app/controllers/concerns/xhr_validatable.rb from hackaru-app/hackaru-api

app/controllers/concerns/xhr_validatable.rb

Summary

Maintainability

0 mins

Test Coverage

100%

Issues
Source
Stats

Issues

Coverage

# frozen_string_literal: true

module XhrValidatable
  private

  def validate_xhr!
    render_api_error_of :authenticate_failed unless valid_xhr?
  end

  def valid_xhr?
    request.xhr? && valid_origin?
  end

  def valid_origin?
    request.origin.nil? || request.origin == ENV.fetch('HACKARU_WEB_URL')
  end
end