discourse/config/initializers/100-session_store.rb

# frozen_string_literal: true

# Be sure to restart your server when you modify this file.

Rails.application.config.session_store(
  :discourse_cookie_store,
  key: "_forum_session",
  path:
    (
      if (Rails.application.config.relative_url_root.nil?)
        "/"
      else
        Rails.application.config.relative_url_root
      end
    ),
)

Rails.application.config.to_prepare do
  if Rails.env.development? && SiteSetting.force_https && !ENV["DISCOURSE_DEV_ALLOW_HTTPS"]
    STDERR.puts
    STDERR.puts "WARNING: force_https is enabled in dev"
    STDERR.puts "It is very unlikely you are running HTTPS in dev."
    STDERR.puts "Without HTTPS your session cookie will not work"
    STDERR.puts "Try: bin/rails c"
    STDERR.puts "SiteSetting.force_https = false"
    STDERR.puts
  end
end
DEV: enable frozen string literal on all files This reduces chances of errors where consumers of strings mutate inputs and reduces memory usage of the app. Test suite passes now, but there may be some stuff left, so we will run a few sites on a branch prior to merging 2019-05-03 08:17:27 +10:00			`# frozen_string_literal: true`

Initial release of Discourse 2013-02-05 14:16:51 -05:00			`# Be sure to restart your server when you modify this file.`

DEV: Upgrade to Rails 7 This patch upgrades Rails to version 7.0.2.4. 2022-03-21 15:28:52 +01:00			`Rails.application.config.session_store(`
FIX: force secure cookies on session if force https is enabled 2016-10-27 15:15:58 +11:00			`:discourse_cookie_store,`
FIX: add path to cookie on subfolder installs 2016-03-07 13:40:14 -05:00			`key: "_forum_session",`
			`path:`
DEV: Apply syntax_tree formatting to `config/*` 2023-01-07 11:59:28 +00:00			`(`
FIX: add path to cookie on subfolder installs 2016-03-07 13:40:14 -05:00			`if (Rails.application.config.relative_url_root.nil?)`
DEV: Apply syntax_tree formatting to `config/*` 2023-01-07 11:59:28 +00:00			`"/"`
			`else`
FIX: add path to cookie on subfolder installs 2016-03-07 13:40:14 -05:00			`Rails.application.config.relative_url_root`
DEV: Apply syntax_tree formatting to `config/*` 2023-01-07 11:59:28 +00:00			`end`
			`),`
FIX: add path to cookie on subfolder installs 2016-03-07 13:40:14 -05:00			`)`
DEV: Upgrade to Rails 7 This patch upgrades Rails to version 7.0.2.4. 2022-03-21 15:28:52 +01:00
			`Rails.application.config.to_prepare do`
DEV: allow developers to use HTTPS if they wish (#26384) Warning is getting tiring on local and I have https://l.discourse working just fine (tm) 2024-03-27 10:48:04 +11:00			`if Rails.env.development? && SiteSetting.force_https && !ENV["DISCOURSE_DEV_ALLOW_HTTPS"]`
DEV: Upgrade to Rails 7 This patch upgrades Rails to version 7.0.2.4. 2022-03-21 15:28:52 +01:00			`STDERR.puts`
			`STDERR.puts "WARNING: force_https is enabled in dev"`
			`STDERR.puts "It is very unlikely you are running HTTPS in dev."`
			`STDERR.puts "Without HTTPS your session cookie will not work"`
			`STDERR.puts "Try: bin/rails c"`
			`STDERR.puts "SiteSetting.force_https = false"`
			`STDERR.puts`
			`end`
			`end`