GitHub User: ravivmg
Is it possible to use page caching, but then pull in an entire form via ajax so that it has a fresh authenticity token?
Is that inadvisable for any particular reason?
Really useful screencast!
One important note is that you have to filter your logs or else you are still storing all your users credit card information in plaintext.
I would add a "filter_parameters" line to this screencast so that everyone knows about this potential security pitfall.