raggedstaff/openfoodnetwork
1
0
Fork 0
mirror of https://github.com/openfoodfoundation/openfoodnetwork synced 2026-01-24 20:36:49 +00:00
Code Issues Packages Projects Releases Wiki Activity

Handle strong params on users_controller

Browse Source
This commit is contained in:
Luis Ramos
2020-02-23 17:34:39 +00:00
parent 431076fc6d
commit d0bd2818c2
1 changed files with 6 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
app/controllers/spree/users_controller.rb
View File

@@ -25,7 +25,7 @@ module Spree
end
def create
@user = Spree::User.new(params[:user])
@user = Spree::User.new(user_params)
if @user.save
if current_order
@@ -39,7 +39,7 @@ module Spree
end
def update
if @user.update_attributes(params[:user])
if @user.update_attributes(user_params)
if params[:user][:password].present?
# this logic needed b/c devise wants to log us out after password changes
Spree::User.reset_password_by_token(params[:user])
@@ -70,5 +70,9 @@ module Spree
def accurate_title
Spree.t(:my_account)
end
def user_params
params.require(:user).permit(:email, :password, :password_confirmation)
end
end
end