Discource-C
/
discourse
mirror of https://github.com/discourse/discourse.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Get rid of CSRF errors

This commit is contained in:
Sam 2015-05-07 10:42:21 +10:00
parent 8dd4aa145c
commit d6c06eb547
1 changed files with 3 additions and 8 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

11
config/initializers/logster.rb
View File

@ -20,14 +20,9 @@ if Rails.env.production?
# #
/(?m).*?Line: (?:\D|0).*?Column: (?:\D|0)/, /(?m).*?Line: (?:\D|0).*?Column: (?:\D|0)/,
# suppress trackback spam bots # CSRF errors are not providing enough data
Logster::IgnorePattern.new("Can't verify CSRF token authenticity", { REQUEST_URI: /\/trackback\/$/ }), # suppress unconditionally for now
# suppress trackback spam bots submitting to random URLs /^Can't verify CSRF token authenticity$/
# test for the presence of these params: url, title, excerpt, blog_name
Logster::IgnorePattern.new("Can't verify CSRF token authenticity", { params: { url: /./, title: /./, excerpt: /./, blog_name: /./} }),
# API calls, TODO fix this in rails
Logster::IgnorePattern.new("Can't verify CSRF token authenticity", { REQUEST_URI: /api_key/ })
] ]
end end