aboutsummaryrefslogtreecommitdiffstats
path: root/actionpack/lib/action_controller/metal/default_headers.rb
diff options
context:
space:
mode:
authorRafael Mendonça França <rafaelmfranca@gmail.com>2018-04-06 14:28:44 -0400
committerRafael Mendonça França <rafaelmfranca@gmail.com>2018-04-06 14:28:44 -0400
commit03bd370c02a8fa83ab6dd01bdd99fe342c523b81 (patch)
tree8ab9d87256869150a3c113534bac9b9f25855a12 /actionpack/lib/action_controller/metal/default_headers.rb
parentb71b8ecc4eeb7b93c4143e729cf8b06c39c63fcb (diff)
downloadrails-03bd370c02a8fa83ab6dd01bdd99fe342c523b81.tar.gz
rails-03bd370c02a8fa83ab6dd01bdd99fe342c523b81.tar.bz2
rails-03bd370c02a8fa83ab6dd01bdd99fe342c523b81.zip
Protect all active storage controllers agains CSRF
Before it was possible to for example use the direct upload controller without using the site.
Diffstat (limited to 'actionpack/lib/action_controller/metal/default_headers.rb')
0 files changed, 0 insertions, 0 deletions
generated by cgit v1.2.3 (git 2.25.1) at 2024-06-25 06:11:27 +0000