Very useful piece of information about the changes from rails 1.x to 2.x. Since I was following the Agile ... with rails book (which is on rails 1.2.3), I got trapped with this problem.
Few new things for me, the concept of Cross-site request forgery and that rails 2 already handles it in the framework. I got to this article through www.railsforum.com and I have to say I am impressed.
What's New in Edge Rails: Better Cross-Site Request Forging Prevention
Providing such useful features built inside the app framework is really intuitive.
Way to go rails... :)