midgard/tab
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

escape shit

Browse source
This commit is contained in:
benji 2016-03-21 11:54:32 +01:00
parent 5a8aed99ec
commit 50d27561e4
1 changed files with 3 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

4
app/controllers/concerns/data_table.rb
View file

@ -1,4 +1,6 @@
class DataTable
include ActionView::Helpers::JavaScriptHelper
include ERB::Util
def initialize user, params
@user = user
@params = sanitize_params(params)
@ -11,7 +13,7 @@ class DataTable
draw: @params[:draw],
recordsTotal: @user.transactions.count,
recordsFiltered: count,
data: data
data: data.map { |d| (d["message"] = json_escape(d["message"])) && d }
}
end
private