Skip to content

Commit

Permalink
Force SSL when RAILS_ENV=production
Browse files Browse the repository at this point in the history 
This ensures that we don't get warnings about SameSite=None cookies
as a result of 8785e73. The warnings indicate that at some point the
browser will no longer honor these cookies unless they are sent
securely.
  • Loading branch information
@thatbudakguy
thatbudakguy committed Jul 25, 2023
1 parent f19ea9f commit bb8bb42
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion config/environments/production.rb
View file
Original file line number Diff line number Diff line change
Expand Up @@ -48,7 +48,7 @@
# config.action_cable.allowed_request_origins = [ 'http://example.com', /http:\/\/example.*/ ]

# Force all access to the app over SSL, use Strict-Transport-Security, and use secure cookies.
# config.force_ssl = true
config.force_ssl = true

# Include generic and useful information about system operation, but avoid logging too much
# information to avoid inadvertent exposure of personally identifiable information (PII).
Expand Down

0 comments on commit bb8bb42

Please sign in to comment.