diff options
author | Cameron Bothner <cameronbothner@gmail.com> | 2018-12-27 12:44:04 -0500 |
---|---|---|
committer | Cameron Bothner <cameronbothner@gmail.com> | 2018-12-27 12:44:19 -0500 |
commit | 372dda2a2950ad3ae5cf744ed8e3caa69a7ed44b (patch) | |
tree | 4b0ca6d6da5ad1d147e6a36febe55c3ea875c296 /activestorage/CHANGELOG.md | |
parent | 4ae8d6182fd9351b9451003f9380d8855f3f5a94 (diff) | |
download | rails-372dda2a2950ad3ae5cf744ed8e3caa69a7ed44b.tar.gz rails-372dda2a2950ad3ae5cf744ed8e3caa69a7ed44b.tar.bz2 rails-372dda2a2950ad3ae5cf744ed8e3caa69a7ed44b.zip |
Don’t include an undefined X-CSRF-Token header
If there is not a `csrf-token` meta tag in the document, the blob record
XHR was including an `X-CSRF-Token` header set to the string
"undefined." Instead of setting it to undefined, it should not be
included in the absence of a meta tag.
Diffstat (limited to 'activestorage/CHANGELOG.md')
-rw-r--r-- | activestorage/CHANGELOG.md | 5 |
1 files changed, 5 insertions, 0 deletions
diff --git a/activestorage/CHANGELOG.md b/activestorage/CHANGELOG.md index 99f1ef9d86..51890f308b 100644 --- a/activestorage/CHANGELOG.md +++ b/activestorage/CHANGELOG.md @@ -1,3 +1,8 @@ +* It doesn’t include an `X-CSRF-Token` header if a meta tag is not found on + the page. It previously included one with a value of `undefined`. + + *Cameron Bothner* + * Fix `ArgumentError` when uploading to amazon s3 *Hiroki Sanpei* |