discourse/config/initializers/session_store.rb

# Be sure to restart your server when you modify this file.

Discourse::Application.config.session_store :cookie_store, {
  key: '_forum_session',
  secure: SiteSetting.use_https
}

# Use the database for sessions instead of the cookie-based default,
# which shouldn't be used to store highly confidential information
# (create the session table with "rails generate session_migration")
# Discourse::Application.config.session_store :active_record_store
Initial release of Discourse 2013-02-06 03:16:51 +08:00			`# Be sure to restart your server when you modify this file.`

Add secure flag to cookie 2014-01-31 06:06:45 +08:00			`Discourse::Application.config.session_store :cookie_store, {`
			`key: '_forum_session',`
			`secure: SiteSetting.use_https`
			`}`
Initial release of Discourse 2013-02-06 03:16:51 +08:00
			`# Use the database for sessions instead of the cookie-based default,`
			`# which shouldn't be used to store highly confidential information`
			`# (create the session table with "rails generate session_migration")`
			`# Discourse::Application.config.session_store :active_record_store`