I try to use db-session with protect_from_forgery. But I always get a error msg: ActionController::InvalidAuthenticityToken. application_controller.rb protect_from_forgery #:secret => ''top_secret'' session_store.rb ActionController::Base.session_store = :active_record_store hope you can help me. Best regards -- Posted via http://www.ruby-forum.com/.
Robin Wunderlin
2009-Jun-22 14:05 UTC
Re: protect_from_forgery with db-session (Rails 2.3.2)
After searching around it looks for me, like the authenticity_token of the forum is not saved correctly by the session. An therefore rails thinks the authenticity_token is invalid. -- Posted via http://www.ruby-forum.com/.
Reasonably Related Threads
- Rails 2.3.8 - InvalidAuthenticityToken problem. URGENT!
- active_record_store sessions does not pass a :secret to #protect_from_forgery in Rails 2.0.0 Preview
- Rails3 pre and protect_from_forgery
- Upgrade to 2.0.2: InvalidAuthenticityToken error on 1st POST
- form_tag and form_for cause #protect_from_forgery errors