public Method

Controller.set_dispatch_variables(request, response, status, headers)

Source
Home > Ruby > Gems > Development > merb > Merb > Controller > set_dispatch_variables

There's no documentation for this item.

Source Code

# File merb/controller.rb, line 84
def set_dispatch_variables(request, response, status, headers)
  if request.params.key?(_session_id_key)
    if Merb::Config[:session_id_cookie_only]
      # This condition allows for certain controller/action paths to allow
      # a session ID to be passed in a query string. This is needed for
      # Flash Uploads to work since flash will not pass a Session Cookie
      # Recommend running session.regenerate after any controller taking
      # advantage of this in case someone is attempting a session fixation
      # attack
      if Merb::Config[:query_string_whitelist].include?("#{request.controller_name}/#{request.action}")
      # FIXME to use routes not controller and action names -----^
        request.cookies[_session_id_key] = request.params[_session_id_key]
      end
    else
      request.cookies[_session_id_key] = request.params[_session_id_key]
    end
  end
  @_request  = request
  @_response = response
  @_status   = status
  @_headers  = headers
end
Comments

Have your say
Please use Textile formatting (click here for a cheat sheet). Use <code/> and <pre/> for code samples.
Click here to login with OpenID to to post comments.