The project is in a healthy, maintained state
Provides CSRF protection on OmniAuth request endpoint on Jets application.
2005
2006
2007
2008
2009
2010
2011
2012
2013
2014
2015
2016
2017
2018
2019
2020
2021
2022
2023
2024
 Dependencies

Development

>= 0
>= 0

Runtime

~> 2.0
 Project Readme

Omniauth - Jets CSRF Protection

Gem Version

BoltOps Badge

BoltOps Learn Badge

This gem provides protection against CVE-2015-9284 (Cross-Site Request Forgery on the request phase when using OmniAuth gem with a Ruby on Jets application) for Jets applications using OmniAuth gem. It achieves this by integrating a CSRF token verifier that leverages the ActionController::RequestForgeryProtection.

This is a fork of cookpad/omniauth-rails_csrf_protection. Credit goes to the original authors of that gem.