aboutsummaryrefslogtreecommitdiffstats
path: root/app/controllers/active_storage/variants_controller.rb
diff options
context:
space:
mode:
Diffstat (limited to 'app/controllers/active_storage/variants_controller.rb')
-rw-r--r--app/controllers/active_storage/variants_controller.rb4
1 files changed, 4 insertions, 0 deletions
diff --git a/app/controllers/active_storage/variants_controller.rb b/app/controllers/active_storage/variants_controller.rb
index 5d5dd1a63c..aa38f8e928 100644
--- a/app/controllers/active_storage/variants_controller.rb
+++ b/app/controllers/active_storage/variants_controller.rb
@@ -1,5 +1,9 @@
require "active_storage/variant"
+# Take a signed permanent reference for a variant and turn it into an expiring service URL for download.
+# Note: These URLs are publicly accessible. If you need to enforce access protection beyond the
+# security-through-obscurity factor of the signed blob and variation reference, you'll need to implement your own
+# authenticated redirection controller.
class ActiveStorage::VariantsController < ActionController::Base
def show
if blob = find_signed_blob
generated by cgit v1.2.3 (git 2.25.1) at 2025-10-11 09:38:41 +0000