cblanc
commented
10 years ago Looks like it's been done. Great!
Closed cblanc closed 10 years ago
cblanc
commented
10 years ago Looks like it's been done. Great!
pezholio
commented
10 years ago Yeah, just waiting for the tests to pass and deploy to happen, but thanks for the heads up! :+1:
I'll close your PR, as I wanted to add Dotenv etc too. Thanks again!
My proposed fix to hide secret_token by default in production. Taken from this blog post here
I'd also recommend adding the Dotenv gem to more easily manage ENV in production. Setting the secret_token in production would be a simple matter of creating a
.envfile (not in version control) inRAILS_ROOTand appending it with the secret token e.g.