1 post / 0 new
Safeguarding against Cross Site Request Fogery
I have a question. How can  one protect his Ruby on Rails web application against cross site Request Fogery for the confirmation end point. Given that the confirmation url is a post request and one can not use CSURF tokens.