From 2154215940f8400ed85ffe988de89e12da2cce4a Mon Sep 17 00:00:00 2001
From: Francesco Rodriguez <lrodriguezsanc@gmail.com>
Date: Fri, 5 Oct 2012 17:26:16 -0500
Subject: add AC::Parameters#permit_all_parameters config option [ci skip]

---
 guides/source/configuring.md | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

(limited to 'guides/source/configuring.md')

diff --git a/guides/source/configuring.md b/guides/source/configuring.md
index bf47206f71..2131a6c6a8 100644
--- a/guides/source/configuring.md
+++ b/guides/source/configuring.md
@@ -310,10 +310,12 @@ The schema dumper adds one additional configuration option:
 
 * `config.action_controller.request_forgery_protection_token` sets the token parameter name for RequestForgery. Calling `protect_from_forgery` sets it to `:authenticity_token` by default.
 
-* `config.action_controller.allow_forgery_protection` enables or disables CSRF protection. By default this is false in test mode and true in all other modes.
+* `config.action_controller.allow_forgery_protection` enables or disables CSRF protection. By default this is `false` in test mode and `true` in all other modes.
 
 * `config.action_controller.relative_url_root` can be used to tell Rails that you are deploying to a subdirectory. The default is `ENV['RAILS_RELATIVE_URL_ROOT']`.
 
+* `config.action_controller.permit_all_parameters` sets all the parameters for mass assignment to be permitted by default. The default value is `false`.
+
 ### Configuring Action Dispatch
 
 * `config.action_dispatch.session_store` sets the name of the store for session data. The default is `:cookie_store`; other valid options include `:active_record_store`, `:mem_cache_store` or the name of your own custom class.
-- 
cgit v1.2.3