This repository is private.
All pages are served over SSL and all pushing and pulling is done over SSH.
No one may fork, clone, or view it unless they are added as a member.
Every repository with this icon (
) is private.
Every repository with this icon (
) is private.
This repository is public.
Anyone may fork, clone, or view it.
Every repository with this icon () is public.
Every repository with this icon (
) is public.
commit 61d8836a9746cc694aa63e4cbdbcde9d8d9e523b
tree 22eb487732dad8248b973e6f0daa5af46faf40e0
parent 34a9a138c4093bd7d5678822f8f1e62c31d47299
tree 22eb487732dad8248b973e6f0daa5af46faf40e0
parent 34a9a138c4093bd7d5678822f8f1e62c31d47299
| name | age | message | |
|---|---|---|---|
 |
README | Tue Nov 15 14:50:17 -0800 2005 | |
 |
lib/ | Wed Sep 17 05:11:41 -0700 2008 | |
| |
test/ | Fri Feb 01 21:16:53 -0800 2008 |
README
SSL Requirement
===============
SSL requirement adds a declarative way of specifying that certain actions
should only be allowed to run under SSL, and if they're accessed without it,
they should be redirected.
Example:
class ApplicationController < ActiveRecord::Base
include SslRequirement
end
class AccountController < ApplicationController
ssl_required :signup, :payment
ssl_allowed :index
def signup
# Non-SSL access will be redirected to SSL
end
def payment
# Non-SSL access will be redirected to SSL
end
def index
# This action will work either with or without SSL
end
def other
# SSL access will be redirected to non-SSL
end
end
You can overwrite the protected method ssl_required? to rely on other things
than just the declarative specification. Say, only premium accounts get SSL.
P.S.: Beware when you include the SslRequirement module. At the time of
inclusion, it'll add the before_filter that validates the declarations. Some
times you'll want to run other before_filters before that. They should then be
declared ahead of including this module.
Copyright (c) 2005 David Heinemeier Hansson, released under the MIT license