demarches-normaliennes/config/initializers/cookie_rotator.rb
2024-08-22 09:26:48 +02:00

20 lines
793 B
Ruby

# frozen_string_literal: true
# TODO: Enable cookies rotation when new SHA256 will be enforced
# See new_framework_defaults_7.0.rb
# key_generator_hash_digest_class = OpenSSL::Digest::SHA256 will be
#
# Rails.application.config.after_initialize do
# Rails.application.config.action_dispatch.cookies_rotations.tap do |cookies|
# salt = Rails.application.config.action_dispatch.authenticated_encrypted_cookie_salt
# secret_key_base = Rails.application.secret_key_base
# key_generator = ActiveSupport::KeyGenerator.new(
# secret_key_base, iterations: 1000, hash_digest_class: OpenSSL::Digest::SHA1
# )
# key_len = ActiveSupport::MessageEncryptor.key_len
# secret = key_generator.generate_key(salt, key_len)
# cookies.rotate :encrypted, secret
# end
# end