vbatts/mastodon
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

Drop dependency on secure_headers, fix response headers (#15712)

Browse source 
* Drop dependency on secure_headers, use always_write_cookie instead

* Fix cookies in Tor Hidden Services by moving configuration to application.rb

* Instead of setting always_write_cookie at boot, monkey-patch ActionDispatch
This commit is contained in:
Claire 2021-02-11 23:47:05 +01:00 committed by GitHub
parent eb23f98592
commit 21fb3f3684
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
8 changed files with 24 additions and 16 deletions
Download patch file Download diff file Expand all files Collapse all files

4
Gemfile.lock
View file

@ -571,8 +571,6 @@ GEM
scenic (1.5.4)
activerecord (>= 4.0.0)
railties (>= 4.0.0)
secure_headers (3.9.0)
useragent
securecompare (1.0.0)
semantic_range (2.3.0)
sidekiq (6.1.3)
@ -654,7 +652,6 @@ GEM
unf_ext (0.0.7.7)
unicode-display_width (1.7.0)
uniform_notifier (1.13.2)
useragent (0.16.10)
warden (1.2.9)
rack (>= 2.0.9)
webauthn (3.0.0.alpha1)
@ -798,7 +795,6 @@ DEPENDENCIES
ruby-progressbar (~> 1.11)
sanitize (~> 5.2)
scenic (~> 1.5)
secure_headers (~> 3.5)
sidekiq (~> 6.1)
sidekiq-bulk (~> 0.2.0)
sidekiq-scheduler (~> 3.0)