ActiveModel ForbiddenAttributesProtection causing ForbiddenAttributesError on API POST
Closed this issue · 1 comments
hstrowd commented
As noted in ruby-grape/grape#404, without the 'hashie-forbidden_attributes' grape is unable to process post attributes due to ActiveModel's ForbiddenAttributesProtection#sanitize_for_mass_assignment method. It seems like adding the hashie-forbidden_attributes gem to the 'new' template's Gemfile would be a nice way to provide this functionality out of the box for new services.