[ Rails nvalidAuthenticityToken ]

10 views

Skip to first unread message

Cooky Lovy

unread,

May 13, 2008, 6:17:38 AM5/13/08

to My Group

[ http://api.rubyonrails.org/classes/ActionController/RequestForgeryProtection/ClassMethods.html
]

没怎么搞懂, 反正是为了防止一个什么攻击的. 暂时跟着 <<AWDwR>>一书入个门, 先关掉这个功能, 以后再回头看
[
# you can disable csrf protection on controller-by-controller basis:
skip_before_filter :verify_authenticity_token
]

Reply all

Reply to author

Forward

0 new messages