class `ActionController::RequestForgeryProtection::ProtectionMethods::NullSession`

Public class methods

`new(controller)`

Source code GitHub

# File actionpack/lib/action_controller/metal/request_forgery_protection.rb, line 253
def initialize(controller)
  @controller = controller
end

Public instance methods

`handle_unverified_request()`

This is the method that defines the application behavior when a request is found to be unverified.

Source code GitHub

# File actionpack/lib/action_controller/metal/request_forgery_protection.rb, line 259
def handle_unverified_request
  request = @controller.request
  request.session = NullSessionHash.new(request)
  request.flash = nil
  request.session_options = { skip: true }
  request.cookie_jar = NullCookieJar.build(request, {})
end

Namespace

ActionController::RequestForgeryProtection::ProtectionMethods::NullSession::NullCookieJar
ActionController::RequestForgeryProtection::ProtectionMethods::NullSession::NullSessionHash

Definition files

actionpack/lib/action_controller/metal/request_forgery_protection.rb

class ActionController::RequestForgeryProtection::ProtectionMethods::NullSession

Public class methods

new(controller)

Public instance methods

handle_unverified_request()

Namespace

Definition files

class `ActionController::RequestForgeryProtection::ProtectionMethods::NullSession`

`new(controller)`

`handle_unverified_request()`