method

valid_per_form_csrf_token?

v7.0.0 - Show latest stable - Class: ActionController::RequestForgeryProtection

valid_per_form_csrf_token?(token, session)

private

No documentation available.

# File actionpack/lib/action_controller/metal/request_forgery_protection.rb, line 434
      def valid_per_form_csrf_token?(token, session) # :doc:
        if per_form_csrf_tokens
          correct_token = per_form_csrf_token(
            session,
            request.path.chomp("/"),
            request.request_method
          )

          ActiveSupport::SecurityUtils.fixed_length_secure_compare(token, correct_token)
        else
          false
        end
      end

valid_per_form_csrf_token?

Related methods