Removed reference in documentation of form_authenticity_token to depr…

…ecated :secret option of protect_from_forgery
rails · Apr 27, 2009 · 4df9680 · 4df9680
1 parent ba84025
commit 4df9680
Showing 1 changed file with 1 addition and 2 deletions.
diff --git a/actionpack/lib/action_controller/base/request_forgery_protection.rb b/actionpack/lib/action_controller/base/request_forgery_protection.rb
@@ -96,8 +96,7 @@ def verifiable_request_format?
         !request.content_type.nil? && request.content_type.verify_request?
       end
 
-      # Sets the token value for the current session.  Pass a <tt>:secret</tt> option
+      # Sets the token value for the current session.
-      # in +protect_from_forgery+ to add a custom salt to the hash.
       def form_authenticity_token
         session[:_csrf_token] ||= ActiveSupport::SecureRandom.base64(32)
       end