MessageVerifier#verify raises InvalidSignature if the signature is blank

Signed-off-by: Jeremy Kemper <jeremy@bitsweat.net>
author: Jeffrey Hardy <packagethief@gmail.com> 2009-10-05 08:27:54 -0400
committer: Jeremy Kemper <jeremy@bitsweat.net> 2009-10-05 13:38:26 -0700
commit: 9212138ad0a9ae3285a2566300afb7d94344214a (patch)
tree: 20a7f533fa98fb449f94ae903197dcc86c050d83 /activesupport/lib/active_support/message_verifier.rb
parent: b480da5cd65de966ac14bbdc52b2fae3ffc06547 (diff)
download: rails-9212138ad0a9ae3285a2566300afb7d94344214a.tar.gz
rails-9212138ad0a9ae3285a2566300afb7d94344214a.tar.bz2
rails-9212138ad0a9ae3285a2566300afb7d94344214a.zip
1 files changed, 2 insertions, 0 deletions
diff --git a/activesupport/lib/active_support/message_verifier.rb b/activesupport/lib/active_support/message_verifier.rb
index 74e080a23d..fcdc09ff08 100644
--- a/activesupport/lib/active_support/message_verifier.rb
+++ b/activesupport/lib/active_support/message_verifier.rb
@@ -26,6 +26,8 @@ module ActiveSupport
     end
     
     def verify(signed_message)
+      raise InvalidSignature if signed_message.blank?
+
       data, digest = signed_message.split("--")
       if secure_compare(digest, generate_digest(data))
         Marshal.load(ActiveSupport::Base64.decode64(data))
author	Jeffrey Hardy <packagethief@gmail.com>	2009-10-05 08:27:54 -0400
committer	Jeremy Kemper <jeremy@bitsweat.net>	2009-10-05 13:38:26 -0700
commit	9212138ad0a9ae3285a2566300afb7d94344214a (patch)
tree	20a7f533fa98fb449f94ae903197dcc86c050d83 /activesupport/lib/active_support/message_verifier.rb
parent	b480da5cd65de966ac14bbdc52b2fae3ffc06547 (diff)
download	rails-9212138ad0a9ae3285a2566300afb7d94344214a.tar.gz rails-9212138ad0a9ae3285a2566300afb7d94344214a.tar.bz2 rails-9212138ad0a9ae3285a2566300afb7d94344214a.zip