diff options
| author | Cecylia Bocovich <cohosh@torproject.org> | 2021-02-10 22:40:13 -0500 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2021-02-11 04:40:13 +0100 |
| commit | e79f8dd85cb63125185fdf711f470c298a0b5dbc (patch) | |
| tree | c27f1d0e2cd45262934fd5729e9ae3cd824747b3 /config/initializers/session_store.rb | |
| parent | d499bb031f0d20a5f27facfd57cf4e00f89003d7 (diff) | |
Onion service related changes to HTTPS handling (#15560)
* Enable secure cookie flag for https only * Disable force_ssl for .onion hosts only Co-authored-by: Aiden McClelland <me@drbonez.dev>
Diffstat (limited to 'config/initializers/session_store.rb')
| -rw-r--r-- | config/initializers/session_store.rb | 1 |
1 files changed, 0 insertions, 1 deletions
diff --git a/config/initializers/session_store.rb b/config/initializers/session_store.rb index e5d1be4c6..7e3471ac4 100644 --- a/config/initializers/session_store.rb +++ b/config/initializers/session_store.rb @@ -2,6 +2,5 @@ Rails.application.config.session_store :cookie_store, { key: '_mastodon_session', - secure: (Rails.env.production? || ENV['LOCAL_HTTPS'] == 'true'), same_site: :lax, } |