midgard/tab
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

Also skip CSRF check for clients (Tap)

Browse source
This commit is contained in:
Rien Maertens 2019-04-18 00:50:41 +02:00
parent fe9458dc5d
commit 4fb4385ba5
No known key found for this signature in database
GPG key ID: 10C6D8C91DE58E4A
1 changed files with 1 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
app/controllers/application_controller.rb
View file

@ -5,7 +5,7 @@ class ApplicationController < ActionController::Base
skip_before_action :verify_authenticity_token, if: :api_request? skip_before_action :verify_authenticity_token, if: :api_request?
def api_request? def api_request?
user_token && request.format.json? (user_token.present? || current_client.present?) && request.format.json?
end end
rescue_from CanCan::AccessDenied do |exception| rescue_from CanCan::AccessDenied do |exception|