RSpec
Ruby on Rails
Ruby
method
allow_request_origin?
v7.0.0 -
Show latest stable
-
0 notes -
Class: Base
- 1.0.0
- 1.1.6
- 1.2.6
- 2.0.3
- 2.1.0
- 2.2.1
- 2.3.8
- 3.0.0
- 3.0.9
- 3.1.0
- 3.2.1
- 3.2.8
- 3.2.13
- 4.0.2
- 4.1.8
- 4.2.1
- 4.2.7
- 4.2.9
- 5.0.0.1 (0)
- 5.1.7 (0)
- 5.2.3 (0)
- 6.0.0 (0)
- 6.1.3.1 (0)
- 6.1.7.7 (0)
- 7.0.0 (0)
- 7.1.3.2 (0)
- 7.1.3.4 (0)
- What's this?
-
new
-
allow_request_origin?
-
beat
-
close
-
cookies
-
decode
-
dispatch_websocket_message
-
encode
-
finished_request_message
-
handle_channel_command
(>= v7.1.3.2)
-
handle_close
-
handle_open
-
inspect
(>= v7.1.3.2)
-
invalid_request_message
-
new_tagged_logger
-
on_close
-
on_error
-
on_message
-
on_open
-
process
-
receive
-
request
-
respond_to_invalid_request
-
respond_to_successful_request
-
send_async
-
send_welcome_message
-
started_request_message
-
statistics
-
successful_request_message
-
transmit
= private
= protected
allow_request_origin?()
private
Hide source
# File actioncable/lib/action_cable/connection/base.rb, line 201 def allow_request_origin? return true if server.config.disable_request_forgery_protection proto = Rack::Request.new(env).ssl? ? "https" : "http" if server.config.allow_same_origin_as_host && env["HTTP_ORIGIN"] == "#{proto}://#{env['HTTP_HOST']}" true elsif Array(server.config.allowed_request_origins).any? { |allowed_origin| allowed_origin === env["HTTP_ORIGIN"] } true else logger.error("Request origin not allowed: #{env['HTTP_ORIGIN']}") false end end
