Ryan Bigg wrote: > <% value = 1 %> > The value is <%= value %>
or <% value = 1 %> The value is <%= h(value) %> In case you don't trust the "value" of value. The h (http_escape) method will help protect you against injection attacks. -- Posted via http://www.ruby-forum.com/. --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Ruby on Rails: Talk" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/rubyonrails-talk?hl=en -~----------~----~----~----~------~----~------~--~---
