I hate to resurrect an old post, but I'm working with the filtering method at the bottom of this post.
The thing that worries me is that when I submit data with this before_filter included in application.rb, the rendered value doesn't look any different than it does without that command.
I've attempted to test this in ruby/script console, but I keep getting the following error:
NoMethodError: undefined method `input_filter' for #<Object:0x2b24eff383f8>
I had tried the white_list plugin, but I had the same issue with it. I'm nervous about security with Rails, so I'd like to be able to know that whatever method I'm using is going to do what it needs to do.
Thanks for any thoughts.