From: Jean-Philippe Lang <jp_lang@yahoo.fr>
Date: Sun, 1 Nov 2015 08:16:10 +0000 (+0000)
Subject: Use #safe_attributes= for building new time entry.
X-Git-Tag: 3.2.0~87
X-Git-Url: https://source.dussan.org/?a=commitdiff_plain;h=3d513cae6ee96d0ce6c10b5068f91a6df10999d3;p=redmine.git

Use #safe_attributes= for building new time entry.

git-svn-id: http://svn.redmine.org/redmine/trunk@14787 e93f8b46-1217-0410-a6f0-8f06a7374b81
---

diff --git a/app/controllers/issues_controller.rb b/app/controllers/issues_controller.rb
index e8e1e3c05..2abe13ae8 100644
--- a/app/controllers/issues_controller.rb
+++ b/app/controllers/issues_controller.rb
@@ -376,7 +376,7 @@ class IssuesController < ApplicationController
   def update_issue_from_params
     @time_entry = TimeEntry.new(:issue => @issue, :project => @issue.project)
     if params[:time_entry]
-      @time_entry.attributes = params[:time_entry]
+      @time_entry.safe_attributes = params[:time_entry]
     end
 
     @issue.init_journal(User.current)