diff options
| author | Marius Balteanu <marius.balteanu@zitec.com> | 2022-05-11 20:09:16 +0000 |
|---|---|---|
| committer | Marius Balteanu <marius.balteanu@zitec.com> | 2022-05-11 20:09:16 +0000 |
| commit | 1d02d8ec0be539c0387121fdc1634518abf5e99e (patch) | |
| tree | 7e60344de8e6ef991972a6e5d742819f4c798ad8 /app/controllers | |
| parent | 5e1e8684fcf4e90def0c0965c47017f80fdef4b3 (diff) | |
| download | redmine-1d02d8ec0be539c0387121fdc1634518abf5e99e.tar.gz redmine-1d02d8ec0be539c0387121fdc1634518abf5e99e.zip | |
Don't verify CSRF authenticity token in mail handler (#37030).
Patch by Go MAEDA.
git-svn-id: https://svn.redmine.org/redmine/trunk@21568 e93f8b46-1217-0410-a6f0-8f06a7374b81
Diffstat (limited to 'app/controllers')
| -rw-r--r-- | app/controllers/mail_handler_controller.rb | 3 |
1 files changed, 3 insertions, 0 deletions
diff --git a/app/controllers/mail_handler_controller.rb b/app/controllers/mail_handler_controller.rb index aabc3cbac..fa69b829f 100644 --- a/app/controllers/mail_handler_controller.rb +++ b/app/controllers/mail_handler_controller.rb @@ -22,6 +22,9 @@ class MailHandlerController < ActionController::Base before_action :check_credential + # Requests from rdm-mailhandler.rb don't contain CSRF tokens + skip_before_action :verify_authenticity_token + # Displays the email submission form def new end |