Home/security/rubygem-omniauth-rails_csrf_protection

rubygem-omniauth-rails_csrf_protection

1.0.2security

Mitigation against CVE-2015-9284 for OmniAuth

This gem provides a mitigation against CVE-2015-9284 (Cross-Site Request Forgery on the request phrase when using OmniAuth gem with a Ruby on Rails application) by implementing a CSRF token verifier that directly utilize `ActionController::RequestForgeryProtection` code from Rails.

$pkg install rubygem-omniauth-rails_csrf_protection

github.com/cookpad/omniauth-rails_csrf_protection ↗

Origin

security/rubygem-omniauth-rails_csrf_protection

Size

10.5KiB

License

MIT

Maintainer

mfechner@FreeBSD.org

Dependencies

4 packages

Required by

0 packages

Dependencies (4)

rubygem-omniauth rubygem-actionpack70 ruby33-gems ruby