From 40953d37bdeca436a0ad040bc44c5e1336e6b18a Mon Sep 17 00:00:00 2001
From: danielgrippi <daniel@joindiaspora.com>
Date: Fri, 25 Mar 2011 15:31:23 -0700
Subject: [PATCH] Put an upper limit on the per_page param

---
 app/controllers/apis_controller.rb | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/app/controllers/apis_controller.rb b/app/controllers/apis_controller.rb
index 93d008f1a..4060ebe20 100644
--- a/app/controllers/apis_controller.rb
+++ b/app/controllers/apis_controller.rb
@@ -111,7 +111,7 @@ class ApisController < ApplicationController #We should start with this versione
 
   protected
   def set_defaults
-    params[:per_page] ||= 20
+    params[:per_page] = 20 if params[:per_page].nil? || params[:per_page] > 100
     params[:order] = 'created_at' unless ['created_at', 'updated_at'].include?(params[:order])
     params[:page] ||= 1
   end