mirror of
https://github.com/rails/rails.git
synced 2022-11-09 12:12:34 -05:00
683b9627b3
CSRF verification for non-XHR GET requests (cross-origin `<script>` tags) didn't check this flag before logging failures. Setting `config.action_controller.log_warning_on_csrf_failure = false` now disables logging for these CSRF failures as well. Closes #25086. Signed-off-by: Jeremy Daer <jeremydaer@gmail.com> |
||
---|---|---|
.. | ||
abstract | ||
assertions | ||
controller | ||
dispatch | ||
fixtures | ||
journey | ||
lib/controller | ||
routing | ||
tmp | ||
abstract_unit.rb |