module Lucky::ForgeryProtectionHelpers

Direct including types

Lucky::HTMLBuilder

Defined in:

lucky/tags/forgery_protection_helpers.cr

Instance Method Summary

#csrf_hidden_input : Nil
Generate a hidden input with the request CSRF token
#csrf_meta_tags : Nil
Meta tags used for submitting AJAX links and forms

Instance Method Detail

def csrf_hidden_input : Nil #

Generate a hidden input with the request CSRF token

This input is automatically generated when using Lucky::FormHelpers#form_for. It creates a hidden input with the CSRF token. THis ensures that the form is safe. If you try to submit a form without a CSRF token it will fail with a 403 forbidden status code.

[View source]

def csrf_meta_tags : Nil #

Meta tags used for submitting AJAX links and forms

These tags are automatically added to MainLayout when generating a new project. They are used by Rails UJS to safely submit forms and non-GET AJAX requests

[View source]