Skip to content

Commit

Permalink
Force all access to the app over SSL, use Strict-Transport-Security,…
Browse files Browse the repository at this point in the history 
… and use secure cookies in production
  • Loading branch information
@steventux
steventux committed Jan 3, 2024
1 parent 09f96c8 commit ddb3b40
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion config/environments/production.rb
View file
Original file line number Diff line number Diff line change
Expand Up @@ -40,7 +40,7 @@
# config.action_cable.allowed_request_origins = [ "http://example.com", /http:\/\/example.*/ ]

# Force all access to the app over SSL, use Strict-Transport-Security, and use secure cookies.
# config.force_ssl = true
config.force_ssl = true

# Include generic and useful information about system operation, but avoid logging too much
# information to avoid inadvertent exposure of personally identifiable information (PII).
Expand Down

0 comments on commit ddb3b40

Please sign in to comment.