projects
/
rails.git
/ commitdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
| commitdiff |
tree
raw
|
patch
| inline |
side by side
(parent:
c82fdf8
)
Check validity token in changesets controller
author
Andy Allan
<git@gravitystorm.co.uk>
Wed, 27 Mar 2019 10:24:31 +0000
(11:24 +0100)
committer
Andy Allan
<git@gravitystorm.co.uk>
Wed, 27 Mar 2019 10:24:31 +0000
(11:24 +0100)
It makes no difference today, but prevents problems in future if
methods accepting post requests are added to this controller in future.
app/controllers/changesets_controller.rb
patch
|
blob
|
history
diff --git
a/app/controllers/changesets_controller.rb
b/app/controllers/changesets_controller.rb
index 32d9fd73314f53e731717081af5c383550298f8b..3b20130d00829eb29a4ae71e1aa3b8f011c23281 100644
(file)
--- a/
app/controllers/changesets_controller.rb
+++ b/
app/controllers/changesets_controller.rb
@@
-4,7
+4,6
@@
class ChangesetsController < ApplicationController
layout "site"
require "xml/libxml"
- skip_before_action :verify_authenticity_token, :except => [:index]
before_action :authorize_web
before_action :set_locale
before_action -> { check_database_readable(true) }, :only => [:index, :feed]