raggedstaff/openfoodnetwork
1
0
Fork 0
mirror of https://github.com/openfoodfoundation/openfoodnetwork synced 2026-02-27 01:43:22 +00:00
Code Issues Packages Projects Releases Wiki Activity

Add strong parameters permits to admin users_controller

Browse Source
This commit is contained in:
Luis Ramos
2020-02-22 19:03:48 +00:00
parent eccaaca907
commit 431076fc6d
1 changed files with 6 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
app/controllers/spree/admin/users_controller.rb
View File

@@ -22,7 +22,7 @@ module Spree
roles = params[:user].delete("spree_role_ids")
end
@user = Spree::User.new(params[:user])
@user = Spree::User.new(user_params)
if @user.save
if roles
@@ -41,7 +41,7 @@ module Spree
roles = params[:user].delete("spree_role_ids")
end
if @user.update_attributes(params[:user])
if @user.update_attributes(user_params)
if roles
@user.spree_roles = roles.reject(&:blank?).collect{ |r| Spree::Role.find(r) }
end
@@ -136,6 +136,10 @@ module Spree
def new_email_unconfirmed?
params[:user][:email] != @user.email
end
def user_params
params.require(:user).permit(:email, :enterprise_limit, :password, :password_confirmation)
end
end
end
end