RSpec
Ruby on Rails
Rubysecret_key_base
- 1.0.0
- 1.1.6
- 1.2.6
- 2.0.3
- 2.1.0
- 2.2.1
- 2.3.8
- 3.0.0
- 3.0.9
- 3.1.0
- 3.2.1
- 3.2.8
- 3.2.13
- 4.0.2
- 4.1.8
- 4.2.1
- 4.2.7
- 4.2.9
- 5.0.0.1
- 5.1.7
- 5.2.3 (0)
- 6.0.0 (3)
- 6.1.3.1 (0)
- 6.1.7.7 (0)
- 7.0.0 (0)
- 7.1.3.2 (38)
- 7.1.3.4 (0)
- 7.2.3 (-2)
- 8.0.0 (-2)
- 8.1.1 (2)
- What's this?
-
add_lib_to_load_path!
-
configure
(<= v3.0.9)
-
create
-
find_root
-
inherited
-
instance
-
method_missing
(<= v3.0.9)
-
new
-
respond_to?
(<= v3.0.9)
-
add_lib_to_load_path!
(<= v4.1.8)
-
allow_concurrency?
(<= v4.0.2)
-
app
(<= v3.0.9)
-
build_middleware
-
build_middleware_stack
(<= v3.0.9)
-
build_original_fullpath
(<= v4.2.9)
-
build_request
-
call
(<= v4.2.9)
-
coerce_same_site_protection
-
config
-
config=
(<= v5.2.3)
-
config_for
-
console
-
credentials
-
default_middleware_stack
-
deprecators
-
eager_load!
-
encrypted
-
ensure_generator_templates_...
-
env_config
-
env_defaults
(<= v3.0.9)
-
filter_parameters
-
generate_development_secret
(<= v7.0.0)
-
generate_local_secret
(<= v7.1.3.4)
-
generators
-
helpers_paths
-
initialize!
-
initialize_console
(<= v3.2.13)
-
initialized?
-
initialize_generators
(<= v3.1.0)
-
initializer
-
initializers
-
initialize_tasks
(<= v3.2.13)
-
isolate_namespace
-
key_generator
-
load_console
(<= v3.2.13)
-
load_generators
-
load_rack_cache
(<= v4.0.2)
-
load_tasks
(<= v3.2.13)
-
message_verifier
-
message_verifiers
-
migration_railties
-
name
-
ordered_railties
-
railties
(<= v3.0.9)
-
railties_initializers
-
rake_tasks
-
reload_dependencies?
(<= v4.0.2)
-
reload_routes!
-
reload_routes_unless_loaded
(>= v8.0.0)
-
require_environment!
-
routes
(<= v3.0.9)
-
routes_reloader
-
run_console_blocks
-
run_generators_blocks
-
run_load_hooks!
-
runner
-
run_runner_blocks
-
run_server_blocks
-
run_tasks_blocks
-
secret_key_base
-
secrets
(<= v7.1.3.4)
-
secrets=
(<= v5.2.3)
-
secrets_secret_key_base
(<= v7.1.3.4)
-
server
-
show_exceptions_app
(<= v4.0.2)
-
to_app
-
validate_secret_key_base
(<= v7.1.3.4)
-
validate_secret_key_config!
(<= v5.1.7)
-
watchable_args
= private
= protected
secret_key_base()
public
The secret_key_base is used as the input secret to the application’s key generator, which in turn is used to create all ActiveSupport::MessageVerifier and ActiveSupport::MessageEncryptor instances, including the ones that sign and encrypt cookies.
We look for it first in ENV["SECRET_KEY_BASE"], then in credentials.secret_key_base. For most applications, the correct place to store it is in the encrypted credentials file.
In development and test, if the secret_key_base is still empty, it is randomly generated and stored in a temporary file in tmp/local_secret.txt.
Generating a random secret_key_base and storing it in tmp/local_secret.txt can also be triggered by setting ENV["SECRET_KEY_BASE_DUMMY"]. This is useful when precompiling assets for production as part of a build step that otherwise does not need access to the production secrets.
Dockerfile example: RUN SECRET_KEY_BASE_DUMMY=1 bundle exec rails assets:precompile.
