01 Apr '12, 10am

“Rails 3.2.3ではwhitelist_attributesの設定が必要 - Ruby on Rails with OIAX”

Rails 3.2.3ではwhitelist_attributesの設定が必要 この記事は『改訂新版 基礎Ruby on Rails』の読者サポートのために書かれたものです。 読者サポートページに戻る 2012年3月30日に公開されたRails 3.2.3では、config\application.rbのwhitelist_attributesの設定が、デフォルトでtrueに変更されました。これは、最近問題になったMass Assignment(ハッシュによるモデルの属性の一括設定)関連のセキュリティ対策向上のためです。 Rails 3.2.3でアプリケーションを作成した読者の方は、本書のChapter4以降を実習する前に、次のようにconfig\application.rbを修正して、true をfalse に変える必要があります(ファイル中の下から10行目あたりにあります)。 config.active_record.whitelist_attributes = false モデル属性の保護とwhitelist_attributesの設定に関する説明は、本書のChapter8、360ページ以降にあります。 362ページ以降を進めるときは、whitelist_attributesの設定をtrueに戻してください。

Full article: http://www.oiax.jp/rails3book/rails323_whitelist_attributes

Tweets

[railscasts] Upgrading to Rails 3.2

railscasts.com 01 Apr '12, 9am

Rails 3.2 sports many new features including automatic explain queries, tagged logging, key-value store in Active Record, ...

Am I missing something or is this page laughabl...

guides.rubyonrails.org 01 Apr '12, 2am

The very first parameter, a string, is the text of the link which appears on the page. The second parameter, the options h...

Walken on Rails

rubyflow.com 01 Apr '12, 8pm

Walken on Rails Posted by laserlemon on April 01, 2012 — 1 comment For quite a while now, Collective Idea has been working...

Ruby on Railsで複合キーを扱う(7) -- 補遺

Ruby on Railsで複合キーを扱う(7) -- 補遺

oiax.jp 31 Mar '12, 3pm

date = Date.new(2010, 1, 1) %w(robot automobile ship).each do |code| Department.create!({ code: code, name: code.capitaliz...

これ最高にイイ( ・∀・) 超使いやすいっす! Rails 3.2 からGemfileに追加さ...

railscasts.com 31 Mar '12, 6am

JbuilderはJSONレスポンスを出力するテンプレートエンジンです。David Heinemeier Hanssonが最近作成したものですが、Rails 3.2には含まれずに独立したgemとしてリリースされました。このアプローチをとることに...

Rails isn't for beginners

rubyflow.com 03 Apr '12, 7pm

Rails isn't for beginners Posted by stephenballnc on April 03, 2012 — 0 comments I've just written a post on Rake Routes: ...

Browse Ruby on Rails documentation - APIdock:

apidock.com 03 Apr '12, 9am

ActionController::Routing::Optimisation::PositionalArgumentsWithAdditionalParams

Ruby Forum - Rails I18n:

ruby-forum.com 05 Apr '12, 2am

Subject Author Replies Last post Rails 3.x, Ruby 1.9.x + HAML = Terror? Ramon Cahenzli 2 21 hrs ago by Ramon Cahenzli web ...

WHAT'S NEW IN EDGE #RAILS

afreshcup.com 02 Apr '12, 12pm

is Mike Gunderloy's software development weblog, covering Ruby on Rails and whatever else I find interesting in the univer...

Engine Yard releases a Developer Center for Rub...

engineyard.com 01 Apr '12, 6pm

S02E12: Engine Yard Support Tasha Drew, our Success Manager interviews some of our awesome Support Engineers: John Yerhot,...

Railscasts - Rails 2.3 Extras:

railscasts.com 31 Mar '12, 10pm

# find in batches Product.count Product.find_in_batches(:batch_size => 10) do |batch| puts "Products in batch: #{batch.siz...

@artolamola dar una respuesta valida para todos...

blog.headius.com 01 Apr '12, 11am

There's been a little bit of buzz about David Heinemeier Hansson's announcement that Josh Peek has joined Rails core and i...

Ruby on Rails Guides: Performance Testing Rails...

guides.rubyonrails.org 10 Apr '12, 8am

# routes.rb root :to => 'home#index' resources :posts # home_controller.rb class HomeController < ApplicationController de...

Ruby on Rails Guides: Caching with Rails: An ov...

guides.rubyonrails.org 09 Apr '12, 11am

One of the issues with Page Caching is that you cannot use it for pages that require to restrict access somehow. This is w...

Scheduled tasks on rails - Ruby Forum:

ruby-forum.com 08 Apr '12, 3am

Douglas, I have been using cron tasks that invoke curl that invokes the routes that perform the periodic tasks for several...