rails 4 how to add custom form fields

Question

How can we add custom form fields in rails 4.

For ex:
User (model)
username
email
hashed_password

Now in the form field for password I would like to have fields like password and password confirm.
But due to the introduction of strong parameters in rails 4, I cannot simply send those fields .
It throws error.

It used to be a piece of cake in prior versions of rails i.e in the model we would add our custom form fields to attr_accessor and we could play with them.

NOTE: I tried this thing few weeks ago and it did'nt work, and I don't remember the exact error but was something like 'no method password on user'.
I know it is very stupid of me to not provide you with the exact error messages.
My apologies, can't help I deleted the application.

I was following this tutorial (it's for rails 3) http://www.sitepoint.com/rails-userpassword-authentication-from-scratch-part-i/

Answer 1

Check out How is attr_accessible used in Rails 4? for using strong parameters in rails 4

Protecting attributes is now done in the Controller.

Answer 2

I'm using attr_accessor in model in Rails 4.

In forms I have

<%= text_field_tag 'param_name' %>

And in controller

@model.param_name = params[:param_name]

It works ok and can solve your problem, I think. BUT! I'm not sure it is secure to use it this way. If someone can explain, why it is not appropriate for security reasons and suggest a better way, I'll appreciate it (as the author, I think).