raggedstaff/openfoodnetwork
1
0
Fork 0
mirror of https://github.com/openfoodfoundation/openfoodnetwork synced 2026-02-28 01:53:25 +00:00
Code Issues Packages Projects Releases Wiki Activity

Use strong params in variants search

Browse Source
This commit is contained in:
Matt-Yorkley
2021-01-24 20:10:36 +00:00
parent 4ff56ce625
commit 688b3c98d7
1 changed files with 7 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
app/controllers/spree/admin/variants_controller.rb
View File

@@ -54,7 +54,7 @@ module Spree
end
def search
scoper = OpenFoodNetwork::ScopeVariantsForSearch.new(params)
scoper = OpenFoodNetwork::ScopeVariantsForSearch.new(variant_search_params)
@variants = scoper.search
render json: @variants, each_serializer: ::Api::Admin::VariantSerializer
end
@@ -109,6 +109,12 @@ module Spree
def permitted_resource_params
variant_params
end
def variant_search_params
params.permit(
:q, :distributor_id, :order_cycle_id, :schedule_id, :eligible_for_subscriptions
).to_h.with_indifferent_access
end
end
end
end