Protecting against Cross-Site Scripting in Ruby - Ruby on Rails tutorial

Category: Ruby on Rails tutorials > Security - Difficulty:

Are you accepting sensitive user data? Passwords, credit card numbers, etc. By default, Rails stores all submitted parameters in plain text in the logs. This episode will show you how to filter this sensitive input so it doesn't show up in the log file.

If you write for a large article-driven web site, you will invariably accidentally lose a whole post. You then have a two basic options: you can write in a word processor software, or you could build your own system to automatically save drafts when writing. That’s what you’ll do here, using periodically_call_remote().

Creating clean, custom assertion messages in Rails.

If you are a Windows user then listen up. There are solutions for Ruby and MySQL on Windows. Roderick Von domburg has a project for this and the releases along with excellent instructions are available from his site. Great stuff! He even shows you how to compile your own connection dll on Windows. His work was so good it was included in Instant Rails

Displaying flash messages in the layout can be a pain at times. In this episode you will learn an easy way to display any kind of flash message by looping through the hash.