module Vidibus::Secure::Extensions::Controller

Contains extensions of ApplicationController.

Public Instance Methods

valid_request?(secret, options = {}) click to toggle source

Generates a signature of a request path. Will use the current request.fullpath unless an URI is given.

The given URI will be decomposed into path and request params. A given signature_param will be removed, all remaining params will be ordered alphabetically.

Usage:

valid_request?("mysecret")
valid_request?("mysecret", :uri => "http://...", :method => "get", :params => {})
# File lib/vidibus/secure/extensions/controller.rb, line 25
def valid_request?(secret, options = {})
  method = options.delete(:method) || request.method
  uri = options.delete(:uri) || request.protocol + request.host_with_port + request.fullpath
  params = options.delete(:params) || request.request_parameters
  Vidibus::Secure.verify_request(method, uri, params, secret)
end