mastodon/config/initializers/session_store.rb
Cecylia Bocovich e79f8dd85c
Onion service related changes to HTTPS handling (#15560)
* Enable secure cookie flag for https only

* Disable force_ssl for .onion hosts only

Co-authored-by: Aiden McClelland <me@drbonez.dev>
2021-02-11 04:40:13 +01:00

7 lines
166 B
Ruby

# Be sure to restart your server when you modify this file.
Rails.application.config.session_store :cookie_store, {
key: '_mastodon_session',
same_site: :lax,
}