RSpec
Ruby on Rails
Ruby
method
new
v5.0.0.1 -
Show latest stable
-
0 notes -
Class: SSL
- 1.0.0
- 1.1.6
- 1.2.6
- 2.0.3
- 2.1.0
- 2.2.1
- 2.3.8
- 3.0.0
- 3.0.9
- 3.1.0
- 3.2.1
- 3.2.8
- 3.2.13
- 4.0.2 (0)
- 4.1.8 (0)
- 4.2.1 (0)
- 4.2.7 (0)
- 4.2.9 (0)
- 5.0.0.1 (0)
- 5.1.7 (0)
- 5.2.3
- 6.0.0
- 6.1.3.1
- 6.1.7.7
- 7.0.0
- 7.1.3.2
- 7.1.3.4
- What's this?
-
default_hsts_options
-
new
-
build_hsts_header
-
call
-
flag_cookies_as_secure!
-
hsts_headers
(<= v4.2.9)
-
https_location_for
-
normalize_hsts_options
-
redirection_status
(>= v5.1.7)
-
redirect_to_https
-
set_hsts_header!
= private
= protected
new(app, redirect: {}, hsts: {}, secure_cookies: true, **options)
public
Hide source
# File actionpack/lib/action_dispatch/middleware/ssl.rb, line 50 def initialize(app, redirect: {}, hsts: {}, secure_cookies: true, **options) @app = app if options[:host] || options[:port] ActiveSupport::Deprecation.warn The `:host` and `:port` options are moving within `:redirect`: `config.ssl_options = { redirect: { host: â¦, port: ⦠} }`..strip_heredoc @redirect = options.slice(:host, :port) else @redirect = redirect end @exclude = @redirect && @redirect[:exclude] || proc { !@redirect } @secure_cookies = secure_cookies if hsts != true && hsts != false && hsts[:subdomains].nil? hsts[:subdomains] = false ActiveSupport::Deprecation.warn In Rails 5.1, The `:subdomains` option of HSTS config will be treated as true if unspecified. Set `config.ssl_options = { hsts: { subdomains: false } }` to opt out of this behavior..strip_heredoc end @hsts_header = build_hsts_header(normalize_hsts_options(hsts)) end
