diff options
| author | Piotr Sarnacki <drogus@gmail.com> | 2012-03-28 04:03:50 +0200 |
|---|---|---|
| committer | Piotr Sarnacki <drogus@gmail.com> | 2012-03-28 18:03:15 +0200 |
| commit | 805b15ff35122f5fd0bb9c1742578b14eebfac32 (patch) | |
| tree | 7c01ed925098e52f5903f5f45c0a5d46cf62d1e1 /actionpack/CHANGELOG.md | |
| parent | 6cff09038d5d78e6a4a12d0a27c6b1b87f0a5147 (diff) | |
| download | rails-805b15ff35122f5fd0bb9c1742578b14eebfac32.tar.gz rails-805b15ff35122f5fd0bb9c1742578b14eebfac32.tar.bz2 rails-805b15ff35122f5fd0bb9c1742578b14eebfac32.zip | |
Added config.action_view.embed_authenticity_token_in_remote_forms
There is a regression introduced in 16ee611fa, which breaks
remote forms that should also work without javascript. This commit
introduces config option that allows to configure this behavior
defaulting to the old behavior (ie. include authenticity token
in remote forms by default)
Conflicts:
actionpack/CHANGELOG.md
Diffstat (limited to 'actionpack/CHANGELOG.md')
| -rw-r--r-- | actionpack/CHANGELOG.md | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/actionpack/CHANGELOG.md b/actionpack/CHANGELOG.md index 92efb060a2..de62919c3c 100644 --- a/actionpack/CHANGELOG.md +++ b/actionpack/CHANGELOG.md @@ -128,6 +128,8 @@ ## Rails 3.2.3 (unreleased) ## +* Add `config.action_view.embed_authenticity_token_in_remote_forms` (defaults to true) which allows to set if authenticity token will be included by default in remote forms. If you change it to false, you can still force authenticity token by passing `:authenticity_token => true` in form options *Piotr Sarnacki* + * Do not include the authenticity token in forms where remote: true as ajax forms use the meta-tag value *DHH* * Upgrade rack-cache to 1.2. *José Valim* |