From 9013afa43bbd61c4a9dc319ba75e3dcaf56dc912 Mon Sep 17 00:00:00 2001
From: Serge Paquet <srgpqt@gmail.com>
Date: Mon, 3 Feb 2014 17:14:49 -0500
Subject: [PATCH] do not permit story moderation_reason to pass mass assignment
 security

---
 app/controllers/stories_controller.rb | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/app/controllers/stories_controller.rb b/app/controllers/stories_controller.rb
index d1e4ba8..82a092a 100644
--- a/app/controllers/stories_controller.rb
+++ b/app/controllers/stories_controller.rb
@@ -227,8 +227,7 @@ private
 
   def story_params
     params.require(:story).permit(
-      :title, :url, :description, :moderation_reason, :seen_previous,
-      :tags_a => []
+      :title, :url, :description, :seen_previous, :tags_a => []
     )
   end