mastodon/app/controllers/application_controller.rb
2016-08-18 15:49:51 +02:00

13 lines
370 B
Ruby

class ApplicationController < ActionController::Base
# Prevent CSRF attacks by raising an exception.
# For APIs, you may want to use :null_session instead.
protect_from_forgery with: :exception
# Profiling
before_action do
if (current_user && current_user.admin?) || Rails.env == 'development'
Rack::MiniProfiler.authorize_request
end
end
end