jro_apps/redmine Commit - r9384:bceaf8be9409

Let the secret token be set in configuration.yml....

Jean-Philippe Lang -

r9384:bceaf8be9409

parent child

Context file:

r9384:bceaf8be9409

config/configuration.yml.example +9 0

                #
                #mirror_plugins_assets_on_startup: false
+               # Your secret key for verifying cookie session data integrity. If you
+               # change this key, all old sessions will become invalid! Make sure the
+               # secret is at least 30 characters and all random, no regular words or
+               # you'll be exposed to dictionary attacks.
+               #
+               # If you have a load-balancing Redmine cluster, you have to use the
+               # same secret token on each machine.
+               #secret_token: 'change it to a long random string'
              # specific configuration options for production environment
              # that overrides the default ones
              production:

config/initializers/30-redmine.rb +6 0

              require 'redmine'
+             # Load the secret token from the Redmine configuration file
+             secret = Redmine::Configuration['secret_token']
+             if secret.present?
+               RedmineApp::Application.config.secret_token = secret
+             end
              Redmine::Plugin.load
              unless Redmine::Configuration['mirror_plugins_assets_on_startup'] == false
                Redmine::Plugin.mirror_assets

General Comments 0

You need to be logged in to leave comments. Login now

No TODOs yet

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages