No secret was given, so assume this is a cookie session store.
Source Code
# File action_controller/request_forgery_protection.rb, line 130 def authenticity_token_from_cookie_session session[:csrf_id] ||= CGI::Session.generate_unique_id session.dbman.generate_digest(session[:csrf_id]) end
<code/>and<pre/>for code samples.