test/dummy/app/controllers/application_controller.rb in current_user-0.2.0 vs test/dummy/app/controllers/application_controller.rb in current_user-0.2.1
- old
+ new
@@ -1,3 +1,5 @@
class ApplicationController < ActionController::Base
- protect_from_forgery
+ # Prevent CSRF attacks by raising an exception.
+ # For APIs, you may want to use :null_session instead.
+ protect_from_forgery with: :exception
end