* | | StringIO is not required by default in JRuby | Arun Agrawal | 2013-03-22 | 1 | -0/+1 | |
|/ | ||||||
* | Use the instrumentation framework to instrument Strong Params | Daniel Schierbeck | 2013-03-07 | 1 | -1/+2 | |
| | ||||||
* | Rack::Test::UploadedFile is a permitted scalar | Fabio Kreusch | 2013-02-21 | 1 | -3/+4 | |
| | ||||||
* | ActionDispatch::Http::UploadedFile is a permitted scalar [Closes #9051] | Xavier Noria | 2013-01-23 | 1 | -2/+5 | |
| | ||||||
* | Only check for unpermmited parameters if | Rafael Mendonça França | 2013-01-22 | 1 | -1/+1 | |
| | | | | action_on_unpermitted_parameters is present | |||||
* | avoid creating an object in every call | Xavier Noria | 2013-01-22 | 1 | -1/+2 | |
| | | | | This was a suggestion of @carlosantoniodasilva, thanks! | |||||
* | Refactor grep call to remove .each | Carlos Antonio da Silva | 2013-01-20 | 1 | -1/+1 | |
| | | | | Grep already yields the matching keys to the given block. | |||||
* | Use 1.9 hash style in docs/comments [ci skip] | Carlos Antonio da Silva | 2013-01-20 | 1 | -3/+3 | |
| | ||||||
* | Removing warning: shadowing outer local variable | Arun Agrawal | 2013-01-20 | 1 | -3/+3 | |
| | ||||||
* | strong parameters filters permitted scalars | Xavier Noria | 2013-01-20 | 1 | -22/+92 | |
| | ||||||
* | Restore and adapt the implementation reverted at | Rafael Mendonça França | 2013-01-19 | 1 | -19/+46 | |
| | | | | | | https://github.com/rails/rails/commit/cc1c3c5be061e7572018f734e5239750ab449e3f Now instead of raise, we log by default in development and test | |||||
* | Added ability to raise or log on unpermitted params. | Thomas Drake-Brockman | 2013-01-20 | 1 | -0/+25 | |
| | ||||||
* | strong parameters exception handling | Brian Alexander | 2013-01-15 | 1 | -6/+0 | |
| | ||||||
* | Merge branch 'master' of github.com:lifo/docrails | Vijay Dev | 2013-01-09 | 1 | -1/+1 | |
|\ | | | | | | | | | Conflicts: guides/source/getting_started.md | |||||
| * | prefer american spelling of 'behavior' | Gosha Arinich | 2013-01-07 | 1 | -1/+1 | |
| | | ||||||
* | | Revert "unpermitted params" exception -- it's just not going to work. See ↵ | David Heinemeier Hansson | 2013-01-08 | 1 | -49/+4 | |
| | | | | | | | | the discussion on https://github.com/rails/strong_parameters/pull/75. | |||||
* | | Never treat action or controller as unpermitted params | David Heinemeier Hansson | 2013-01-08 | 1 | -6/+15 | |
| | | ||||||
* | | improve StrongParameters documentation [ci skip] | Francesco Rodriguez | 2013-01-07 | 1 | -8/+7 | |
| | | ||||||
* | | These are already required through AS/rails | Akira Matsuda | 2013-01-06 | 1 | -1/+0 | |
| | | | | | | | | | | | | | | * core_ext/object/blank * concern * core_ext/class/attribute * deprecation | |||||
* | | Wrong copy and paste :bomb: | Rafael Mendonça França | 2013-01-05 | 1 | -1/+1 | |
| | | | | | | | | [ci skip] | |||||
* | | Add documentation to raise_on_unpermitted_parameters option | Rafael Mendonça França | 2013-01-05 | 1 | -2/+17 | |
| | | | | | | | | [ci skip] | |||||
* | | Rename the configuration to raise_on_unpermitted_parameters | Rafael Mendonça França | 2013-01-05 | 1 | -9/+9 | |
| | | | | | | | | Also changed the exception to UnpermittedParameters | |||||
* | | Allow developers to enable raising of exception when unexpected params are ↵ | Thomas Drake-Brockman | 2013-01-05 | 1 | -0/+22 | |
| | | | | | | | | provided. | |||||
* | | Change docs to use update instead of update_attributes | Amparo Luna + Guillermo Iguaran | 2013-01-03 | 1 | -2/+2 | |
|/ | ||||||
* | Add missing require. | Rafael Mendonça França | 2012-12-13 | 1 | -0/+1 | |
| | | | | | I was trying to use those files without Rails and that require was missing. | |||||
* | Replace comments' non-breaking spaces with spaces | claudiob | 2012-12-04 | 1 | -2/+2 | |
| | | | | | | | | | | Sometimes, on Mac OS X, programmers accidentally press Option+Space rather than just Space and don’t see the difference. The problem is that Option+Space writes a non-breaking space (0XA0) rather than a normal space (0x20). This commit removes all the non-breaking spaces inadvertently introduced in the comments of the code. | |||||
* | hash filters should be accessed with symbols or strings | Francesco Rodriguez | 2012-11-30 | 1 | -3/+5 | |
| | ||||||
* | Fix Strong Parameters docs. | Uģis Ozols | 2012-11-27 | 1 | -2/+1 | |
| | | | | | It's only possible to inherit from ActiveRecord::Base and not include it. | |||||
* | Set @permitted on new instance when slicing parameters hash | Benjamin Quorning | 2012-11-06 | 1 | -1/+3 | |
| | ||||||
* | Remove #permitted attr accessor from Parameters | Carlos Antonio da Silva | 2012-11-03 | 1 | -1/+0 | |
| | | | | | There is no need to expose this accessor since we already have the query method #permitted? that should handle this purpose. | |||||
* | Merge branch 'master' of github.com:lifo/docrails | Vijay Dev | 2012-11-03 | 1 | -1/+1 | |
|\ | | | | | | | | | | | | | Conflicts: actionpack/lib/action_controller/metal/mime_responds.rb activerecord/lib/active_record/attribute_methods.rb guides/source/working_with_javascript_in_rails.md | |||||
| * | Revert "dont encourage AC::Parameters#permit_all_parameters usage [ci skip]" | Vijay Dev | 2012-11-03 | 1 | -1/+21 | |
| | | | | | | | | | | | | | | | | This reverts commit cd17ee5598411728747011566abf6779166be9d3. Reason: Let's note that this is discouraged, not remove the docs [ci skip] | |||||
| * | dont encourage AC::Parameters#permit_all_parameters usage [ci skip] | Francesco Rodriguez | 2012-10-28 | 1 | -21/+1 | |
| | | ||||||
| * | fix StrongParameters example [ci skip] | Francesco Rodriguez | 2012-10-21 | 1 | -1/+1 | |
| | | ||||||
* | | Allow #permit to take its list of permitted parameters as an array | David Heinemeier Hansson | 2012-10-31 | 1 | -1/+1 | |
|/ | ||||||
* | Merge branch 'master' of github.com:lifo/docrails | Vijay Dev | 2012-10-21 | 1 | -17/+42 | |
|\ | | | | | | | | | | | Conflicts: activesupport/lib/active_support/core_ext/hash/slice.rb guides/source/active_support_core_extensions.md | |||||
| * | add a nested attributes example into Strong Parameters documentation [ci skip] | Francesco Rodriguez | 2012-10-18 | 1 | -6/+31 | |
| | | ||||||
| * | remove some non-breaking spaces [ci skip] | Francesco Rodriguez | 2012-10-18 | 1 | -13/+13 | |
| | | ||||||
* | | Permit string and float values in the multiparameter attributes | Rafael Mendonça França | 2012-10-18 | 1 | -1/+1 | |
| | | ||||||
* | | warning removed: shadowing outer local variable - value | Arun Agrawal | 2012-10-12 | 1 | -2/+2 | |
| | | ||||||
* | | update AC::Parameters#permit documentation [ci skip] | Francesco Rodriguez | 2012-10-11 | 1 | -0/+22 | |
| | | | | | | | | bdd105d changes the behaviour of AC::Parameters#permit. | |||||
* | | When executing permit with just a key that points to a hash, DO NOT allow ↵ | Santiago Pastorino | 2012-10-12 | 1 | -1/+4 | |
|/ | | | | | | | | | | | | | | all the hash params.require(:person).permit(:projects_attributes) was returning => {"projects_attributes"=>{"0"=>{"name"=>"Project 1"}}} When should return => {} You should be doing ... params.require(:person).permit(projects_attributes: :name) to get just the projects attributes you want to allow | |||||
* | We don't need the each call since grep take a block and yield each match | Rafael Mendonça França | 2012-10-06 | 1 | -1/+1 | |
| | | | | | | to the block. Thanks @tenderlove | |||||
* | Allow parameter filters to match multi-parameter attributes | Rafael Mendonça França | 2012-10-05 | 1 | -0/+1 | |
| | | | | | | | This will make easier to permit date/time attributes generated by helpers like date_select. [Sven Schwyn + Rafael Mendonça França] |