RSpec
Ruby on Rails
Ruby
method
_enforce_open_redirect_protection
Ruby on Rails latest stable (v7.1.3.2)
-
0 notes -
Class: ActionController::Redirecting
- 1.0.0
- 1.1.6
- 1.2.6
- 2.0.3
- 2.1.0
- 2.2.1
- 2.3.8
- 3.0.0
- 3.0.9
- 3.1.0
- 3.2.1
- 3.2.8
- 3.2.13
- 4.0.2
- 4.1.8
- 4.2.1
- 4.2.7
- 4.2.9
- 5.0.0.1
- 5.1.7
- 5.2.3
- 6.0.0
- 6.1.3.1
- 6.1.7.7
- 7.0.0 (0)
- 7.1.3.2 (0)
- 7.1.3.4 (0)
- What's this?
-
_compute_redirect_to_location
-
_allow_other_host
-
_compute_redirect_to_location
-
_enforce_open_redirect_prot...
-
_ensure_url_is_http_header_...
-
_extract_redirect_to_status
-
redirect_back
-
redirect_back_or_to
-
redirect_to
-
url_from
-
_url_host_allowed?
= private
= protected
_enforce_open_redirect_protection(location, allow_other_host:)
private
Hide source
# File actionpack/lib/action_controller/metal/redirecting.rb, line 195 def _enforce_open_redirect_protection(location, allow_other_host)) if allow_other_host || _url_host_allowed?(location) location else raise UnsafeRedirectError, "Unsafe redirect to #{location.truncate(100).inspect}, pass allow_other_host: true to redirect anyway." end end
