Module

RequestForgeryProtection

ModulesMethods
Home > Ruby > Rails > Rails 1.2.3 > ActionPack > ActionController > RequestForgeryProtection

There's no documentation for this item.

Modules
ClassMethods
Public Methods
included
Protected Methods
authenticity_token_from_cookie_session No secret was given, so assume this is a cookie session store.
authenticity_token_from_session_id Generates a unique digest using the session_id and the CSRF secret.
form_authenticity_token Sets the token value for the current session. Pass a :secret option in #protect_from_forgery to add a custom salt to the hash.
protect_against_forgery?
verifiable_request_format?
verified_request? Returns true or false if a request is verified. Checks:
verify_authenticity_token The actual before_filter that is used. Modify this to change how you handle unverified requests.
Comments

Have your say
Please use Textile formatting (click here for a cheat sheet). Use <code/> and <pre/> for code samples.
Click here to login with OpenID to to post comments.