On Mon, 14 Mar 2011 12:01:30 -0300, Ulrich Stärk <[email protected]> wrote:
I was just reviewing a Rails application when I stumbled upon Rails'
authenticity_token which guards
against CSRF. Why don't we have something like that? ;)
There are several approaches to this so a student's task would be to
evaluate them, discuss them
with the community and implement the one chosen.
+1. By the way, unfortunately, I can't be a monitor this year. :(
--
Thiago H. de Paula Figueiredo
Independent Java, Apache Tapestry 5 and Hibernate consultant, developer,
and instructor
Owner, Ars Machina Tecnologia da Informação Ltda.
http://www.arsmachina.com.br
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
