Commit a77313b

mo <mo.khan@gmail.com>
2017-11-18 23:50:43
serialize post form correctly.
main
1 parent 109561a
Changed files (2)
app
controllers
sessions_controller.rb
config
initializers
filter_parameter_logging.rb
app/controllers/sessions_controller.rb
@@ -46,10 +46,7 @@ class SessionsController < ApplicationController
   end
 
   def binding_for(request)
-    if request.post?
-      idp.single_sign_on_service_for(binding: :post)
-    else
-      idp.single_sign_on_service_for(binding: :http_redirect)
-    end
+    target_binding = request.post? ? :post : :http_redirect
+    idp.single_sign_on_service_for(binding: target_binding)
   end
 end
config/initializers/filter_parameter_logging.rb
@@ -1,4 +1,4 @@
 # Be sure to restart your server when you modify this file.
 
 # Configure sensitive parameters which will be filtered from the log file.
-Rails.application.config.filter_parameters += [:password, 'SAMLResponse', 'SAMLRequest', 'RelayState']
+Rails.application.config.filter_parameters += [:password, :authenticity_token, 'SAMLResponse', 'SAMLRequest', 'RelayState']