Download as
Browse Code »

Commit 55f4354924c2b1ef651f60911f0166763c756e7a

Authored by Antonio Terceiro
2 parents 32f1ee4b a2bd5915
Exists in staging and in 37 other branches all_pending_tasks_api, api-articles-period, api_roles, caching-rails4, comments_permissions, elasticsearch, elasticsearch_api, elasticsearch_categories, elasticsearch_filter, elasticsearch_sort, elasticsearch_to_merge, elasticsearch_view, environment-exposes-api, export-comment-api, export-comment-paragraph, export_data, external_followers, federation-webfinger, federation_followers, federation_followers_backend, federation_oauth_provider, federation_webfinger, fix_notification_email, fix_string_downcase_and_upcase, follower_permition, json_cookie_serializer, master, master_profile_followers, oauth_external_login, oauth_login, private-scraps, private-scraps-rebase, production, production-vendorized, profile_api_improvements, user_mention, webfinger_server

Merge branch 'fix_csrf' into 'master' 

Set correct header for csrf token

The header setted from application.js has to be equal to the key used in verified_request?

See merge request !778
Showing 1 changed file with 1 additions and 1 deletions   Show diff stats
public/javascripts/application.js
  Diff comments   View file @55f4354
... ... @@ -579,7 +579,7 @@ jQuery(function($) {
579 579 $.ajaxSetup({
580 580 cache: false,
581 581 headers: {
582   - 'X-CSRF-Token': $.cookie("_noosfero_.XSRF-TOKEN")
  582 + 'X-XSRF-TOKEN': $.cookie("_noosfero_.XSRF-TOKEN")
583 583 }
584 584 });
585 585  
... ...