Project

better_strong_params

0.0
No commit activity in last 3 years
No release in over 3 years
better_strong_paramsshinobidevs/better_strong_paramsHomepageDocumentationSource CodeBug TrackerWiki
Adds a DSL to ActionController that allows to add strong params filtering without adding a specific, dirty controller method.
2005
2006
2007
2008
2009
2010
2011
2012
2013
2014
2015
2016
2017
2018
2019
2020
2021
2022
2023
2024
2025
 Popularity
Downloads
10,041
Stars
5
Forks
0
Watchers
4
 Releases
Current version
0.0.3
Total releases
3
First release
2014-08-26
Latest release
2014-08-28
 Development
Primary Language
Ruby
Licenses
MIT
Average date of last 50 commits
2014-08-27
Reverse Dependencies
0

 Dependencies

Development

bundler
~> 1.5
rails
>= 0
rake
>= 0
rspec
>= 0
 Project Readme

BetterStrongParams

Adds a DSL to ActionController that allows to add strong params filtering without adding a specific, dirty controller method.

DSL Changes in 0.0.3

  • whitelist_parameters replaces filter_parameters
  • No more create_params or such, filtered and whitelisted attributes are now available via the regular params hash.

Why?

Rails's Strong Parameters is obviously a better approach than having the model decide which attributes are protected or not. The only problem I have with this is the need to add an ugly method (at least one) to the controller to filter and whitelist the parameters.

BetterStrongParams is simply a way to create those methods via DSL instead of a manually typing them, seems like it is a more naturally looking interface for a good idea.

Installation

Add this line to your application's Gemfile:

gem 'better_strong_params'

And then execute:

$ bundle

Or install it yourself as:

$ gem install better_strong_params

Setting up

BetterStrongParams is automatically included in ActionController::Base, so you don't actually need to do anything to set this one up.

Usage

BetterStrongParams allows you to use the whitelist_parameters method in your controllers:

  class UsersController < ApplicationController
    whitelist_parameters post: [:title, :body], user: [:name, :age], ....
  end

whitelist_parameters a representation of a hash as you would enter in normal Strong Parameters method:

  top_level_key: [attribute, attribute], another_top_level: [...], ...

Unlike many other Strong Parameters implementations in which you would have to define a sanitizing method (user_params), BetterStrongParams lets you keep on using the regular params hash

Full example

  class UsersController < ApplicationController

    whitelist_parameters user: [:name, :age]

    def create
      @user = User.new(params[:user]) # => params[:user] is being whitelisted without the need to define / create the extra method.
      if @user.save
        redirect_to treasure_url
      else
        redirect_to jail_url
      end
    end
  end

Contributing

  1. Fork it ( http://github.com//better_strong_params/fork )
  2. Create your feature branch (git checkout -b my-new-feature)
  3. Commit your changes (git commit -am 'Add some feature')
  4. Push to the branch (git push origin my-new-feature)
  5. Create new Pull Request