【发布时间】:2015-04-17 12:41:43
【问题描述】:
所以在ApplicationController 类中调用protect_from_forgery with: :null_session。
Admin 类继承 ApplicationController。
关于为什么在映射到 Admin::LandingPagePhotosController#update 的请求后可能会抛出 Can't verify CSRF token authenticity 的想法?
Started PATCH "/admin/landing_page_photos/2" for 127.0.0.1 at 2015-02-16 16:44:29 -0500
User Load (3.0ms) SELECT "users".* FROM "users" WHERE ("users"."status" != 'deleted') AND "users"."id" = 2 ORDER BY "users"."id" ASC LIMIT 1
Processing by Admin::LandingPagePhotosController#update as JSON
Parameters: {"landing_page_photo"=>{"position"=>"1"}, "id"=>"2"}
Can't verify CSRF token authenticity
(0.7ms) BEGIN
(0.6ms) COMMIT
Completed 401 Unauthorized in 26ms
【问题讨论】:
标签: ruby-on-rails ruby csrf