strong-parameters

I have 2 models with many to many association as follows: class User < ActiveRecord::Base has_many :remark_users, :dependent => :destroy has_many :designated_remarks, :through => :remark_users, :source => :remark end class Remark < ActiveRecord::Base has_many :remark_users, :dependent => :destroy has_many :users, :through => :remark_users accepts_nested_attributes_for :users end And the relationship: class RemarkUser < ActiveRecord::Base belongs_to :remark belongs_to :user end The remarks_controller action that should do the save: # PATCH Save users def save_users @remark = Remark.find(params[

There are a lot of questions about Nested Parameters, but I can't seem to find one that addresses my specific, simple situation. I'm trying to permit a nested hash that is NOT an array. I expected this to work: params.require(:book).permit(:title, :description, style: {:font, :color}) But it resulted in a syntax error. This, however, worked: params.require(:book).permit(:title, :description, style: [:font, :color]) But my issue with this, it it seems to permit style values that are arrays of items with attributes :font and :color. I only want to permit a single hash with those 2 attributes. I

I have two associated models in my Rails 4 app: product.rb and image.rb . The Image model allows attached files using the Paperclip gem. Images belong_to a Product, and a product has_many Images. I would like to use the Product's new view to create and attach an image when I create a product. Each time I try, the parameters associated with the Paperclip image do not get saved, and end up nil . Here are the models: Product.rb class Product < ActiveRecord::Base validates :name, :part_number, presence: true has_many :images, dependent: :destroy belongs_to :category accepts_nested_attributes_for

Is there a way to make strong_params conditional? Without the need to write 2 separate methods? In case where one would like to add certain attributes to the permit list when a certain condition is true For example: devise_parameter_sanitizer.for(:user) {|u| u.permit(:user, :email, :role, )} I have this :role attribute permitted in above example. I only want this attribute to be permitted when in Rails.env.development is there a way to do this? Does this achieve the desired results? user_params = [ :user, :email, (:role if Rails.env.development?) ].compact devise_parameter_sanitizer.for(:user)

I'm stuck in a problem which can't be that complicated, but I'm just not getting things right. Assuming I've got two Models: class Notification < ActiveRecord::Base belongs_to :device validates :number, presence: true end and class Device < ActiveRecord::Base belongs_to :user has_many :notifications, :dependent => :destroy //rest omitted for brevity end with nested routes like so: resources :devices do resources :notifications end and a notifications controller like so: class NotificationsController < ApplicationController before_filter :authenticate_user! before_action :set_device, :only => [

I'm trying to store a serialized Ransack search in a text column. It's deeply nested and I'm struggling coming up with permit call for it. Here's a sample hash: { "c"=>{ "0"=>{ "a"=>{ "0"=>{ "name"=>"column_1" } }, "p"=>"eq", "v"=>{ "0"=>{ "value"=>"value_1" } } }, "1"=>{ "a"=>{ "0"=>{ "name"=>"column_2" } }, "p"=>"cont", "v"=>{ "0"=>{ "value"=>"value_2" } } } } } How would you write a permit for that? This is my best guess for reading the doc but it isn't working. def course_listing_params params.require(:course_listing).permit({ q: { c: [{ a: [:name] }, :p, { v: [:value] }] } }) end I ended