Explain why there is a monkey-patch

2016-12-27 18:12:37 +01:00 · 2016-12-27 18:12:37 +01:00 · e55494d380
parent f264ec6ee7
commit e55494d380
1 changed files with 6 additions and 0 deletions
--- a/config/initializers/workhorse_multipart.rb
+++ b/config/initializers/workhorse_multipart.rb
@ -2,6 +2,12 @@ Rails.application.configure do |config|
  config.middleware.use(Gitlab::Middleware::Multipart)
 end

+# The Gitlab::Middleware::Multipart middleware inserts instances of our
+# own ::UploadedFile class in the Rack env of requests. These instances
+# will be blocked by the 'strong parameters' feature of ActionController
+# unless we somehow whitelist them. At the moment it seems the only way
+# to do that is by monkey-patching.
+#
 module Gitlab
  module StrongParameterScalars
    GITLAB_PERMITTED_SCALAR_TYPES = [::UploadedFile]