28 lines
458 B
Ruby
28 lines
458 B
Ruby
class ApplicationController < ActionController::Base
|
|
|
|
protect_from_forgery with: :null_session
|
|
after_action :set_csrf_cookie
|
|
|
|
after_filter :allow_iframe
|
|
|
|
layout :false
|
|
|
|
def app
|
|
|
|
end
|
|
|
|
rescue_from ActionView::MissingTemplate do |exception|
|
|
end
|
|
|
|
protected
|
|
|
|
def allow_iframe
|
|
response.headers.except! 'X-Frame-Options'
|
|
end
|
|
|
|
def set_csrf_cookie
|
|
cookies['XSRF-TOKEN'] = form_authenticity_token if protect_against_forgery?
|
|
end
|
|
|
|
end
|