Project

default_whitelist

0.0
No commit activity in last 3 years
No release in over 3 years
default_whiteliststevegraham/default_whitelistHomepageDocumentationSource CodeBug TrackerWiki
Protects all ActiveRecord model attributes from mass assignment by default
2005
2006
2007
2008
2009
2010
2011
2012
2013
2014
2015
2016
2017
2018
2019
2020
2021
2022
2023
2024
2025
 Popularity
Downloads
4,835
Stars
5
Forks
0
Watchers
2
 Releases
Current version
0.0.1
Total releases
1
First release
2012-03-05
Latest release
2012-03-05
 Development
Average date of last 50 commits
2012-03-05
Reverse Dependencies
0

 Dependencies

Runtime

rails
>= 3.0.0
 Project Readme

default_whitelist

Default whitelist changes the default strategy for mass-assignment protection in Ruby on Rails to whitelisting by default. Currently, one must explictly declare which attributes are mass-assignable, e.g. with ActiveRecord::Base#update_attributes or all attributes can be mass-assigned. This might not be sensible default as simple omission can leave applications with obvious security vulnerabilities, n.b. Github.

To install:

gem install default_whitelist

To use:

require default_whitelist