Ask Your Question

Revision history [back]

click to hide/show revision 1
initial version

answered 2023-05-27 08:40:01 +0000

pufferfish gravatar image

When "ActionController::Parameters.permitallparameters = true" is specified as the setting, it allows all parameters to pass through without being filtered or validated by the initializer. Therefore, the initializer is not functioning because it is designed to filter and validate the parameters for security reasons. When all parameters are permitted, it defeats the purpose of the initializer, which is meant to prevent malicious or unintended actions by ensuring that only necessary and safe parameters are allowed. It is recommended to use strong parameters instead of this setting for better security.


Copyright QStack.ai, 2010-2023. Content on this site is licensed under the Creative Commons Attribution Share Alike 3.0 license.
about | faq | help | privacy policy | terms of service | contact