Commit `026b50c`

mo khan <mo@mokhan.ca>

2016-05-14 16:36:44

mark session store cookie so it can only be sent over ssl.

master

1 parent 87d7b1f

Changed files (1)

config

initializers

session_store.rb

@@ -1,3 +1,6 @@
 # Be sure to restart your server when you modify this file.
 
-Rails.application.config.session_store :cookie_store, key: '_stronglifters_session'
+Rails.application.config.session_store :cookie_store,
+  key: '_stronglifters_session',
+  secure: Rails.env.production?,
+  httponly: true

Commit 026b50c

Commit `026b50c`