mirror of
https://github.com/discourse/discourse.git
synced 2024-12-05 10:36:30 +08:00
ff49f72ad9
Revamped system for managing authentication tokens. - Every user has 1 token per client (web browser) - Tokens are rotated every 10 minutes New system migrates the old tokens to "legacy" tokens, so users still remain logged on. Also introduces weekly job to expire old auth tokens.
5 lines
262 B
Ruby
5 lines
262 B
Ruby
# Not fussed setting secret_token anymore, that is only required for
|
|
# backwards support of "seamless" upgrade from Rails 3.
|
|
# Discourse has shipped Rails 3 for a very long time.
|
|
Discourse::Application.config.secret_key_base = GlobalSetting.safe_secret_key_base
|