spec/dummy/app/controllers/application_controller.rb in outdatedbrowser_rails-1.1.0 vs spec/dummy/app/controllers/application_controller.rb in outdatedbrowser_rails-1.1.3
- old
+ new
@@ -1,3 +1,5 @@
class ApplicationController < ActionController::Base
- protect_from_forgery
+ # Prevent CSRF attacks by raising an exception.
+ # For APIs, you may want to use :null_session instead.
+ protect_from_forgery with: :exception
end