Sign in through GitHub

RailsCasts Pro episodes are now free!

Learn more or hide this

Anatoli Makarevich's Profile

GitHub User: makaroni4


Comments by Anatoli Makarevich


Very useful, thanks, Ryan!!!

Real life example of similar auth you can find at (open source).

Famous Egor Homyakov hacked us using bug described here:

The thing is that if you store auth_token in cookies csrf protection will not work.

Good luck everyone with safe auth :)