mirror/osem
1
0
Fork 0
mirror of https://github.com/openSUSE/osem.git synced 2026-04-23 08:18:21 -04:00
Code Issues Packages Projects Releases Wiki Activity

Allow to serialize TimeZone classes

Browse Source
This commit is contained in:
Henne Vogelsang
2024-03-26 16:20:12 +01:00
parent e8c4e7a7c4
commit ba8f7e5cf3
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
config/application.rb
View File

@@ -36,6 +36,6 @@ module Osem
# This is a nightmare with our current data model, no one ever thought about this.
config.active_record.belongs_to_required_by_default = false
# https://discuss.rubyonrails.org/t/cve-2022-32224-possible-rce-escalation-bug-with-serialized-columns-in-active-record/81017
config.active_record.yaml_column_permitted_classes = ['Date', 'DateTime', 'Symbol', 'Time']
config.active_record.yaml_column_permitted_classes = ['Date', 'DateTime', 'Symbol', 'Time', 'ActiveSupport::TimeWithZone', 'ActiveSupport::TimeZone']
end
end