Hassan Schroeder wrote in post #1121316:
> On Wed, Sep 11, 2013 at 3:36 PM, Paul E. G. Lynch <[email protected]>
> wrote:
>> If, in your view, you are expecting params[:name] to be a string, but
>> actually rails has parsed it into {"."=>"1234"} (or something more
>> malicious)
>
> Params are strings by definition; can you provide a test case/code
> that demonstrates where this is not the case?
Not necessarily the case. For example the create and update actions in a
users_controller will likely contain the user model in the params hash
as a hash keyed by :user:
params[:user]
=> { :first_name => "John", :last_name => "Doe", age: 25 }
--
Posted via http://www.ruby-forum.com/.
--
You received this message because you are subscribed to the Google Groups "Ruby
on Rails: Talk" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
To post to this group, send email to [email protected].
To view this discussion on the web visit
https://groups.google.com/d/msgid/rubyonrails-talk/5610708d401ca245037be4c44a5f58bb%40ruby-forum.com.
For more options, visit https://groups.google.com/groups/opt_out.
