diff options
author | Rafael Mendonça França <rafaelmfranca@gmail.com> | 2016-04-20 00:48:32 -0300 |
---|---|---|
committer | Rafael Mendonça França <rafaelmfranca@gmail.com> | 2016-04-20 00:48:32 -0300 |
commit | 60c6b538170ce35cc8ff8382bef2f082868b4b09 (patch) | |
tree | 72e6de836d47091eaf4072d2740547a527fe0f23 /guides/rails_guides | |
parent | 9918118a97c91742d94a0e677603f2e3301eebdc (diff) | |
download | rails-60c6b538170ce35cc8ff8382bef2f082868b4b09.tar.gz rails-60c6b538170ce35cc8ff8382bef2f082868b4b09.tar.bz2 rails-60c6b538170ce35cc8ff8382bef2f082868b4b09.zip |
Discart the schema and host information when building the per-form token
When the token is generated by the form we were using the schema and
host information while only using the path to compare if the action was
the same. This was causing the token to be invalid.
To fix this we use the same information to generate the token and check
it.
Fix #24257
Diffstat (limited to 'guides/rails_guides')
0 files changed, 0 insertions, 0 deletions