#223 new
Obie

Add more coverage of CSRF attack protection including protect_from_forgery method

Reported by Obie | January 31st, 2010 @ 07:34 PM | in Future Edition

...and that you should turn it off for functional and integration specs.

See http://m.onkey.org/2007/9/28/csrf-protection-for-your-existing-rail... for more details.

Comments and changes to this ticket

Please Sign in or create a free account to add a new ticket.

With your very own profile, you can contribute to projects, track your activity, watch tickets, receive and update tickets through your email and much more.

New-ticket Create new ticket

Create your profile

Help contribute to this project by taking a few moments to create your personal profile. Create your profile ยป

Shared Ticket Bins

People watching this ticket

Tags

Pages