Project hook, milestone, snippet strong params

Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
author: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2014-06-26 18:51:11 +0300
committer: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com> 2014-06-26 18:51:11 +0300
commit: 2acde87e0d223bbc3ecd15777b9a1048d6bc5172 (patch)
tree: 64f8432402547087a65ba7a1649e32e7bb96f416 /app/controllers/snippets_controller.rb
parent: e382c8dfc7fb4bdbf57c770338805a1e17915fd1 (diff)
download: gitlab-ce-2acde87e0d223bbc3ecd15777b9a1048d6bc5172.tar.gz
1 files changed, 6 insertions, 2 deletions
diff --git a/app/controllers/snippets_controller.rb b/app/controllers/snippets_controller.rb
index 4fe98f804dc..e75db61e680 100644
--- a/app/controllers/snippets_controller.rb
+++ b/app/controllers/snippets_controller.rb
@@ -51,7 +51,7 @@ class SnippetsController < ApplicationController
   end
 
   def create
-    @snippet = PersonalSnippet.new(params[:personal_snippet])
+    @snippet = PersonalSnippet.new(snippet_params)
     @snippet.author = current_user
 
     if @snippet.save
@@ -65,7 +65,7 @@ class SnippetsController < ApplicationController
   end
 
   def update
-    if @snippet.update_attributes(params[:personal_snippet])
+    if @snippet.update_attributes(snippet_params)
       redirect_to snippet_path(@snippet)
     else
       respond_with @snippet
@@ -109,4 +109,8 @@ class SnippetsController < ApplicationController
   def set_title
     @title = 'Snippets'
   end
+
+  def snippet_params
+    params.require(:personal_snippet).permit(:title, :content, :file_name, :private)
+  end
 end
author	Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>	2014-06-26 18:51:11 +0300
committer	Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>	2014-06-26 18:51:11 +0300
commit	2acde87e0d223bbc3ecd15777b9a1048d6bc5172 (patch)
tree	64f8432402547087a65ba7a1649e32e7bb96f416 /app/controllers/snippets_controller.rb
parent	e382c8dfc7fb4bdbf57c770338805a1e17915fd1 (diff)
download	gitlab-ce-2acde87e0d223bbc3ecd15777b9a1048d6bc5172.tar.gz