TechQA.

Dynamic / Regex params in ApplicationController

512 views Asked by At

How to permit dynamic params in an AppicationController?

so all these parameters should permitted:

params = { "filter_color" => "blue,green", 
           "filter_size" => "xl,sm,lg", 
           "filter_type" => "new,old,used",
           "limit" => "10" }

But my approach only passes limit,

def product_params
  params.permit(:limit, /filter_.*/)
end
ruby-on-rails strong-parameters applicationcontroller
Original Q&A
1

There are 1 answers

0
cschroed On BEST ANSWER

The permit method only processes an incoming value if it's a Symbol, String, or Hash.

If you want to try to work around this you could do something like this:

filter_names = params.keys.select { |key| key[/\Afilter_.*/] }
params.permit(:limit, *filter_names)

But be aware that the point of Strong Parameters is to define an explicit set of allowed values to avoid security problems with mass-assigning user-provided values. As long as it's always safe to allow any user to pass in any kind of filter_* value, then you should be OK.

Related Questions in RUBY-ON-RAILS

Related Questions in STRONG-PARAMETERS

Related Questions in APPLICATIONCONTROLLER

Popular Questions

Popular Tags

javascript python java c# php android html jquery c++ css ios sql mysql r reactjs node.js arrays c asp.net json python-3.x ruby-on-rails .net sql-server swift django angular objective-c pandas excel

Trending Questions