Ruby on Rails doesn't use CSRF tokens anymore · HackerTrans