From 2e4138b585a2f8abf21775e733d9a7244e2c4d1e Mon Sep 17 00:00:00 2001 From: Jorge Manrubia Date: Mon, 15 Sep 2025 16:29:57 +0200 Subject: [PATCH] Tie etag to sessions So that we don't get CSRF token issues if sharing sessions in the same browser --- app/controllers/concerns/authentication.rb | 2 ++ 1 file changed, 2 insertions(+) diff --git a/app/controllers/concerns/authentication.rb b/app/controllers/concerns/authentication.rb index 1ce96c7a2..89871a9f5 100644 --- a/app/controllers/concerns/authentication.rb +++ b/app/controllers/concerns/authentication.rb @@ -8,6 +8,8 @@ module Authentication before_action :require_authentication helper_method :authenticated? + etag { Current.session.id if authenticated? } + include LoginHelper end