kotovalexarian-likes-github/rails--rails
1
0
Fork 0
mirror of https://github.com/rails/rails.git synced 2022-11-09 12:12:34 -05:00
Code Releases Activity

Explicitly included hashes in sentence regarding SQL-injection-safe forms

Browse source
This commit is contained in:
Pete Campbell 2011-07-28 09:44:51 -04:00
parent 5a22f05522
commit 6dc749596c
1 changed files with 3 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

6
activerecord/lib/active_record/base.rb
View file

@ -63,9 +63,9 @@ module ActiveRecord #:nodoc:
# == Conditions
#
# Conditions can either be specified as a string, array, or hash representing the WHERE-part of an SQL statement.
# The array form is to be used when the condition input is tainted and requires sanitization. The string form can
# be used for statements that don't involve tainted data. The hash form works much like the array form, except
# only equality and range is possible. Examples:
# The array form is to be used when the condition input is tainted and requires sanitization. The string and hash
# forms can be used for statements that don't involve tainted data. The hash form works much like the array form,
# except only equality and range is possible. Examples:
#
# class User < ActiveRecord::Base
# def self.authenticate_unsafely(user_name, password)