Skip to content

HTTPS clone URL

Subversion checkout URL

You can clone with HTTPS or Subversion.

Download ZIP
Browse files

Merge pull request #320 from glennr/fix_319_http_only

Fix 319 http only
  • Loading branch information...
commit 8f81fab8dd635ad02eae86f75a9cf9b27966582e 2 parents f975f52 + cb83a51
@binarylogic authored
View
4 lib/authlogic/session/cookies.rb
@@ -168,7 +168,7 @@ def save_cookie
:value => "#{record.persistence_token}::#{record.send(record.class.primary_key)}",
:expires => remember_me_until,
:secure => secure,
- :http_only => httponly,
+ :httponly => httponly,
:domain => controller.cookie_domain
}
end
@@ -179,4 +179,4 @@ def destroy_cookie
end
end
end
-end
+end
View
3  test/session_test/cookies_test.rb
@@ -98,6 +98,7 @@ def test_after_save_save_cookie
assert session.save
debugger
assert_equal "#{ben.persistence_token}::#{ben.id}", controller.cookies["user_credentials"]
+ assert_equal false, controller.cookies["httponly"]
end
def test_after_destroy_destroy_cookie
@@ -110,4 +111,4 @@ def test_after_destroy_destroy_cookie
end
end
end
-end
+end
Please sign in to comment.
Something went wrong with that request. Please try again.