From 7199b9b18921331da3c0fe8ad6fca66c97ea97cb Mon Sep 17 00:00:00 2001
From: Eric Schultz <eric+this+is+ridiculous@commitchange.com>
Date: Tue, 5 Nov 2019 12:50:28 -0600
Subject: [PATCH] Add strong params to tag_masters_controller

---
 app/controllers/nonprofits/tag_masters_controller.rb | 10 +++++++++-
 1 file changed, 9 insertions(+), 1 deletion(-)

diff --git a/app/controllers/nonprofits/tag_masters_controller.rb b/app/controllers/nonprofits/tag_masters_controller.rb
index 50858208..07b81cb9 100644
--- a/app/controllers/nonprofits/tag_masters_controller.rb
+++ b/app/controllers/nonprofits/tag_masters_controller.rb
@@ -18,7 +18,7 @@ module Nonprofits
     end
 
     def create
-      json_saved CreateTagMaster.create(current_nonprofit, params[:tag_master])
+      json_saved(current_nonprofit.tag_masters.create(tag_master_params[:tag_master]))
     end
 
     def destroy
@@ -27,5 +27,13 @@ module Nonprofits
       tag_master.tag_joins.destroy_all
       render json: {}, status: :ok
     end
+
+    private
+
+    def tag_master_params
+      params.require(:tag_master).permit(:name).tap do |tag_params|
+        tag_params.require(:name) # SAFER
+      end
+    end
   end
 end