diff options
Diffstat (limited to 'railties/environments/environment.rb')
| -rw-r--r-- | railties/environments/environment.rb | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/railties/environments/environment.rb b/railties/environments/environment.rb index 8cbb016ac0..79306b0272 100644 --- a/railties/environments/environment.rb +++ b/railties/environments/environment.rb @@ -34,6 +34,8 @@ Rails::Initializer.run do |config| # Your secret key for verifying cookie session data integrity. # If you change this key, all old sessions will become invalid! + # Make sure the secret is at least 30 characters and all random, + # no regular words or you'll be exposed to dictionary attacks. config.action_controller.session = { :session_key => '_<%= app_name %>_session', :secret => '<%= app_secret %>' |