Commit 138f9f853f049c53c86fad53a1a7426f6f8fc31b to taansen's alonetone

taansen / alonetone

Fork of sudara/alonetone
Description:	alonetone - a damn fine musician's home. Upload mp3s, create playlists, track listens, get your widget on. (looking for dev help!)
Homepage:	http://alonetone.com
Clone URL:	git://github.com/taansen/alonetone.git Give this clone URL to anyone. `git clone git://github.com/taansen/alonetone.git`

eliminate secret for cookie session storage

sudara (author)

Tue Mar 11 09:20:39 -0700 2008

commit 138f9f853f049c53c86fad53a1a7426f6f8fc31b
tree 043597667cf1ca5a4b9cdb586755c6b9011fb253
parent 7543800cb4ad0c07ed77a0f78333b159b068565d

config/environment.rb
config/environments/production.rb

config/environment.rb

0
@@ -32,8 +32,7 @@ Rails::Initializer.run do |config|
0
   # Your secret key for verifying cookie session data integrity.
0
   # If you change this key, all old sessions will become invalid!
0
   config.action_controller.session = {
0
-    :session_key => 'your_website_com',
0
-    :secret      => 'your_secret_key'
0
+    :session_key => 'alonetone_com',
0
   }
0
 
0
   # Use the database for sessions instead of the cookie-based default,

config/environments/production.rb

0
@@ -24,11 +24,10 @@ config.after_initialize do
0
     LoggedExceptionsController.class_eval do
0
       # set the same session key as the app
0
       session :session_key => 'alonetone_com'
0
-      session :secret => 'a4d29e5816af66e4d87de0caa774c14e21a851a223496eaa03b7960529f73dfb69374da11984a09e6abc4765bfa944b7e5d77320507af13e77f6ec58f3c4f1f6'
0
 
0
       # include any custom auth modules you need
0
       include AuthenticatedSystem
0
-      protect_from_forgery  :secret => 'f90bac24ac12962052d00bfc2bd34ef2'
0
+      protect_from_forgery  :secret => APP_SECRET
0
 
0
       before_filter :login_required
0

Comments

No one has commented yet.