2015-08-10 11:05:06 +02:00
|
|
|
class ApplicationController < ActionController::Base
|
|
|
|
# Prevent CSRF attacks by raising an exception.
|
|
|
|
# For APIs, you may want to use :null_session instead.
|
|
|
|
protect_from_forgery with: :exception
|
|
|
|
|
2016-07-07 10:13:46 +02:00
|
|
|
def default_url_options
|
|
|
|
return { protocol: 'https' } if Rails.env.staging? || Rails.env.production?
|
|
|
|
{}
|
|
|
|
end
|
2015-08-10 11:05:06 +02:00
|
|
|
end
|