Enable use of URL safe CSRF tokens

2021-05-13 19:52:02 +01:00 · 2021-05-13 19:52:02 +01:00 · afc4c6fde1
commit afc4c6fde1
parent 6db5b2e6f3
1 changed files with 1 additions and 1 deletions
--- a/config/initializers/new_framework_defaults_6_1.rb
+++ b/config/initializers/new_framework_defaults_6_1.rb
@ -29,7 +29,7 @@
 #
 # This change is not backwards compatible with earlier Rails versions.
 # It's best enabled when your entire app is migrated and stable on 6.1.
-# Rails.application.config.action_controller.urlsafe_csrf_tokens = true
+Rails.application.config.action_controller.urlsafe_csrf_tokens = true

 # Specify whether `ActiveSupport::TimeZone.utc_to_local` returns a time with an
 # UTC offset or a UTC time.