Merge branch 'master' into 3-0-unstable

Conflicts: ci/cruise_config.rb
author: Joshua Peek <josh@joshpeek.com> 2009-01-22 15:13:47 -0600
committer: Joshua Peek <josh@joshpeek.com> 2009-01-22 15:13:47 -0600
commit: cc0b5fa9930dcc60914e21b518b3c54109243cfa (patch)
tree: 3b5c65d8d0329388730542093314028630b0945a /actionpack/lib/action_controller/session
parent: e57cb2629ac4971a5dcb1cf8bb2f6d0509317928 (diff)
parent: ccda96093a3bf3fb360f7c6d61bbbf341b2ae034 (diff)
download: rails-cc0b5fa9930dcc60914e21b518b3c54109243cfa.tar.gz
rails-cc0b5fa9930dcc60914e21b518b3c54109243cfa.tar.bz2
rails-cc0b5fa9930dcc60914e21b518b3c54109243cfa.zip
1 files changed, 4 insertions, 6 deletions
diff --git a/actionpack/lib/action_controller/session/cookie_store.rb b/actionpack/lib/action_controller/session/cookie_store.rb
index 135bedaf50..6ad6369950 100644
--- a/actionpack/lib/action_controller/session/cookie_store.rb
+++ b/actionpack/lib/action_controller/session/cookie_store.rb
@@ -45,7 +45,7 @@ module ActionController
         :domain       => nil,
         :path         => "/",
         :expire_after => nil,
-        :httponly     => false
+        :httponly     => true
       }.freeze
 
       ENV_SESSION_KEY = "rack.session".freeze
@@ -56,8 +56,6 @@ module ActionController
       class CookieOverflow < StandardError; end
 
       def initialize(app, options = {})
-        options = options.dup
-
         # Process legacy CGI options
         options = options.symbolize_keys
         if options.has_key?(:session_path)
@@ -163,9 +161,9 @@ module ActionController
 
         def ensure_session_key(key)
           if key.blank?
-            raise ArgumentError, 'A session_key is required to write a ' +
+            raise ArgumentError, 'A key is required to write a ' +
               'cookie containing the session data. Use ' +
-              'config.action_controller.session = { :session_key => ' +
+              'config.action_controller.session = { :key => ' +
               '"_myapp_session", :secret => "some secret phrase" } in ' +
               'config/environment.rb'
           end
@@ -181,7 +179,7 @@ module ActionController
           if secret.blank?
             raise ArgumentError, "A secret is required to generate an " +
               "integrity hash for cookie session data. Use " +
-              "config.action_controller.session = { :session_key => " +
+              "config.action_controller.session = { :key => " +
               "\"_myapp_session\", :secret => \"some secret phrase of at " +
               "least #{SECRET_MIN_LENGTH} characters\" } " +
               "in config/environment.rb"
author	Joshua Peek <josh@joshpeek.com>	2009-01-22 15:13:47 -0600
committer	Joshua Peek <josh@joshpeek.com>	2009-01-22 15:13:47 -0600
commit	cc0b5fa9930dcc60914e21b518b3c54109243cfa (patch)
tree	3b5c65d8d0329388730542093314028630b0945a /actionpack/lib/action_controller/session
parent	e57cb2629ac4971a5dcb1cf8bb2f6d0509317928 (diff)
parent	ccda96093a3bf3fb360f7c6d61bbbf341b2ae034 (diff)
download	rails-cc0b5fa9930dcc60914e21b518b3c54109243cfa.tar.gz rails-cc0b5fa9930dcc60914e21b518b3c54109243cfa.tar.bz2 rails-cc0b5fa9930dcc60914e21b518b3c54109243cfa.zip