aboutsummaryrefslogtreecommitdiffstats
path: root/actionpack/test/controller/session_fixation_test.rb
diff options
context:
space:
mode:
authorMichael Koziarski <michael@koziarski.com>2007-11-21 21:31:45 +0000
committerMichael Koziarski <michael@koziarski.com>2007-11-21 21:31:45 +0000
commitec93d61fb9a571aeb714ddc9bd594510485f5b7f (patch)
treeba9ccc3914248b0f5c7bf6a6f3eaa592d56b3de0 /actionpack/test/controller/session_fixation_test.rb
parent13ab54db484a98a768f5e57e21e00eb7ee01dce4 (diff)
downloadrails-ec93d61fb9a571aeb714ddc9bd594510485f5b7f.tar.gz
rails-ec93d61fb9a571aeb714ddc9bd594510485f5b7f.tar.bz2
rails-ec93d61fb9a571aeb714ddc9bd594510485f5b7f.zip
Make sure that cookie sessions use a secret that is at least 30 chars in length. [Koz]
git-svn-id: http://svn-commit.rubyonrails.org/rails/trunk@8184 5ecf4fe2-1ee6-0310-87b1-e25e094e27de
Diffstat (limited to 'actionpack/test/controller/session_fixation_test.rb')
-rw-r--r--actionpack/test/controller/session_fixation_test.rb3
1 files changed, 2 insertions, 1 deletions
diff --git a/actionpack/test/controller/session_fixation_test.rb b/actionpack/test/controller/session_fixation_test.rb
index 0b0dce770e..34a7aa2d0d 100644
--- a/actionpack/test/controller/session_fixation_test.rb
+++ b/actionpack/test/controller/session_fixation_test.rb
@@ -1,5 +1,6 @@
require File.dirname(__FILE__) + '/../abstract_unit'
+
class SessionFixationTest < Test::Unit::TestCase
class MockCGI < CGI #:nodoc:
attr_accessor :stdoutput, :env_table
@@ -12,7 +13,7 @@ class SessionFixationTest < Test::Unit::TestCase
end
class TestController < ActionController::Base
- session :session_key => '_myapp_session_id', :secret => 'secret', :except => :default_session_key
+ session :session_key => '_myapp_session_id', :secret => CGI::Session.generate_unique_id, :except => :default_session_key
session :cookie_only => false, :only => :allow_session_fixation
def default_session_key
generated by cgit v1.2.3 (git 2.25.1) at 2024-08-28 19:53:55 +0000