From b463f35095dcdf4f6dda4e897792b0a485a32dba Mon Sep 17 00:00:00 2001
From: Victor Costa <vfcosta@gmail.com>
Date: Wed, 3 Feb 2016 09:33:12 -0300
Subject: [PATCH] Disable csrf verification

---
 app/controllers/application_controller.rb    | 2 +-
 app/controllers/public/account_controller.rb | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/app/controllers/application_controller.rb b/app/controllers/application_controller.rb
index bf40863..2b9b064 100644
--- a/app/controllers/application_controller.rb
+++ b/app/controllers/application_controller.rb
@@ -1,7 +1,7 @@
 require 'noosfero/multi_tenancy'
 
 class ApplicationController < ActionController::Base
-  protect_from_forgery
+  #protect_from_forgery
 
   before_filter :setup_multitenancy
   before_filter :detect_stuff_by_domain
diff --git a/app/controllers/public/account_controller.rb b/app/controllers/public/account_controller.rb
index 88fa705..e3f8a34 100644
--- a/app/controllers/public/account_controller.rb
+++ b/app/controllers/public/account_controller.rb
@@ -6,7 +6,7 @@ class AccountController < ApplicationController
   before_filter :redirect_if_logged_in, :only => [:login, :signup]
   before_filter :protect_from_bots, :only => :signup
 
-  protect_from_forgery except: [:login]
+  #protect_from_forgery except: [:login]
 
   helper CustomFieldsHelper
   # say something nice, you goof!  something sweet.
--
libgit2 0.21.2