class ActiveStorage::DiskController

Serves files stored with the disk service in the same way that the cloud services do. This means using expiring, signed URLs that are meant for immediate access, not permanent linking. Always go through the BlobsController, or your own authenticated controller, rather than directly to the service url.

Public Instance Methods

show() click to toggle source
# File activestorage/app/controllers/active_storage/disk_controller.rb, line 8
def show
  if key = decode_verified_key
    send_data disk_service.download(key),
      disposition: disposition_param, content_type: params[:content_type]
  else
    head :not_found
  end
end
update() click to toggle source
# File activestorage/app/controllers/active_storage/disk_controller.rb, line 17
def update
  if token = decode_verified_token
    if acceptable_content?(token)
      disk_service.upload token[:key], request.body, checksum: token[:checksum]
    else
      head :unprocessable_entity
    end
  else
    head :not_found
  end
rescue ActiveStorage::IntegrityError
  head :unprocessable_entity
end

Private Instance Methods

acceptable_content?(token) click to toggle source
# File activestorage/app/controllers/active_storage/disk_controller.rb, line 50
def acceptable_content?(token)
  token[:content_type] == request.content_type && token[:content_length] == request.content_length
end
decode_verified_key() click to toggle source
# File activestorage/app/controllers/active_storage/disk_controller.rb, line 37
def decode_verified_key
  ActiveStorage.verifier.verified(params[:encoded_key], purpose: :blob_key)
end
decode_verified_token() click to toggle source
# File activestorage/app/controllers/active_storage/disk_controller.rb, line 46
def decode_verified_token
  ActiveStorage.verifier.verified(params[:encoded_token], purpose: :blob_token)
end
disk_service() click to toggle source
# File activestorage/app/controllers/active_storage/disk_controller.rb, line 32
def disk_service
  ActiveStorage::Blob.service
end
disposition_param() click to toggle source
# File activestorage/app/controllers/active_storage/disk_controller.rb, line 41
def disposition_param
  params[:disposition].presence || "inline"
end