RSpec
Ruby on Rails
Ruby
- 1.0.0
- 1.1.6
- 1.2.6
- 2.0.3
- 2.1.0
- 2.2.1
- 2.3.8
- 3.0.0
- 3.0.9
- 3.1.0
- 3.2.1
- 3.2.8
- 3.2.13
- 4.0.2 (0)
- 4.1.8 (0)
- 4.2.1 (38)
- 4.2.7 (0)
- 4.2.9 (0)
- 5.0.0.1 (-19)
- 5.1.7 (21)
- 5.2.3 (0)
- 6.0.0 (-1)
- 6.1.3.1 (0)
- 6.1.7.7 (0)
- 7.0.0 (30)
- 7.1.3.2 (-5)
- 7.1.3.4 (0)
- What's this?
-
const_missing
(<= v4.2.9)
-
hook_into_yaml_loading
-
nested_attribute?
-
new
-
==
-
[]
-
[]=
-
array_of_permitted_scalars?
-
array_of_permitted_scalars_...
(<= v4.2.9)
-
as_json
-
compact
-
compact!
-
compact_blank
-
compact_blank!
-
converted_arrays
-
convert_hashes_to_parameters
-
convert_parameters_to_hashes
-
convert_value_to_parameters
-
deep_dup
-
deep_merge
-
deep_merge!
-
deep_merge?
-
deep_transform_keys
-
deep_transform_keys!
-
delete
-
delete_if
-
dig
-
dup
(<= v5.0.0.1)
-
each
-
each_element
-
each_key
-
each_nested_attribute
-
each_pair
-
each_value
-
empty?
-
encode_with
-
eql?
-
except
-
exclude?
-
extract!
-
extract_value
-
fetch
-
fields_for_style?
(<= v6.0.0)
-
hash
-
hash_filter
-
has_key?
-
has_value?
-
include?
-
initialize_copy
-
init_with
-
inspect
-
keep_if
-
key?
-
keys
-
member?
-
merge
-
merge!
-
method_missing
(<= v5.0.0.1)
-
nested_attributes?
-
new_instance_with_inherited...
-
non_scalar?
-
permit
-
permit!
-
permit_any_in_array
-
permit_any_in_parameters
-
permitted=
(<= v5.2.3)
-
permitted?
-
permitted_scalar?
-
permitted_scalar_filter
-
reject
-
reject!
-
require
-
required
-
reverse_merge
-
reverse_merge!
-
select
-
select!
-
slice
-
slice!
-
specify_numeric_keys?
-
stringify_keys
-
to_h
-
to_hash
-
to_param
-
to_query
-
to_s
-
to_unsafe_h
-
to_unsafe_hash
-
transform_keys
-
transform_keys!
-
transform_values
-
transform_values!
-
unpermitted_keys
-
unpermitted_parameters!
-
value?
-
values
-
values_at
-
with_defaults
-
with_defaults!
-
without
- ActiveSupport::DeepMergeable
= private
= protected
Action Controller Parameters
Allows you to choose which attributes should be permitted for mass updating and thus prevent accidentally exposing that which shouldn’t be exposed. Provides two methods for this purpose: #require and #permit. The former is used to mark parameters as required. The latter is used to set the parameter as permitted and limit which attributes should be allowed for mass updating.
params = ActionController::Parameters.new({ person: { name: "Francesco", age: 22, role: "admin" } }) permitted = params.require(:person).permit(:name, :age) permitted # => #<ActionController::Parameters {"name"=>"Francesco", "age"=>22} permitted: true> permitted.permitted? # => true Person.first.update!(permitted) # => #<Person id: 1, name: "Francesco", age: 22, role: "user">
It provides two options that controls the top-level behavior of new instances:
-
permit_all_parameters - If it’s true, all the parameters will be permitted by default. The default is false.
-
action_on_unpermitted_parameters - Controls behavior when parameters that are not explicitly permitted are found. The default value is :log in test and development environments, false otherwise. The values can be:
-
false to take no action.
-
:log to emit an ActiveSupport::Notifications.instrument event on the unpermitted_parameters.action_controller topic and log at the DEBUG level.
-
:raise to raise an ActionController::UnpermittedParameters exception.
-
Examples:
params = ActionController::Parameters.new params.permitted? # => false ActionController::Parameters.permit_all_parameters = true params = ActionController::Parameters.new params.permitted? # => true params = ActionController::Parameters.new(a: "123", b: "456") params.permit(:c) # => #<ActionController::Parameters {} permitted: true> ActionController::Parameters.action_on_unpermitted_parameters = :raise params = ActionController::Parameters.new(a: "123", b: "456") params.permit(:c) # => ActionController::UnpermittedParameters: found unpermitted keys: a, b
Please note that these options *are not thread-safe*. In a multi-threaded environment they should only be set once at boot-time and never mutated at runtime.
You can fetch values of +ActionController::Parameters+ using either :key or "key".
params = ActionController::Parameters.new(key: "value") params[:key] # => "value" params["key"] # => "value"
Constants
EMPTY_HASH = {}
EMPTY_ARRAY = []
PERMITTED_SCALAR_TYPES = [ String, Symbol, NilClass, Numeric, TrueClass, FalseClass, Date, Time, # DateTimes are Dates, we document the type but avoid the redundant check. StringIO, IO, ActionDispatch::Http::UploadedFile, Rack::Test::UploadedFile, ]
Attributes
| [W] | permitted | |
| [R] | parameters |
