From 0b2dd7afd9ee1dfe46506f9d745afb0a23e496ba Mon Sep 17 00:00:00 2001
From: Yehuda Katz <wycats@gmail.com>
Date: Wed, 28 Oct 2009 00:12:35 -0700
Subject: Reorganize CSRF a bit

---
 actionpack/lib/action_dispatch/http/request.rb | 4 ++++
 1 file changed, 4 insertions(+)

(limited to 'actionpack/lib/action_dispatch/http')

diff --git a/actionpack/lib/action_dispatch/http/request.rb b/actionpack/lib/action_dispatch/http/request.rb
index 1e366520c9..bb99fac5e0 100755
--- a/actionpack/lib/action_dispatch/http/request.rb
+++ b/actionpack/lib/action_dispatch/http/request.rb
@@ -97,6 +97,10 @@ module ActionDispatch
       end
     end
 
+    def forgery_whitelisted?
+      method == :get || xhr? || !(!content_type.nil? && content_type.verify_request?)
+    end
+
     def media_type
       content_type.to_s
     end
-- 
cgit v1.2.3