diff options
| author | Assain <assainjaleel20@gmail.com> | 2018-05-19 13:31:57 +0530 |
|---|---|---|
| committer | Assain <assainjaleel20@gmail.com> | 2018-08-12 21:50:35 +0530 |
| commit | 1cda4fb5df519080032c9c0a16d3c4f8cf1f3d2c (patch) | |
| tree | 5e3b2acdd55627088a99e91494481645e365c35e /actionpack/lib/action_dispatch/railtie.rb | |
| parent | ba1dab1e3b32a7c81cb9b8bdc22429f6620a3833 (diff) | |
| download | rails-1cda4fb5df519080032c9c0a16d3c4f8cf1f3d2c.tar.gz rails-1cda4fb5df519080032c9c0a16d3c4f8cf1f3d2c.tar.bz2 rails-1cda4fb5df519080032c9c0a16d3c4f8cf1f3d2c.zip | |
Purpose Metadata For Signed And Encrypted Cookies
Purpose metadata prevents cookie values from being
copy-pasted and ensures that the cookie is used only
for its originally intended purpose.
The Purpose and Expiry metadata are embedded inside signed/encrypted
cookies and will not be readable on previous versions of Rails.
We can switch off purpose and expiry metadata embedded in
signed and encrypted cookies using
config.action_dispatch.use_cookies_with_metadata = false
if you want your cookies to be readable on older versions of Rails.
Diffstat (limited to 'actionpack/lib/action_dispatch/railtie.rb')
| -rw-r--r-- | actionpack/lib/action_dispatch/railtie.rb | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/actionpack/lib/action_dispatch/railtie.rb b/actionpack/lib/action_dispatch/railtie.rb index eb6fbca6ba..efc3988bc3 100644 --- a/actionpack/lib/action_dispatch/railtie.rb +++ b/actionpack/lib/action_dispatch/railtie.rb @@ -21,6 +21,7 @@ module ActionDispatch config.action_dispatch.encrypted_signed_cookie_salt = "signed encrypted cookie" config.action_dispatch.authenticated_encrypted_cookie_salt = "authenticated encrypted cookie" config.action_dispatch.use_authenticated_cookie_encryption = false + config.action_dispatch.use_cookies_with_metadata = false config.action_dispatch.perform_deep_munge = true config.action_dispatch.default_headers = { |