diff options
author | schneems <richard.schneeman@gmail.com> | 2014-01-13 14:01:24 -0600 |
---|---|---|
committer | schneems <richard.schneeman@gmail.com> | 2014-01-13 14:31:43 -0600 |
commit | b9095ec95c38e17425eef26018aeb962e96c323f (patch) | |
tree | ee46eb1411e056bc1d880eed1f622ddf6a36672a /activerecord/test/cases/column_test.rb | |
parent | e0a521cfcd13e4d1f0ae8ab96004289e1c020f71 (diff) | |
download | rails-b9095ec95c38e17425eef26018aeb962e96c323f.tar.gz rails-b9095ec95c38e17425eef26018aeb962e96c323f.tar.bz2 rails-b9095ec95c38e17425eef26018aeb962e96c323f.zip |
Favor canonical environment variables for secrets
Prefixing an environment variable with `RAILS_` should be used when there is otherwise a conflict, such as `RAILS_ENV` or if it is being used for a very Rails specific value.
If we remove the prefix of `RAILS_` in the case of `RAILS_SECRET_KEY_BASE` then we can push for a pseudo standard among other frameworks that will accept a common environment key `SECRET_KEY_BASE` to keep your app secure. This is beneficial for containerized deployments such as docker, Heroku, etc. So that the container need to know one less thing about your app (it can just set it no-matter what language or framework you are using).
This change also allows the defaults to be consistent with the way the secret key is accessed so `secrets.secret_key_base` is aliased to `SECRET_KEY_BASE` instead of `RAILS_SECRET_KEY_BASE`.
Diffstat (limited to 'activerecord/test/cases/column_test.rb')
0 files changed, 0 insertions, 0 deletions