diff options
| author | Assain <assainjaleel20@gmail.com> | 2017-06-03 01:21:10 +0530 |
|---|---|---|
| committer | Assain <assainjaleel20@gmail.com> | 2017-06-12 00:29:16 +0530 |
| commit | 7440bf44baea53de950093ebf9ee4e8a3ed71066 (patch) | |
| tree | 18f3fd9748a64e06da43e59812e128b738785f5d /actionpack | |
| parent | d1d39710cc4c525ab8f515eba70cb9ab4134fc64 (diff) | |
| download | rails-7440bf44baea53de950093ebf9ee4e8a3ed71066.tar.gz rails-7440bf44baea53de950093ebf9ee4e8a3ed71066.tar.bz2 rails-7440bf44baea53de950093ebf9ee4e8a3ed71066.zip | |
set message_encryptor default cipher to aes-256-gcm
- Introduce a method to select default cipher, and maintain backward compatibility
Diffstat (limited to 'actionpack')
| -rw-r--r-- | actionpack/lib/action_dispatch/middleware/cookies.rb | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/actionpack/lib/action_dispatch/middleware/cookies.rb b/actionpack/lib/action_dispatch/middleware/cookies.rb index 6e7a68cdf8..533925ebe1 100644 --- a/actionpack/lib/action_dispatch/middleware/cookies.rb +++ b/actionpack/lib/action_dispatch/middleware/cookies.rb @@ -630,7 +630,7 @@ module ActionDispatch secret = key_generator.generate_key(request.encrypted_cookie_salt || "")[0, ActiveSupport::MessageEncryptor.key_len] sign_secret = key_generator.generate_key(request.encrypted_signed_cookie_salt || "") - @legacy_encryptor = ActiveSupport::MessageEncryptor.new(secret, sign_secret, digest: digest, serializer: ActiveSupport::MessageEncryptor::NullSerializer) + @legacy_encryptor = ActiveSupport::MessageEncryptor.new(secret, sign_secret, cipher: "aes-256-cbc", digest: digest, serializer: ActiveSupport::MessageEncryptor::NullSerializer) end def decrypt_and_verify_legacy_encrypted_message(name, signed_message) |