Skip to content
Create a gist now

Instantly share code, notes, and snippets.

Kennedy Article on Rails Secuity
// ...
protected function build_params() {
$whitelist = array("name", "surname");
$params = array();
foreach($_POST as $key => $value) {
if (in_array($key, $whitelist)) {
$params[":$key"] = $value;
return $params;
// ...

FYI, a bit more terse:

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Something went wrong with that request. Please try again.