github-mirror/discourse
2
0
Fork 0
mirror of https://github.com/discourse/discourse.git synced 2025-05-21 18:12:32 +08:00
Code Issues Actions 1 Packages Projects Releases Wiki Activity

Unsign auth token cookies per discussion on #215

Browse Source
This commit is contained in:
tms
2013-02-23 13:40:21 -05:00
parent 20d6152bb4
commit 3e6641c07e
3 changed files with 4 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
app/controllers/application_controller.rb
View File

@ -117,7 +117,7 @@ class ApplicationController < ActionController::Base
user.auth_token = SecureRandom.hex(16)
user.save!
end
cookies.permanent.signed[:_t] = { :value => user.auth_token, :httponly => true }
cookies.permanent[:_t] = { :value => user.auth_token, :httponly => true }
end
# This is odd, but it seems that in Rails `render json: obj` is about