If @@request_forgery_protection_token is not set in ActionController::Base, it can raise an InvalidAuthenticityToken error when one controller creates a form that will post in another controller.
Patch and better explanation here:
If @@request_forgery_protection_token is not set in ActionController::Base, it can raise an InvalidAuthenticityToken error when one controller creates a form that will post in another controller.
Patch and better explanation here: