2021-02-12 07:47:05 +09:00
|
|
|
# frozen_string_literal: true
|
|
|
|
|
|
|
|
module ActionDispatch
|
|
|
|
module CookieJarExtensions
|
|
|
|
private
|
|
|
|
|
|
|
|
# Monkey-patch ActionDispatch to serve secure cookies to Tor Hidden Service
|
|
|
|
# users. Otherwise, ActionDispatch would drop the cookie over HTTP.
|
|
|
|
def write_cookie?(*)
|
2021-02-19 17:56:14 +09:00
|
|
|
request.host.end_with?('.onion') || super
|
2021-02-12 07:47:05 +09:00
|
|
|
end
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
|
|
|
ActionDispatch::Cookies::CookieJar.prepend(ActionDispatch::CookieJarExtensions)
|
2021-02-14 08:10:52 +09:00
|
|
|
|
|
|
|
module Rack
|
|
|
|
module SessionPersistedExtensions
|
|
|
|
def security_matches?(request, options)
|
2021-02-19 17:56:14 +09:00
|
|
|
request.host.end_with?('.onion') || super
|
2021-02-14 08:10:52 +09:00
|
|
|
end
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
|
|
|
Rack::Session::Abstract::Persisted.prepend(Rack::SessionPersistedExtensions)
|