Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | Enable frozen string for lib/gitlab/*.rb | gfyoung | 2018-10-22 | 1 | -0/+2 |
| | |||||
* | [Rails5] Force the `protect_from_forgery` callback run firstblackst0ne-fix-protect-from-forgery-in-application-controller | blackst0ne | 2018-06-21 | 1 | -1/+1 |
| | | | | | | | | | | | | Since Rails 5.0 the `protect_from_forgery` callback doesn't run first by default anymore. [1] Instead it gets inserted into callbacks chain where callbacks get called in order. This commit forces the callback to run first. [1]: https://github.com/rails/rails/commit/39794037817703575c35a75f1961b01b83791191 | ||||
* | Add log messages to clarify log messages about API CSRF token verification ↵dm-api-csrf-token-verification | Douwe Maan | 2017-07-28 | 1 | -0/+8 |
| | | | | failure | ||||
* | Rescue only from ActionController::InvalidAuthenticityToken | Douwe Maan | 2017-07-26 | 1 | -0/+8 |
| | |||||
* | Add `rescue false`. | blackst0ne | 2017-07-26 | 1 | -1/+1 |
| | |||||
* | Refactor CSRF protection | blackst0ne | 2017-07-26 | 1 | -0/+23 |