class Devise::ParamFilter

Public Instance Methods

filter(conditions) click to toggle source
# File lib/devise/param_filter.rb, line 8
def filter(conditions)
  conditions = stringify_params(conditions.dup)

  @case_insensitive_keys.each do |k|
    value = conditions[k]
    next unless value.respond_to?(:downcase)
    conditions[k] = value.downcase
  end

  @strip_whitespace_keys.each do |k|
    value = conditions[k]
    next unless value.respond_to?(:strip)
    conditions[k] = value.strip
  end

  conditions
end
stringify_params(conditions) click to toggle source

Force keys to be string to avoid injection on mongoid related database.

# File lib/devise/param_filter.rb, line 27
def stringify_params(conditions)
  return conditions unless conditions.is_a?(Hash)
  conditions.each do |k, v|
    conditions[k] = v.to_s if param_requires_string_conversion?(v)
  end
end

Public Class Methods

new(case_insensitive_keys, strip_whitespace_keys) click to toggle source
# File lib/devise/param_filter.rb, line 3
def initialize(case_insensitive_keys, strip_whitespace_keys)
  @case_insensitive_keys = case_insensitive_keys || []
  @strip_whitespace_keys = strip_whitespace_keys || []
end