Sanitized form input to protect against SQL injection.

corincerami · Dec 7, 2014 · d64fddd · d64fddd
1 parent d360b57
commit d64fddd
Show file tree

Hide file tree

Showing 3 changed files with 4 additions and 4 deletions.
diff --git a/.gitignore b/.gitignore
@@ -15,3 +15,4 @@
 /log/*.log
 /tmp
 .env
+images.rb
diff --git a/app/controllers/image_controller.rb b/app/controllers/image_controller.rb
@@ -1,11 +1,10 @@
 class ImageController < ApplicationController
   def show
-    @images = Image.where(sol: params[:sol])
+    @images = Image.where(:sol => params[:sol])
   end
 
   def index
-    # find the martial solar date of the most recent image taken
-    # @most_recent = Image.all.sort_by { |hash| -hash[:sol].to_i }.first[:sol]
+    # find the martian solar date of the most recent image taken
     @image_count = Image.count
     @most_recent = Image.maximum(:sol)
   end

diff --git a/app/views/image/show.html.erb b/app/views/image/show.html.erb
@@ -1,7 +1,7 @@
 <div class='row'>
   <div class='small 6'>
     <p>
-      These photos were captured by Curiosity on sol <%= params[:sol] %> of its mission on Mars. They come from its eight cameras: the front hazard avoidance camera (FHAZ), read hazard avoidance camera (RHAZ), left and right navigation cameras (NAVCAM), chemistry camera (CHEMCAM), Mars descent imager (MARDI), Mars hand lens imager (MAHLI), and mast camera (Mastcam).
+      These photos were captured by Curiosity on sol <%=h params[:sol] %> of its mission on Mars. They come from its eight cameras: the front hazard avoidance camera (FHAZ), read hazard avoidance camera (RHAZ), left and right navigation cameras (NAVCAM), chemistry camera (CHEMCAM), Mars descent imager (MARDI), Mars hand lens imager (MAHLI), and mast camera (Mastcam).
     </p>
   </div>
 </div>