#11 new
mrflip

Multiple Routes to User Actions May Be Troublesome Downstream

Reported by mrflip | August 26th, 2008 @ 12:15 PM

The code in http://railscasts.com/episodes/1...

sets a parameter for the /signup route:


  # routes.rb
  map.signup '/signup/:invitation_token', :controller => 'users', :action => 'new'

but none for the /users/new route. The fact that a user could route to :new with a nil :invitation_token is at best surprising behavior.

No comments found

Please Sign in or create a free account to add a new ticket.

With your very own profile, you can contribute to projects, track your activity, watch tickets, receive and update tickets through your email and much more.

New-ticket Create new ticket

Create your profile

Help contribute to this project by taking a few moments to create your personal profile. Create your profile »

Restful Authentication Generator

This widely-used plugin provides a foundation for securely managing user
authentication:
* Login / logout
* Secure password handling
* Account activation by validating email
* Account approval / disabling by admin
* Rudimentary hooks for authorization and access control.

http://github.com/technoweenie/restful-authentication/tree

People watching this ticket

Tags

Pages