5 年之前 · f7c2b94945
--- a/app/controllers/concerns/cookie_based_csrf.rb
+++ b/app/controllers/concerns/cookie_based_csrf.rb
@@ -12,6 +12,7 @@ module CookieBasedCsrf
 
				     end
			
 
				 
			
 
				     def set_csrf_token
			
 
				+      # If no JWT, reset CSRF tokens
			
 
				       unless cookies[:jwt]
			
 
				         cookies.delete(:_csrf_token)
			
 
				         cookies.delete('x-csrf-token')