search for: dynamicllybuiltlistofvariables

...tive Record protection against SQL injection attacks. In PHP land, I would have built up the query in my logic & attempted to clean every variable - a bit tedious really. I want to be able to achieve something like: events = Event.find(:all, :conditions => [**DynamicallyBuiltQuery** , **DynamicllyBuiltListOfVariables**], :order => event_datetime_start) It would be great if someone could please enlighten me on the rails way, or if there is a better way to do this. rgds, - matt. ----------------------------------------------------------- This is roughly how I''ve mangle rails as I would have done...