Andrea Franz wrote: > I've not been victim of an attack...but I think it could be better > setting the current_user in a thread variable instead of using a > class variable. > > I usually use something like this: > > def set_current_user > Thread.current['current_user'] = current_user > end
That would only work if each request had its own thread. But Rails doesn't even use threads at all. http://worsethanfailure.com/Articles/The_Cost_of_Static.aspx -- Posted via http://www.ruby-forum.com/. _______________________________________________ Radiant mailing list Post: [email protected] Search: http://radiantcms.org/mailing-list/search/ Site: http://lists.radiantcms.org/mailman/listinfo/radiant
