Mass assignment security shouldn't happen in the model
I think we should be filtering parameters in the controller, not the model. Here’s why.
×
The Ruby and Rails community linklog
Made a library? Written a blog post? Found a useful tutorial? Share it with the Ruby community here or just enjoy what everyone else has found!
Post a comment