1# Be sure to restart your server when you modify this file.
 2#
 3# This file contains migration options to ease your Rails 5.0 upgrade.
 4#
 5# Read the Rails 5.0 release notes for more info on each option.
 6
 7# Enable per-form CSRF tokens. Previous versions had false.
 8Rails.application.config.action_controller.per_form_csrf_tokens = true
 9
10# Enable origin-checking CSRF mitigation. Previous versions had false.
11Rails.application.config.action_controller.forgery_protection_origin_check = true
12
13# Make Ruby 2.4 preserve the timezone of the receiver when calling `to_time`.
14# Previous versions had false.
15ActiveSupport.to_time_preserves_timezone = true
16
17# Require `belongs_to` associations by default. Previous versions had false.
18Rails.application.config.active_record.belongs_to_required_by_default = true
19
20# Do not halt callback chains when a callback returns false. Previous versions had true.
21ActiveSupport.halt_callback_chains_on_return_false = false
22
23# Configure SSL options to enable HSTS with subdomains. Previous versions had false.
24Rails.application.config.ssl_options = { hsts: { subdomains: true } }