Questions about this topic? Sign up to ask in the talk tab.

Difference between revisions of "Mass Assignment"

From NetSec

Jump to: navigation, search

Revision as of 23:37, 16 December 2010

Typically used in Ruby on Rails, sometimes people will use the following code to create an ActiveRecord object to add a database entry:

<syntaxhighlight lang=ruby>

@user=User.new(params[:user])

</syntaxhighlight>

There have been problems with RoR in the past with mass assignment.

Retrieved from "http://nets.ec/index.php?title=Mass_Assignment&oldid=1094"

Information

Navigation menu