github-mirror/discourse
2
0
Fork 0
mirror of https://github.com/discourse/discourse.git synced 2024-11-27 07:53:43 +08:00
Code Issues Actions 1 Packages Projects Releases Wiki Activity

Get rid of CSRF errors

Browse Source
This commit is contained in:
Sam 2015-05-07 10:42:21 +10:00
parent 8dd4aa145c
commit d6c06eb547
1 changed files with 3 additions and 8 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

11
config/initializers/logster.rb
View File

@ -20,14 +20,9 @@ if Rails.env.production?
#
/(?m).*?Line: (?:\D|0).*?Column: (?:\D|0)/,
# suppress trackback spam bots
Logster::IgnorePattern.new("Can't verify CSRF token authenticity", { REQUEST_URI: /\/trackback\/$/ }),
# suppress trackback spam bots submitting to random URLs
# test for the presence of these params: url, title, excerpt, blog_name
Logster::IgnorePattern.new("Can't verify CSRF token authenticity", { params: { url: /./, title: /./, excerpt: /./, blog_name: /./} }),
# API calls, TODO fix this in rails
Logster::IgnorePattern.new("Can't verify CSRF token authenticity", { REQUEST_URI: /api_key/ })
# CSRF errors are not providing enough data
# suppress unconditionally for now
/^Can't verify CSRF token authenticity$/
]
end