This project is archived and is in readonly mode.

#6617 ✓ invalid
rdinca

rails 3.0.5 problem with csrf_meta_tag

Reported by rdinca | March 24th, 2011 @ 05:03 PM

I updated the bundle and after that, an update action of mine stopped working properly. There was no error in the logs(but nothing was updated), and when I tried to access another page (html) , i was automatically logged out. So I searched with firebug, and saw a 401 error, Unauthorized access or so, so I tried :
skip_before_filter :verify_authenticity_token, :only => "update"

and things worked again. Now I reverted to 3.0.3 and it works without skipping the filter, so something must have happened in the transition from 3.0.3 to 3.0.5 with csrf_meta_tag, probably not being sent properly or something!

Comments and changes to this ticket

Create your profile

Help contribute to this project by taking a few moments to create your personal profile. Create your profile »

Tickets have moved to Github

The new ticket tracker is available at https://github.com/rails/rails/issues

Shared Ticket Bins

Pages