iHiD · May 7, 2012 15:57
diff --git a/application.rb b/application.rb
 config.force_ssl = true
diff --git a/csrf.js b/csrf.js
 var form_data = //.. Serialise a form

 // Get token and param from the meta tags
 var token = $('meta[name="csrf-token"]').attr('content');
 var param = $('meta[name="csrf-param"]').attr('content');

 // Create url of "/settings/profile?name=Jeremy+Walker&authenticity_token=askdsalewg303y09sd00dshb0b00ac0dffbafds"
 document.location = "/settings/profile?_method=PUT&" + form_data + "&" + token + "=" + param;
diff --git a/database_session_script.bash b/database_session_script.bash
 rails generate session_migration
 rake db:migrate
diff --git a/heroku_setup.bash b/heroku_setup.bash
 heroku addons:add ssl:endpoint
 heroku certs:add my_cerficate.crt site.key
diff --git a/session_store.rb b/session_store.rb
 Security::Application.config.session_store :active_record_store
diff --git a/sessions_controller.rb b/sessions_controller.rb
 # Authenticate user
 @user = #...

 # Destroy the existing session in case anyone is sharing it and
 # create a new session that you know to be unique to the user.
 reset_session

 # Store the user's id as normal
 session[:user_id] = @user.id
diff --git a/settings_controller.rb b/settings_controller.rb
 class SettingsController < ApplicationController

  def show
    @user = User.find(session[:user_id])
  end

  def update
    @user = User.find(session[:user_id])
    @user.update_attributes(params[:settings])
  end

 end
diff --git a/settings_routes.rb b/settings_routes.rb
 Security::Application.routes.draw do
  match 'show_settings' => "settings#show"
  match 'update_settings' => "settings#update"
 end
diff --git a/settings_routes_2.rb b/settings_routes_2.rb
 Security::Application.routes.draw do
  get 'show_settings' => "settings#show"
  put 'update_settings' => "settings#update"
 end
diff --git a/settings_routes_3.rb b/settings_routes_3.rb
 Security::Application.routes.draw do
  resource :settings
 end
	var form_data = //.. Serialise a form

	// Get token and param from the meta tags
	var token = $('meta[name="csrf-token"]').attr('content');
	var param = $('meta[name="csrf-param"]').attr('content');

	// Create url of "/settings/profile?name=Jeremy+Walker&authenticity_token=askdsalewg303y09sd00dshb0b00ac0dffbafds"
	document.location = "/settings/profile?_method=PUT&" + form_data + "&" + token + "=" + param;
	heroku addons:add ssl:endpoint
	heroku certs:add my_cerficate.crt site.key
	# Authenticate user
	@user = #...

	# Destroy the existing session in case anyone is sharing it and
	# create a new session that you know to be unique to the user.
	reset_session

	# Store the user's id as normal
	session[:user_id] = @user.id
	class SettingsController < ApplicationController

	def show
	@user = User.find(session[:user_id])
	end

	def update
	@user = User.find(session[:user_id])
	@user.update_attributes(params[:settings])
	end

	end
	Security::Application.routes.draw do
	match 'show_settings' => "settings#show"
	match 'update_settings' => "settings#update"
	end
	Security::Application.routes.draw do
	get 'show_settings' => "settings#show"
	put 'update_settings' => "settings#update"
	end