From 1cc1598d1678bba595c22d92e4a074ab5641d245 Mon Sep 17 00:00:00 2001
From: Vinicius Brand <viniciuscb@gmail.com>
Date: Fri, 11 Dec 2015 20:31:22 -0200
Subject: [PATCH] bugfix in xss permission - map in my_profile

---
 app/controllers/my_profile/maps_controller.rb | 2 ++
 1 file changed, 2 insertions(+), 0 deletions(-)

diff --git a/app/controllers/my_profile/maps_controller.rb b/app/controllers/my_profile/maps_controller.rb
index d4e9649..a1504a1 100644
--- a/app/controllers/my_profile/maps_controller.rb
+++ b/app/controllers/my_profile/maps_controller.rb
@@ -1,5 +1,7 @@
 class MapsController < MyProfileController
 
+  skip_before_filter :verify_authenticity_token, only: [:google_map]
+
   protect 'edit_profile', :profile
 
   def edit_location
--
libgit2 0.21.2