I am wondering the cleanest way to selectively enforce SSL.
Say I have an application with 10 controllers, each with 5 actions. I want SSL on all actions except for 2.
Rather than having 'ssl_required :action1, :action2, :action3, etc' in each controller, I thought, the best way would be to put it in the application.rb file. by modifying def ssl_required? call. My solution was to look for certain action names in the request object using Ruby String class functions, but I would be surprised if there was not an easier way to just using something.
Thanks.
David