Rails 4 permit any keys in the hash

Question

I pass a params like this

{
  "utf8" => true,
  "supply" => {
    "items" => { 111 => 112, 89 => 10},
    "another_params" => "something"
  }
}

My supply_params are:

params.fetch(:supply, {}).permit(:another_params, items: {})

But I get an unpermitted parameters 111 and 89. How can I make items permit all kinds of keys?

just allowing the parent key should allow all child keys. so simply allowing `supply` will be enough here. — Anthony, Jun 17 '15 at 14:11
Wouldn't simply `params.fetch(:supply, {}).permit(:another_params, :items)` work in your case? — Paweł Dawczak, Jun 17 '15 at 14:11
@asiniy - did you see [this thread](https://github.com/rails/rails/issues/9454)? Seems like it may address your use case. — steve klein, Jun 17 '15 at 15:18
You are not using nested-attributes or `fields_for` ? This will aid in building a more railsy params-array (and allow more stringent permissions). — nathanvda, Jun 24 '15 at 12:33
@nathanvda, not my case. These attributes goes to form object — Alex Antonov, Jun 24 '15 at 13:08
@steveklein you should it as an answer, so the OP can give you credit :) — nathanvda, Jun 24 '15 at 16:23
@asiny i think you mean the attributes come _from_ the form object, and I am saying: maybe you should write your form differently so it posts in a way rails can automatically parse more correctly. But if you are happy with your solution, it is ok. — nathanvda, Jun 24 '15 at 16:41

score 1 · Accepted Answer · answered Jun 24 '15 at 17:20

1

This thread in github provides a solution:

def supply_params
  params.require(:supply).permit(:another_params).tap do |whitelisted|
    whitelisted[:items] = params[:supply][:items] if params[:supply][:items]
  end
end

The idea is to explicitly permit any known attributes which are needed and then tack on nested attributes.

answered Jun 24 '15 at 17:20

steve klein

2,566
1
14
27

Lol I had forgotten all about this and then saw the comments today from you and @nathandva so I wrote it up. As long as you've solved your problem, that is fine. In the future, I'll try to write something up earlier so you can accept it. – steve klein Jun 24 '15 at 19:05
And I forgot about that :) – Alex Antonov Jun 25 '15 at 03:42

score 0 · Answer 2 · answered Jun 24 '15 at 07:55

0

According to the @steve klein link to github issue, this is considered as a good solution:

params.permit(:test).tap do |whitelisted|
  whitelisted[:more] = params[:more]
end

answered Jun 24 '15 at 07:55

Alex Antonov

14,134
7
65
142

Why not give Steve Klein the real credit, and let him answer? – nathanvda Jun 24 '15 at 12:34
I can do that, but I don't know how to do it. – Alex Antonov Jun 24 '15 at 13:07

Rails 4 permit any keys in the hash

2 Answers2

Linked