Perfect - the data I need ends up in request.env['RAW_POST_DATA']. Thanks!
D David Knorr wrote: > Duane Morin skrev: >> >> Anybody got suggestions on how to get around this? Do I have to work >> with the folks generating the XML to do some sort of handshake that gets >> them an authenticity token? But then, how would they send it over? >> Surely there are other occasions when you might want some non-Rails >> source to post a raw data stream to a Rails app? > > Say for example that you want the create action of PeopleController to > accept requests from an external source, then you'ld simply add this > line to people_controller.rb: > > protect_from_forgery :except => :create > > See the documentation for the protect_from_forgery method: > http://api.rubyonrails.org/classes/ActionController/RequestForgeryProtection/ClassMethods.html#M000493 > > -- > Best regards, > David Knorr > http://twitter.com/rubyguy -- Posted via http://www.ruby-forum.com/. --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Ruby on Rails: Talk" group. To post to this group, send email to rubyonrails-talk@googlegroups.com To unsubscribe from this group, send email to rubyonrails-talk+unsubscr...@googlegroups.com For more options, visit this group at http://groups.google.com/group/rubyonrails-talk?hl=en -~----------~----~----~----~------~----~------~--~---
