aboutsummaryrefslogtreecommitdiffstats
path: root/activestorage/app/controllers/active_storage/variants_controller.rb
diff options
context:
space:
mode:
Diffstat (limited to 'activestorage/app/controllers/active_storage/variants_controller.rb')
-rw-r--r--activestorage/app/controllers/active_storage/variants_controller.rb14
1 files changed, 14 insertions, 0 deletions
diff --git a/activestorage/app/controllers/active_storage/variants_controller.rb b/activestorage/app/controllers/active_storage/variants_controller.rb
new file mode 100644
index 0000000000..e8f8dd592d
--- /dev/null
+++ b/activestorage/app/controllers/active_storage/variants_controller.rb
@@ -0,0 +1,14 @@
+# frozen_string_literal: true
+
+# Take a signed permanent reference for a variant and turn it into an expiring service URL for download.
+# Note: These URLs are publicly accessible. If you need to enforce access protection beyond the
+# security-through-obscurity factor of the signed blob and variation reference, you'll need to implement your own
+# authenticated redirection controller.
+class ActiveStorage::VariantsController < ActionController::Base
+ include ActiveStorage::SetBlob
+
+ def show
+ expires_in ActiveStorage::Blob.service.url_expires_in
+ redirect_to ActiveStorage::Variant.new(@blob, params[:variation_key]).processed.service_url(disposition: params[:disposition])
+ end
+end
generated by cgit v1.2.3 (git 2.25.1) at 2024-07-30 21:05:42 +0000