view config/initializers/request_forgery_protection.rb @ 160:4e4195e60c2b

Add check at user level as well
author nanaya <me@nanaya.pro>
date Fri, 03 Aug 2018 01:45:16 +0900
parents 257910c60eb3
children
line wrap: on
line source

# Be sure to restart your server when you modify this file.

# Enable origin-checking CSRF mitigation.
Rails.application.config.action_controller.forgery_protection_origin_check = true