method
verified_request?
verified_request?()
protected
Returns true or false if a request is verified. Checks:
- is the format restricted? By default, only HTML requests are checked.
- is it a GET request? Gets should be safe and idempotent
- Does the form_authenticity_token match the given token value from the params?