Mass assignment protectionRuby1,269EditAllow users to only assign values for fields they may access.
Taint and required checking for Action Pack and enforcement in Active Model
Related categories
User Authorization22,909Rubypundit, cancan and 10 more »Authorize user actions on resources based on policies, abilities or roles. Authenticate your users beforehand.
Around the webAdd