HSTS subdomains is now true, so let's fix documentation [ci skip] (#26870)

- Followup of fda5afeb
author: प्रथमेश Sonpatki <csonpatki@gmail.com> 2016-10-23 21:27:59 +0530
committer: GitHub <noreply@github.com> 2016-10-23 21:27:59 +0530
commit: a3ce625c76355ebd095d55bb5c3864db73247826 (patch)
tree: 95b368017b49241ae56171fda8cc502bdb273f60
parent: 0fdeb0763621f500970fa3012bd8425fb5a81b63 (diff)
download: rails-a3ce625c76355ebd095d55bb5c3864db73247826.tar.gz
rails-a3ce625c76355ebd095d55bb5c3864db73247826.tar.bz2
rails-a3ce625c76355ebd095d55bb5c3864db73247826.zip
1 files changed, 1 insertions, 1 deletions
diff --git a/actionpack/lib/action_dispatch/middleware/ssl.rb b/actionpack/lib/action_dispatch/middleware/ssl.rb
index c9bd417aa2..557721c301 100644
--- a/actionpack/lib/action_dispatch/middleware/ssl.rb
+++ b/actionpack/lib/action_dispatch/middleware/ssl.rb
@@ -23,7 +23,7 @@ module ActionDispatch
   #     `180.days` (recommended).
   #   * `subdomains`: Set to `true` to tell the browser to apply these settings
   #     to all subdomains. This protects your cookies from interception by a
-  #     vulnerable site on a subdomain. Defaults to `false`.
+  #     vulnerable site on a subdomain. Defaults to `true`.
   #   * `preload`: Advertise that this site may be included in browsers'
   #     preloaded HSTS lists. HSTS protects your site on every visit *except the
   #     first visit* since it hasn't seen your HSTS header yet. To close this
author	प्रथमेश Sonpatki <csonpatki@gmail.com>	2016-10-23 21:27:59 +0530
committer	GitHub <noreply@github.com>	2016-10-23 21:27:59 +0530
commit	a3ce625c76355ebd095d55bb5c3864db73247826 (patch)
tree	95b368017b49241ae56171fda8cc502bdb273f60
parent	0fdeb0763621f500970fa3012bd8425fb5a81b63 (diff)
download	rails-a3ce625c76355ebd095d55bb5c3864db73247826.tar.gz rails-a3ce625c76355ebd095d55bb5c3864db73247826.tar.bz2 rails-a3ce625c76355ebd095d55bb5c3864db73247826.zip