method
non_xhr_javascript_response?
v4.2.1 -
Show latest stable
- Class:
ActionController::RequestForgeryProtection
non_xhr_javascript_response?()protected
Check for cross-origin JavaScript responses.
-
compare_with_real_token - form_authenticity_param
- form_authenticity_token
- handle_unverified_request
- mark_for_same_origin_verification!
- marked_for_same_origin_verification?
- masked_authenticity_token
- non_xhr_javascript_response?
- protect_against_forgery?
- real_csrf_token
- valid_authenticity_token?
- verified_request?
- verify_authenticity_token
- verify_same_origin_request
- xor_byte_strings