baarkerlounger
/
submit-social-housing-lettings-and-sales-data
mirror of https://github.com/communitiesuk/submit-social-housing-lettings-and-sales-data.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
Browse Source

Be stricter about the params we allow mass updates on

pull/45/head
baarkerlounger 4 years ago
parent
94e5a78eda
commit
2b5f7394dd
2 changed files with 5 additions and 1 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Unified View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 2
      app/controllers/case_logs_controller.rb
  2. 4
      app/models/case_log.rb

2
app/controllers/case_logs_controller.rb
Unescape View File

@ -90,6 +90,6 @@ private
def create_params def create_params
return {} unless params[:case_log] return {} unless params[:case_log]
params.require(:case_log).permit(CaseLog.new.attributes.keys) params.require(:case_log).permit(CaseLog.editable_fields)
end end
end end

4
app/models/case_log.rb
Unescape View File

@ -47,4 +47,8 @@ class CaseLog < ApplicationRecord
mandatory_fields = attributes.except(*AUTOGENERATED_FIELDS) mandatory_fields = attributes.except(*AUTOGENERATED_FIELDS)
mandatory_fields.none? { |_key, val| val.nil? } mandatory_fields.none? { |_key, val| val.nil? }
end end
def self.editable_fields
attribute_names - AUTOGENERATED_FIELDS
end
end end

Write Preview
Loading…
Cancel
Save