I’m writing a piece of software where I receive the name of an active
record class from the outside (in the request_uri) and want to make a
lookup on whether this active record class exists. Then, I need to do a
.find(…) and whatever on that class.
The following lines do exactly what I want, however, they are
completely NOT secure
activerecord = eval(name)
if activerecord.superclass == ActiveRecord::Base
Anyone has a better idea?
A switch/case is not an option as I don’t know the names of all
existing active record classes at design time. However, could one find
out the names of all available active record classes at run time?
Thank you, your help is very appreciated!