Changeset: Changeset [0697d17d121fcf9f46b5dd2dd1034dffa19ebdf2] by rick - Ruby on Rails

Type	To find
responsible:me	tickets assigned to you
tagged:"@high"	tickets tagged @high
milestone:next	tickets in the upcoming milestone
state:invalid	tickets with the state invalid
created:"last week"	tickets created last week
sort:number, importance, updated	tickets sorted by #, importance or updated
Combine keywords for powerful searching.
Use advanced searching »

List changesets

This project is archived and is in readonly mode.

Changeset [0697d17d121fcf9f46b5dd2dd1034dffa19ebdf2] by rick

May 6th, 2008 @ 08:42 AM

Change the request forgery protection to go by Content-Type instead of request.format so that you can't bypass it by POSTing to "#{request.uri}.xml" [#73 state:resolved]

http://github.com/rails/rails/co...

Committed by Repository

M actionpack/CHANGELOG
M actionpack/lib/action_controller/request_forgery_protection.rb
M actionpack/test/controller/request_forgery_protection_test.rb

Create your profile

Help contribute to this project by taking a few moments to create your personal profile. Create your profile »

<h2 style="font-size: 14px">Tickets have moved to Github</h2>

The new ticket tracker is available at <a href="https://github.com/rails/rails/issues">https://github.com/rails/rails/issues</a>

Shared Ticket Bins (Sort)

↓↑ drag 455 Open Bugs
↓↑ drag 0 Recent Open Tickets
↓↑ drag 87 Open Patches
↓↑ drag 0 Open Doc Patches
↓↑ drag 542 Stale Tickets
↓↑ drag 3 Verified Patches
↓↑ drag 87 Stale Patches
↓↑ drag 0 Yesterday's Tickets
↓↑ drag 0 Two Days Ago
↓↑ drag 0 This Week
↓↑ drag 0 Last Week
↓↑ drag 7 Bugmash
↓↑ drag 0 Bugmash review queue
↓↑ drag 5 Rails 3 High Priority Tickets

Rails Ruby on Rails

Keyword searching

Changeset [0697d17d121fcf9f46b5dd2dd1034dffa19ebdf2] by rick

Create your profile

Shared Ticket Bins (Sort)