Login Register

verified_request?

verified_request?()

Instance Protected methods

Returns true or false if a request is verified. Checks:

is it a GET or HEAD request? Gets should be safe and idempotent
Does the #form_authenticity_token match the given token value from the params?
Does the X-CSRF-Token header match the #form_authenticity_token

Links:

https://github.com/rails/rails/blob/4f4fdd643f9d19fbbeeec3ac77674f791c9beffa/actionpack/lib/action_controller/metal/request_forgery_protection.rb#L242

doc_ruby_on_rails

2025-01-10 15:47:30

Comments

Leave a Comment

Please login to continue.

Popular Articles

socketserver.BaseServer.verify_request() verify_request(request, client_address) Must return a Boolean value; if the value is True, the request will be processed, and if it’s False, the r

verify_same_origin_request verify_same_origin_request() Instance Protected methods If `verify_authenticity_token` was run (indicating that we have forgery protecti

verifier.verify() verifier.verify(object, signature[, signature_format]) Verifies the provided data using the given object and signature. The object argument is a stri

verify verify(p1, p2, p3 = v3, p4 = v4) Instance Public methods

Verify Class: Verify The Verify class is a utility for verifying signatures. It can be used in one of two ways: As a writable stream where written data is