Mistři v programování na #hovnokod

Ruby #4708

Of course It's secure.. we use authneticity tokens..

# TODO: SKIP_API_AUTHENTICITY_TOKEN used for easy development
if request.headers.include?('HTTP_SKIP_API_AUTHENTICITY_TOKEN')        
  skip_before_action :verify_authenticity_token
end

Anonymous,