On Mon, Jan 12, 2009 at 4:37 PM, DAZ <[email protected]> wrote: > > Hi, > > Is it possible to open a file (in the public directory) in a text > field, edit it and save it? > > Is it also possible to type into a new text field, then save this as a > new file in the public directory? > > One use for this I could see would be to allow users to edit > stylesheets/themes. > > If this is possible, how do you do it? > > Cheers, > > DAZ > > > DAZ
To get the contents, you could do: @file_contents = File.read(File.join(RAILS_ROOT, "public", "your_file_name.css")) And to save again, do: File.open(File.join(RAILS_ROOT, "public", "your_file_name.css")) do |file| file.write params[:file_contents] end NOTE: I'd be very careful of actually doing this though as there are MANY security issues. Think through things like who will have access to this functionality and how much they can be trusted. One thing to specifically check for is that the user cannot set the file path in any way or you could end up with files written to like: /home/rails/myproject/public/../../../../etc/passwd Have a look at http://guides.rubyonrails.org/security.html for some more detailed info on the potential problems. -- Andrew Timberlake http://ramblingsonrails.com http://www.linkedin.com/in/andrewtimberlake "I have never let my schooling interfere with my education" - Mark Twain --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Ruby on Rails: Talk" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/rubyonrails-talk?hl=en -~----------~----~----~----~------~----~------~--~---
