Add csrf protection to reset action

ivantsepp · qrush · commit cc492ed91c08 · 2016-06-22T14:02:46.000-04:00
Signed-off-by: Nick Quaranto &lt;nick@quaran.to&gt;
diff --git a/app/controllers/api/v1/api_keys_controller.rb b/app/controllers/api/v1/api_keys_controller.rb
@@ -1,4 +1,5 @@
 class Api::V1::ApiKeysController < Api::BaseController
+  before_action :verify_authenticity_token, only: :reset
   before_action :redirect_to_root, unless: :signed_in?, only: [:reset]
 
   def show

Original file line number	Diff line number	Diff line change
`@@ -1,4 +1,5 @@`
`1`	`1`	`class Api::V1::ApiKeysController < Api::BaseController`
	`2`	`+ before_action :verify_authenticity_token, only: :reset`
`2`	`3`	`before_action :redirect_to_root, unless: :signed_in?, only: [:reset]`
`3`	`4`
`4`	`5`	`def show`