class ActionDispatch::Request
Inherits From
-
module
Rack::
Request:: Helpers -
module
ActionDispatch::
Http:: Cache:: Request -
module
ActionDispatch::
Http:: MimeNegotiation -
module
ActionDispatch::
Http:: Parameters -
module
ActionDispatch::
Http:: FilterParameters -
module
ActionDispatch::
Http:: URL -
module
ActionDispatch::
ContentSecurityPolicy:: Request -
module
ActionDispatch::
PermissionsPolicy:: Request -
module
Rack::
Request:: Env
Constants
%w[ AUTH_TYPE GATEWAY_INTERFACE
PATH_TRANSLATED REMOTE_HOST
REMOTE_IDENT REMOTE_USER REMOTE_ADDR
SERVER_NAME SERVER_PROTOCOL
ORIGINAL_SCRIPT_NAME
HTTP_ACCEPT HTTP_ACCEPT_CHARSET HTTP_ACCEPT_ENCODING
HTTP_ACCEPT_LANGUAGE HTTP_CACHE_CONTROL HTTP_FROM
HTTP_NEGOTIATE HTTP_PRAGMA HTTP_CLIENT_IP
HTTP_X_FORWARDED_FOR HTTP_ORIGIN HTTP_VERSION
HTTP_X_CSRF_TOKEN HTTP_X_REQUEST_ID HTTP_X_FORWARDED_HOST
].freeze
HTTP methods from RFC 2518: HTTP Extensions for Distributed Authoring – WEBDAV
%w(PROPFIND PROPPATCH MKCOL COPY MOVE LOCK UNLOCK)
HTTP methods from RFC 2616: Hypertext Transfer Protocol – HTTP/1.1
%w(OPTIONS GET HEAD POST PUT DELETE TRACE CONNECT)
HTTP methods from RFC 3253: Versioning Extensions to WebDAV
%w(VERSION-CONTROL REPORT CHECKOUT CHECKIN UNCHECKOUT MKWORKSPACE UPDATE LABEL MERGE BASELINE-CONTROL MKACTIVITY)
Public class methods
Source code GitHub
# File actionpack/lib/action_dispatch/http/request.rb, line 60
def self.empty
new({})
end
Source code GitHub
# File actionpack/lib/action_dispatch/http/request.rb, line 64
def initialize(env)
super
@method = nil
@request_method = nil
@remote_ip = nil
@original_fullpath = nil
@fullpath = nil
@ip = nil
end
Public instance methods
Also aliased as:
query_parameters
.
Override Rack’s GET method to support indifferent access.
Source code GitHub
# File actionpack/lib/action_dispatch/http/request.rb, line 389
def GET
fetch_header("action_dispatch.request.query_parameters") do |k|
rack_query_params = super || {}
controller = path_parameters[:controller]
action = path_parameters[:action]
rack_query_params = Request::Utils.set_binary_encoding(self, rack_query_params, controller, action)
# Check for non UTF-8 parameter values, which would cause errors later
Request::Utils.check_param_encoding(rack_query_params)
set_header k, Request::Utils.normalize_encode_params(rack_query_params)
end
rescue Rack::Utils::ParameterTypeError, Rack::Utils::InvalidParameterError, Rack::QueryParser::ParamsTooDeepError => e
raise ActionController::BadRequest.new("Invalid query parameters: #{e.message}")
end
Also aliased as:
request_parameters
.
Override Rack’s POST method to support indifferent access.
Source code GitHub
# File actionpack/lib/action_dispatch/http/request.rb, line 405
def POST
fetch_header("action_dispatch.request.request_parameters") do
pr = parse_formatted_parameters(params_parsers) do |params|
super || {}
end
pr = Request::Utils.set_binary_encoding(self, pr, path_parameters[:controller], path_parameters[:action])
Request::Utils.check_param_encoding(pr)
self.request_parameters = Request::Utils.normalize_encode_params(pr)
end
rescue Rack::Utils::ParameterTypeError, Rack::Utils::InvalidParameterError, Rack::QueryParser::ParamsTooDeepError, EOFError => e
raise ActionController::BadRequest.new("Invalid request parameters: #{e.message}")
end
Returns the authorization header regardless of whether it was specified directly or through one of the proxy alternatives.
Source code GitHub
# File actionpack/lib/action_dispatch/http/request.rb, line 421
def authorization
get_header("HTTP_AUTHORIZATION") ||
get_header("X-HTTP_AUTHORIZATION") ||
get_header("X_HTTP_AUTHORIZATION") ||
get_header("REDIRECT_X_HTTP_AUTHORIZATION")
end
The request body is an IO input stream. If the RAW_POST_DATA environment variable is already set, wrap it in a StringIO.
Source code GitHub
# File actionpack/lib/action_dispatch/http/request.rb, line 351
def body
if raw_post = get_header("RAW_POST_DATA")
raw_post = (+raw_post).force_encoding(Encoding::BINARY)
StringIO.new(raw_post)
else
body_stream
end
end
Source code GitHub
# File actionpack/lib/action_dispatch/http/request.rb, line 453
def commit_csrf_token
controller_instance.commit_csrf_token(self) if controller_instance.respond_to?(:commit_csrf_token)
end
Source code GitHub
# File actionpack/lib/action_dispatch/http/request.rb, line 442
def commit_flash
end
Returns the content length of the request as an integer.
Source code GitHub
# File actionpack/lib/action_dispatch/http/request.rb, line 286
def content_length
return raw_post.bytesize if has_header?(TRANSFER_ENCODING)
super.to_i
end
Source code GitHub
# File actionpack/lib/action_dispatch/http/request.rb, line 83
def controller_class
params = path_parameters
params[:action] ||= "index"
controller_class_for(params[:controller])
end
Source code GitHub
# File actionpack/lib/action_dispatch/http/request.rb, line 89
def controller_class_for(name)
if name
controller_param = name.underscore
const_name = controller_param.camelize << "Controller"
begin
const_name.constantize
rescue NameError => error
if error.missing_name == const_name || const_name.start_with?("#{error.missing_name}::")
raise MissingController.new(error.message, error.name)
else
raise
end
end
else
PASS_NOT_FOUND
end
end
Determine whether the request body contains form-data by checking the request Content-Type
for one of the media-types: application/x-www-form-urlencoded
or multipart/form-data
. The list of form-data media types can be modified through the FORM_DATA_MEDIA_TYPES
array.
A request body is not assumed to contain form-data when no Content-Type
header is provided and the request_method
is POST.
Source code GitHub
# File actionpack/lib/action_dispatch/http/request.rb, line 367
def form_data?
FORM_DATA_MEDIA_TYPES.include?(media_type)
end
Returns the String
full path including params of the last URL requested.
# get "/articles"
request.fullpath # => "/articles"
# get "/articles?page=2"
request.fullpath # => "/articles?page=2"
Source code GitHub
# File actionpack/lib/action_dispatch/http/request.rb, line 265
def fullpath
@fullpath ||= super
end
Provides access to the request’s HTTP headers, for example:
request.headers["Content-Type"] # => "text/plain"
Source code GitHub
# File actionpack/lib/action_dispatch/http/request.rb, line 227
def headers
@headers ||= Http::Headers.new(self)
end
Source code GitHub
# File actionpack/lib/action_dispatch/http/request.rb, line 193
def http_auth_salt
get_header "action_dispatch.http_auth_salt"
end
Returns the IP address of client as a String
.
Source code GitHub
# File actionpack/lib/action_dispatch/http/request.rb, line 300
def ip
@ip ||= super
end
Returns true if the request has a header matching the given key parameter.
request.key? :ip_spoofing_check # => true
Source code GitHub
# File actionpack/lib/action_dispatch/http/request.rb, line 110
def key?(key)
has_header? key
end
True if the request came from localhost, 127.0.0.1, or ::1.
Source code GitHub
# File actionpack/lib/action_dispatch/http/request.rb, line 429
def local?
LOCALHOST.match?(remote_addr) && LOCALHOST.match?(remote_ip)
end
Source code GitHub
# File actionpack/lib/action_dispatch/http/request.rb, line 438
def logger
get_header("action_dispatch.logger")
end
The String
MIME type of the request.
# get "/articles"
request.media_type # => "application/x-www-form-urlencoded"
Source code GitHub
# File actionpack/lib/action_dispatch/http/request.rb, line 281
def media_type
content_mime_type&.to_s
end
Returns the original value of the environment’s REQUEST_METHOD, even if it was overridden by middleware. See request_method
for more information.
For debugging purposes, when called with arguments this method will fall back to Object#method
Source code GitHub
# File actionpack/lib/action_dispatch/http/request.rb, line 207
def method(*args)
if args.empty?
@method ||= check_method(
get_header("rack.methodoverride.original_method") ||
get_header("REQUEST_METHOD")
)
else
super
end
end
Returns a symbol form of the method
.
Source code GitHub
# File actionpack/lib/action_dispatch/http/request.rb, line 220
def method_symbol
HTTP_METHOD_LOOKUP[method]
end
Returns a String
with the last requested path including their params.
# get '/foo'
request.original_fullpath # => '/foo'
# get '/foo?bar'
request.original_fullpath # => '/foo?bar'
Source code GitHub
# File actionpack/lib/action_dispatch/http/request.rb, line 254
def original_fullpath
@original_fullpath ||= (get_header("ORIGINAL_FULLPATH") || fullpath)
end
Returns the original request URL as a String
.
# get "/articles?page=2"
request.original_url # => "http://www.example.com/articles?page=2"
Source code GitHub
# File actionpack/lib/action_dispatch/http/request.rb, line 273
def original_url
base_url + original_fullpath
end
Alias for:
GET
.
Read the request body. This is useful for web services that need to work with raw requests directly.
Source code GitHub
# File actionpack/lib/action_dispatch/http/request.rb, line 342
def raw_post
unless has_header? "RAW_POST_DATA"
set_header("RAW_POST_DATA", read_body_stream)
end
get_header "RAW_POST_DATA"
end
Returns the IP address of client as a String
, usually set by the RemoteIp
middleware.
Source code GitHub
# File actionpack/lib/action_dispatch/http/request.rb, line 306
def remote_ip
@remote_ip ||= (get_header("action_dispatch.remote_ip") || ip).to_s
end
Source code GitHub
# File actionpack/lib/action_dispatch/http/request.rb, line 310
def remote_ip=(remote_ip)
@remote_ip = nil
set_header "action_dispatch.remote_ip", remote_ip
end
Also aliased as:
uuid
.
Returns the unique request id, which is based on either the X-Request-Id
header that can be generated by a firewall, load balancer, or web server, or by the RequestId
middleware (which sets the action_dispatch.request_id
environment variable).
This unique ID is useful for tracing a request from end-to-end as part of logging or debugging. This relies on the Rack variable set by the ActionDispatch::RequestId
middleware.
Source code GitHub
# File actionpack/lib/action_dispatch/http/request.rb, line 325
def request_id
get_header ACTION_DISPATCH_REQUEST_ID
end
Returns the HTTP method that the application should see. In the case where the method was overridden by a middleware (for instance, if a HEAD request was converted to a GET, or if a _method parameter was used to determine the method the application should use), this method returns the overridden value, not the original.
Source code GitHub
# File actionpack/lib/action_dispatch/http/request.rb, line 147
def request_method
@request_method ||= check_method(super)
end
Returns a symbol form of the request_method
.
Source code GitHub
# File actionpack/lib/action_dispatch/http/request.rb, line 198
def request_method_symbol
HTTP_METHOD_LOOKUP[request_method]
end
Alias for:
POST
.
Source code GitHub
# File actionpack/lib/action_dispatch/http/request.rb, line 433
def request_parameters=(params)
raise if params.nil?
set_header("action_dispatch.request.request_parameters", params)
end
Source code GitHub
# File actionpack/lib/action_dispatch/http/request.rb, line 449
def reset_csrf_token
controller_instance.reset_csrf_token(self) if controller_instance.respond_to?(:reset_csrf_token)
end
Source code GitHub
# File actionpack/lib/action_dispatch/http/request.rb, line 375
def reset_session
session.destroy
reset_csrf_token
end
Returns the URI pattern of the matched route for the request, using the same format as bin/rails routes
:
request.route_uri_pattern # => "/:controller(/:action(/:id))(.:format)"
Source code GitHub
# File actionpack/lib/action_dispatch/http/request.rb, line 155
def route_uri_pattern
get_header("action_dispatch.route_uri_pattern")
end
Early Hints is an HTTP/2 status code that indicates hints to help a client start making preparations for processing the final response.
If the env contains rack.early_hints
then the server accepts HTTP2 push for link headers.
The send_early_hints
method accepts a hash of links as follows:
send_early_hints("link" => "</style.css>; rel=preload; as=style,</script.js>; rel=preload")
If you are using javascript_include_tag
or stylesheet_link_tag
the Early Hints headers are included by default if supported.
Source code GitHub
# File actionpack/lib/action_dispatch/http/request.rb, line 243
def send_early_hints(links)
env["rack.early_hints"]&.call(links)
end
Returns the lowercase name of the HTTP server software.
Source code GitHub
# File actionpack/lib/action_dispatch/http/request.rb, line 336
def server_software
(get_header("SERVER_SOFTWARE") && /^([a-zA-Z]+)/ =~ get_header("SERVER_SOFTWARE")) ? $1.downcase : nil
end
Source code GitHub
# File actionpack/lib/action_dispatch/http/request.rb, line 384
def session_options=(options)
Session::Options.set self, options
end
Alias for:
request_id
.
Alias for:
xml_http_request?
.
Also aliased as:
xhr?
.
Returns true if the X-Requested-With
header contains “XMLHttpRequest” (case-insensitive), which may need to be manually added depending on the choice of JavaScript libraries and frameworks.
Source code GitHub
# File actionpack/lib/action_dispatch/http/request.rb, line 294
def xml_http_request?
/XMLHttpRequest/i.match?(get_header("HTTP_X_REQUESTED_WITH"))
end