From 07e231736998f0a639d6b00aab3a87fb66377a98 Mon Sep 17 00:00:00 2001
From: luisramos0 <luisramos0@gmail.com>
Date: Fri, 6 Dec 2019 14:28:03 +0000
Subject: [PATCH] Replace deprecated URI.unescape with CGI.unescape

---
 app/controllers/spree/admin/base_controller.rb | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/app/controllers/spree/admin/base_controller.rb b/app/controllers/spree/admin/base_controller.rb
index 4028cf76ec..09ea88e90a 100644
--- a/app/controllers/spree/admin/base_controller.rb
+++ b/app/controllers/spree/admin/base_controller.rb
@@ -83,7 +83,7 @@ module Spree
         return unless protect_against_forgery?
 
         auth_token = params[request_forgery_protection_token]
-        return if auth_token && form_authenticity_token == URI.unescape(auth_token)
+        return if auth_token && form_authenticity_token == CGI.unescape(auth_token)
 
         raise(ActionController::InvalidAuthenticityToken)
       end