aboutsummaryrefslogtreecommitdiffstats
path: root/tools/console
diff options
context:
space:
mode:
authorgingerlime <yoav@gingerlime.com>2018-01-05 20:44:42 +0700
committerGitHub <noreply@github.com>2018-01-05 20:44:42 +0700
commitc3787494eda85d42d62f74c22e56e56e1263ea60 (patch)
treee9a86d76d12153674d9f2d7d99eb10abeb147e21 /tools/console
parent5a5014688873f1d6e1b66075eea8a4356b5a4d07 (diff)
downloadrails-c3787494eda85d42d62f74c22e56e56e1263ea60.tar.gz
rails-c3787494eda85d42d62f74c22e56e56e1263ea60.tar.bz2
rails-c3787494eda85d42d62f74c22e56e56e1263ea60.zip
fixes #27157 CSRF protection documentation
* removed reference to GET requests where it applies also to other HTTP verbs * updated documentation to try and better explain how CSRF protection works with XHR, and the potential exposure with CORS
Diffstat (limited to 'tools/console')
0 files changed, 0 insertions, 0 deletions