module Motion::HTML::ForgeryProtectionHelpers

Direct including types

Motion::HTML::Engine

Defined in:

motion/html/tags/forgery_protection_helpers.cr

Instance Method Summary

#csrf_hidden_input : Nil
Generate a hidden input with the request CSRF token
#csrf_meta_tags : Nil
Meta tags used for submitting AJAX links and forms

Instance Method Detail

def csrf_hidden_input : Nil #

Generate a hidden input with the request CSRF token

This input is automatically generated when using Motion::FormHelpers#form_for. It creates a hidden input with the CSRF token. THis ensures that the form is safe. If you try to submit a form without a CSRF token it will fail with a 403 forbidden status code.

[View source]

def csrf_meta_tags : Nil #

Meta tags used for submitting AJAX links and forms

These tags are automatically added to MainLayout when generating a new project. They are used by Rails UJS to safely submit forms and non-GET AJAX requests