method

hidden_field

v2.3.8 - Show latest stable - Class: ActionView::Helpers::FormHelper

hidden_field(object_name, method, options = {})

public

Returns a hidden input tag tailored for accessing a specified attribute (identified by method) on an object assigned to the template (identified by object). Additional options on the input tag can be passed as a hash with options. These options will be tagged onto the HTML as an HTML element attribute as in the example shown.

Examples

  hidden_field(:signup, :pass_confirm)
  # => <input type="hidden" id="signup_pass_confirm" name="signup[pass_confirm]" value="#{@signup.pass_confirm}" />

  hidden_field(:post, :tag_list)
  # => <input type="hidden" id="post_tag_list" name="post[tag_list]" value="#{@post.tag_list}" />

  hidden_field(:user, :token)
  # => <input type="hidden" id="user_token" name="user[token]" value="#{@user.token}" />

# File actionpack/lib/action_view/helpers/form_helper.rb, line 607
      def hidden_field(object_name, method, options = {})
        InstanceTag.new(object_name, method, self, options.delete(:object)).to_input_field_tag("hidden", options)
      end

3Notes

Value parameter

Mogbox · Jul 30, 200819 thanks

You can add a value to your hidden field by using the :value parameter.

===== Example

hidden_field(:object, :field, :value => params[:requestval])

No security

RurouniJones · Jun 7, 20102 thanks

One important thing to remember is that this is NOT hidden in the source code and can be modified by an evil user so all input in a hidden field should be considered as untrustworthy and checked just like a visible field.

Hidden Field Example

cantbecool · May 7, 20121 thank

Here's a pseudo code example of a hidden field within an ERB template. A post has many comments and this comment form is in a post's show view. This would set a comment's post_id attribute.

<%= form_for(@comment) do |f| %>

<%= f.hidden_field :post_id, :value => @post.id %>

<% end %>