Class: ActionController::RequestForgeryProtection::ProtectionMethods::NullSession

Relationships & Source Files
Inherits:	Object
Defined in:	actionpack/lib/action_controller/metal/request_forgery_protection.rb

Class Method Summary

.new(controller) ⇒ NullSession constructor

Instance Method Summary

#handle_unverified_request

This is the method that defines the application behavior when a request is found to be unverified.

Constructor Details

.new(controller) ⇒ `NullSession`

[ GitHub ]

# File 'actionpack/lib/action_controller/metal/request_forgery_protection.rb', line 159


def initialize(controller)
  @controller = controller
end

Instance Method Details

#handle_unverified_request

This is the method that defines the application behavior when a request is found to be unverified.

[ GitHub ]

# File 'actionpack/lib/action_controller/metal/request_forgery_protection.rb', line 164


def handle_unverified_request
  request = @controller.request
  request.session = NullSessionHash.new(request)
  request.flash = nil
  request.session_options = { skip: true }
  request.cookie_jar = NullCookieJar.build(request, {})
end

Class: ActionController::RequestForgeryProtection::ProtectionMethods::NullSession

Class Method Summary

Instance Method Summary

Constructor Details

.new(controller) ⇒ NullSession

Instance Method Details

#handle_unverified_request

.new(controller) ⇒ `NullSession`