95be790ece
It's further work on CSRF after 245941101b1ea00a9b1af613c20b0ee994a43946. The :null_session CSRF protection method provide an empty session during request processing but doesn't reset it completely (as :reset_session does). |
||
---|---|---|
.. | ||
rails | ||
rails.rb |