diff options
author | Carlhuda <carlhuda@engineyard.com> | 2010-03-04 12:12:04 -0800 |
---|---|---|
committer | Carlhuda <carlhuda@engineyard.com> | 2010-03-04 12:12:04 -0800 |
commit | 9795bf0e74612aa542404460220720c14fac1038 (patch) | |
tree | 1453fe51b6003ed28e9d459609e4b94f54674992 /railties/guides/source/security.textile | |
parent | 17769696279810c6c24a10b0d47f9b712205f0ce (diff) | |
download | rails-9795bf0e74612aa542404460220720c14fac1038.tar.gz rails-9795bf0e74612aa542404460220720c14fac1038.tar.bz2 rails-9795bf0e74612aa542404460220720c14fac1038.zip |
Fix Sam Ruby's tests and deprecation warnings
Diffstat (limited to 'railties/guides/source/security.textile')
-rw-r--r-- | railties/guides/source/security.textile | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/railties/guides/source/security.textile b/railties/guides/source/security.textile index ecf68b56f9..b62ff8cb38 100644 --- a/railties/guides/source/security.textile +++ b/railties/guides/source/security.textile @@ -92,7 +92,7 @@ Rails 2 introduced a new default session storage, CookieStore. CookieStore saves That means the security of this storage depends on this secret (and on the digest algorithm, which defaults to SHA512, which has not been compromised, yet). So _(highlight)don't use a trivial secret, i.e. a word from a dictionary, or one which is shorter than 30 characters_. Put the secret in your environment.rb: <ruby> -config.action_controller.session = { +config.action_dispatch.session = { :key => '_app_session', :secret => '0x0dkfj3927dkc7djdh36rkckdfzsg...' } |