search for: crsf

How often is the authenticity token updated? The latest error that I got was a submittal of a form, an model validation occured, I click back, make the correction, resubmit the form, then I get an InvalidAuthenticityToken error. Somewhat off topic If a person is using the authenticity tokens is there still a need to use some sort of captcha? Thanks -- Posted via http://www.ruby-forum.com/.

I''m trying to implement internationalization in my app. I followed the instructions on the Globalize example (http://wiki.globalize- rails.org/globalize/show/Example+Application), using in_place_editor. The translation works fine, however, I can''t get in_place_editor to work to translate the strings. My controller: class Admin::TranslateController < ApplicationController

https://github.com/rails/rails/issues/12374#issuecomment-29446761 Here in discussion I proposed to deprecate JS responder because this technique is insecure and not pragmatic way to transfer data. It can be exploited in this way http://homakov.blogspot.com/2013/05/do-not-use-rjs-like-techniques.html i find this bug very often so i know what i''m talking about. With it attacker can