5:27 Play Subscribe with or Intro song by Falseta

Episode #252 - March 6th, 2012

0d2bf6fbf141a1995560fa9273992ff0.jpg?s=18&r=pg&d=http%3a%2f%2fwww.gravatar.com%2favatar%2f8ebf4339f7c8cd73b53d1d1d3eba7c35 Nathaniel Bibler 2df14bd29ca441a9d4656f0abae2e0ab.jpg?s=18&r=pg&d=http%3a%2f%2fwww.gravatar.com%2favatar%2f8ebf4339f7c8cd73b53d1d1d3eba7c35 Gregg Pollack

We start out this episode talking about the Github Rails drama from this weekend along with Yehuda's suggestion to fix the issue, MethodProfiler, Ariane, SimpleForm 2.0, and Versionist.

Subscribe to our mailing list!

This episode is sponsored by Top Ruby Jobs. Everyone deserves to love their job (and it's probably in Ruby).

  • Top Ruby Jobs
  • Github Issue
  • Rails Response
  • Yehuda's Suggestion
  • MethodProfiler
  • Ariane
  • SimpleForm 2.0
  • Versionist
  • Ruby5

Yehuda’s Mass Assignment Approach Jump to Story

Also in response to this Yehuda Katz gave two suggestions on how to combat this issue. One was to create a signed token when using form_for that contains the fields present in the form. The second layer solution was to move method whitelisting into the controllers, so you could set attribute access based on the context.

August 27, 2014

In today's episode we cover the new Rails 4.2beta, JSON API Resources, Country Select 2.0, Harpoon, Poodr course learning, and Feature Focus all while riding in our Roles Royce.

August 22nd, 2014

Semaphore is now free for open source projects, URL extraction with PostRank-URI, STI with JSON fields, a different approach to email validation, transit-rails, and the Pixel Perfect Precision Handbook all in this episode of the Ruby5!

August 19th, 2014

We talk about Rails 4.0.9 and 4.1.5, flatten records, introduce Http::Exceptions, manage configurations, and update Devise.

August 15th, 2014

Dokkufy, Rails Helpers, JRuby, Xiki and DHH code review