Is there a way to differ if params are set through form submit:
<%= form_tag action: 'login', method: :put do %>
<%= text_field('record','username') %>
<%= password_field('record','password') %>
<%= submit_tag %>
or through url
http://some.site/login?record[username]=user&record[password]=pwd
In both cases they appear in controller as params[:record][:user] and
params[:record][:password]
The idea is to prevent the second scenario.
by
TheR
--
Posted via http://www.ruby-forum.com/.
--
You received this message because you are subscribed to the Google Groups "Ruby
on Rails: Talk" group.
To unsubscribe from this group and stop receiving emails from it, send an email
to [email protected].
To post to this group, send email to [email protected].
For more options, visit https://groups.google.com/groups/opt_out.
