[英]Unpermitted Parameters in Rails
I've created a sign up form for my site, and included the following parameters in my users_controller.rb file in order to save the data entered into the corresponding fields to my database.我为我的站点创建了一个注册表单,并在我的 users_controller.rb 文件中包含了以下参数,以便将输入到相应字段中的数据保存到我的数据库中。 For some reason, when I attempt to submit my created Sign Up form, the console is telling me that firstname and lastname aren't permitted parameters.出于某种原因,当我尝试提交我创建的注册表单时,控制台告诉我名字和姓氏不是允许的参数。 The error is:错误是:
Unpermitted parameters: firstname, lastname不允许的参数:名字,姓氏
The sign up is successful, and the other parameters are entered into the database just fine;注册成功,其他参数输入数据库就好了; however firstname and lastname columns remain empty.但是 firstname 和 lastname 列保持为空。
users_controller.rb用户控制器.rb
class UsersController < ApplicationController
def create
@user = User.new(user_params)
if @user.save
flash[:success] = "You signed up successfully"
flash[:color] = "valid"
redirect_to @user
else
flash[:notice] = "Form is invalid"
flash[:color] = "invalid"
render "new"
end
end
private
def user_params
params.require(:user).permit(:firstname, :lastname, :email, :password, :password_confirmation)
end
def show
@user = User.find(params[:id])
end
def new
end
end
new.html.erb新的.html.erb
<%= form_for(:user, :url => {:controller => 'users', :action => 'create'}) do |f| %>
</br> <%= f.text_field :firstname, placeholder: 'First Name' %>
</br> <%= f.text_field :lastname, placeholder: 'Last Name' %>
</br> <%= f.text_field :email, placeholder: 'Email' %>
</br> <%= f.password_field :password, placeholder: 'Password' %>
</br> <%= f.password_field :password_confirmation, placeholder: 'Confirm Password' %>
<%= f.submit :Register %>
<% end %>
schema.rb模式文件
create_table "users", force: :cascade do |t|
t.string "firstname"
t.string "lastname"
t.string "email"
t.datetime "created_at", null: false
t.datetime "updated_at", null: false
t.string "password_digest"
t.string "password"
end
user.rb用户名
class User < ActiveRecord::Base
has_secure_password
validates_length_of :password, :in => 6..20, :on => :create
validates :password_confirmation, presence: true, if: -> { new_record? || changes["password"] }
end
Incoming Parameters (console)传入参数(控制台)
Processing by UsersController#create as HTML
Parameters: {"utf8"=>"✓", "authenticity_token"=>"1hHzXu2RZR3G3Zx4PoOeDu3DlU31V5abDH/UmNx+w9hs/gacgRYhFgpe6cm0d7cLaTtZdfROi3oUrw/m5EcTAQ==", "user"=>{"firstname"=>"Milhouse", "lastname"=>"Vanhoutten", "email"=>"milhouse@thesimpsons.com", "password"=>"[FILTERED]", "password_confirmation"=>"[FILTERED]"}, "commit"=>"Register"}
Unpermitted parameters: firstname, lastname,
(0.4ms) begin transaction
SQL (0.6ms) INSERT INTO "users" ("email", "password_digest", "created_at", "updated_at") VALUES (?, ?, ?, ?) [["email", "milhouse@thesimpsons.com"], ["password_digest", "$2a$10$T.iv9b3BjG.t1FJvT7YsVOZf0wNOD2QSFA9lP8RGOiE1h5AaDdB2q"], ["created_at", "2016-01-18 22:12:32.764948"], ["updated_at", "2016-01-18 22:12:32.764948"]]
(7.0ms) commit transaction
Redirected to /users/6
Completed 302 Found in 122ms (ActiveRecord: 8.7ms)
It looks like the parameters may be coming in as看起来参数可能是作为
{:firstname => 'foo', :lastname => 'baz'}
instead of代替
{"user" => {"firstname" => "foo", "lastname" => "baz"}}
It can probably be traced back to the form.它可能可以追溯到表格。
I had the exact same problem, but with the update method.我有完全相同的问题,但使用更新方法。 Turns out it was caused by an around_update
callback I was using.原来它是由我使用的around_update
回调引起的。 I changed the around_update
callback to after_update
and the problem was fixed.我将around_update
回调更改为after_update
,问题就解决了。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.