disable forgery protection until page cachingng work around can be found

nakajima · Jul 30, 2008 · 88fcb95 · 88fcb95
1 parent 2b8d828
commit 88fcb95
Showing 1 changed file with 3 additions and 3 deletions.
diff --git a/app/controllers/application.rb b/app/controllers/application.rb
@@ -8,9 +8,9 @@ class ApplicationController < ActionController::Base
 
   filter_parameter_logging :password, :password_confirmation
 
-  # See ActionController::RequestForgeryProtection for details
-  # Uncomment the :secret if you're not using the cookie session store
-  # protect_from_forgery :secret => 'ad5fcf9cf9a6c79ef7b70f6ff02c6fca8e6692d9cd48306a21f27be3e36658f49234fe'
+  protect_from_forgery :secret => 'ad5fcf9cf9a6c79ef7b70f6ff02c6fca8e6692d9cd48306a21f27be3e36658f49234fe'
+
+  skip_before_filter :verify_authenticity_token # Page caching screws up forgery protection stuff
 
   def expire_path(file)
     file = RAILS_ROOT + '/public' + file