From c4a0143854e6fecae5e1820f4f054e33547e866f Mon Sep 17 00:00:00 2001
From: Michael Koziarski <michael@koziarski.com>
Date: Fri, 21 Nov 2008 11:08:39 +0100
Subject: Update the generated controller to not include the deprecated :secret
 option to protect_from_forgery

---
 railties/helpers/application_controller.rb | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

(limited to 'railties/helpers')

diff --git a/railties/helpers/application_controller.rb b/railties/helpers/application_controller.rb
index 0a3ed822a4..ef33aa8353 100644
--- a/railties/helpers/application_controller.rb
+++ b/railties/helpers/application_controller.rb
@@ -5,8 +5,7 @@ class ApplicationController < ActionController::Base
   helper :all # include all helpers, all the time
 
   # See ActionController::RequestForgeryProtection for details
-  # Uncomment the :secret if you're not using the cookie session store
-  protect_from_forgery # :secret => '<%= app_secret %>'
+  protect_from_forgery
   
   # See ActionController::Base for details 
   # Uncomment this to filter the contents of submitted sensitive data parameters
-- 
cgit v1.2.3