Monkey patch Rack::Session to send secure cookies to onions (#15725)
parent
5aa66fccb5
commit
3447bd2f80
|
@ -13,3 +13,13 @@ module ActionDispatch
|
||||||
end
|
end
|
||||||
|
|
||||||
ActionDispatch::Cookies::CookieJar.prepend(ActionDispatch::CookieJarExtensions)
|
ActionDispatch::Cookies::CookieJar.prepend(ActionDispatch::CookieJarExtensions)
|
||||||
|
|
||||||
|
module Rack
|
||||||
|
module SessionPersistedExtensions
|
||||||
|
def security_matches?(request, options)
|
||||||
|
request.headers['Host'].ends_with?('.onion') || super
|
||||||
|
end
|
||||||
|
end
|
||||||
|
end
|
||||||
|
|
||||||
|
Rack::Session::Abstract::Persisted.prepend(Rack::SessionPersistedExtensions)
|
||||||
|
|
Reference in New Issue