以åãCSRFã«ã¤ãã¦ã®ã¨ã³ããªãæ¸ãã¾ããã CSRFã«ã¤ã㦠- ããããWEBãµã¼ãã¹éçºæ¥è¨ ä¸è¨ã¨ã³ããªã§ã¯CSRFã®æ¦å¿µã«ã¤ãã¦æ¸ãã¾ããããããå°ãã¤ã£ããã§èª¿ã¹ãå¿ è¦ãåºã¦ãã¾ããã調ã¹ããã¨ãæ¸ãã¦ããã¾ãã åºç¤ application.rb(ãªããé©å½ãªController)ã«protect_from_forgeryã¡ã½ãããå®ç¾©ããã°ãrailsãèªåçã«CSRF対çããã¦ããã¾ããã¨ããããããã©ã«ãã§application.rbã«ä¸è¨ã®ããã«æ¸ãã¦ããã®ã§ãç¹ã«ä½ãããã¨ãCSRF対çã¯ããããªãªã®ã§ãã protect_from_forgery # :secret => '8ff3ed33f86a431662d8dfe255acdb4a' railsã¯ãget以å¤ã®åè©ã®ãªã³ã¯ã«ãauthenticity_tokenã¨ãããã©ã¡ã¼ã¿ãèªåçã«ä»ãå ãã¾ããge
{{#tags}}- {{label}}
{{/tags}}