Sets forgery protection filter first.

author Jean-Philippe Lang <jp_lang@yahoo.fr>

Mon, 25 Jul 2011 21:02:27 +0000 (21:02 +0000)

committer Jean-Philippe Lang <jp_lang@yahoo.fr>

Mon, 25 Jul 2011 21:02:27 +0000 (21:02 +0000)
author Jean-Philippe Lang <jp_lang@yahoo.fr>
Mon, 25 Jul 2011 21:02:27 +0000 (21:02 +0000)
committer Jean-Philippe Lang <jp_lang@yahoo.fr>
Mon, 25 Jul 2011 21:02:27 +0000 (21:02 +0000)
diff --git a/app/controllers/application_controller.rb b/app/controllers/application_controller.rb

index cf9a849bc328705a4e075c92ee56380ab4b3d3ba..bfed52d84475aa70d70493321515e9ef11b605e4 100644 (file)
--- a/app/controllers/application_controller.rb
+++ b/app/controllers/application_controller.rb
@@ -25,6 +25,8 @@ class ApplicationController < ActionController::Base
  
    layout 'base'
    exempt_from_layout 'builder', 'rsb'
+  
+  protect_from_forgery
  
    # Remove broken cookie after upgrade from 0.8.x (#4292)
    # See https://rails.lighthouseapp.com/projects/8994/tickets/3360
@@ -40,7 +42,6 @@ class ApplicationController < ActionController::Base
  
    before_filter :user_setup, :check_if_login_required, :set_localization
    filter_parameter_logging :password
-  protect_from_forgery
  
    rescue_from ActionController::InvalidAuthenticityToken, :with => :invalid_authenticity_token
    rescue_from ::Unauthorized, :with => :deny_access
author	Jean-Philippe Lang <jp_lang@yahoo.fr>
	Mon, 25 Jul 2011 21:02:27 +0000 (21:02 +0000)
committer	Jean-Philippe Lang <jp_lang@yahoo.fr>
	Mon, 25 Jul 2011 21:02:27 +0000 (21:02 +0000)