mirror of
https://github.com/mastodon/mastodon
synced 2024-11-24 15:16:19 +09:00
21fb3f3684
* Drop dependency on secure_headers, use always_write_cookie instead * Fix cookies in Tor Hidden Services by moving configuration to application.rb * Instead of setting always_write_cookie at boot, monkey-patch ActionDispatch
3 lines
151 B
Ruby
3 lines
151 B
Ruby
Makara::Cookie::DEFAULT_OPTIONS[:same_site] = :lax
|
|
Makara::Cookie::DEFAULT_OPTIONS[:secure] = Rails.env.production? || ENV['LOCAL_HTTPS'] == 'true'
|