p.s. I wonder if this repetitiveness is needed here. For the simple case such as Post.new(params[:post]), I guess Rails should just "know" what fields comprise a model and permit relevant safe fields coming from POSTed data. Of course one can always override that with the second permit variant, but not be forced to do so, introducing possibility for error (dreaded DRY).
-- You received this message because you are subscribed to the Google Groups "Ruby on Rails: Talk" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. For more options, visit https://groups.google.com/groups/opt_out.

