…dom, and require 'securerandom' from the stdlib when active support is required.
…amed back to the client or converted to HTTP headers
Signed-off-by: José Valim <firstname.lastname@example.org>
Dont set explicit domain for cookies if host is not a domain name [#6002 state:committed] Signed-off-by: Santiago Pastorino <email@example.com>
… session store. This works for subdomain.mysite.local, google.co.uk, google.com.au, etc. [#5147 state:resolved] Signed-off-by: José Valim <firstname.lastname@example.org>
… it may stream the body.
…figuration in request.env. This is another step forward removing global configuration.
…owing signed cookies to work again.
Made sure to remove a cookie from @deleted_cookies when set [#4211 state:committed] Signed-off-by: Jeremy Kemper <email@example.com>