Not sure where to patch this, but: config.force_ssl should be inactive for tor hidden services (for those, ssl can if anything be worse). Any suggestions? One way to do it would be to check for whether the TLD is .onion. There may be some gotchas with e.g. cookies or similar bits, for sites that operate both as HTTPS and Tor hidden service (which is what I''m trying to set up). - Sai -- You received this message because you are subscribed to the Google Groups "Ruby on Rails: Core" group. To view this discussion on the web visit https://groups.google.com/d/msg/rubyonrails-core/-/TXMVnIqgiaUJ. To post to this group, send email to rubyonrails-core@googlegroups.com. To unsubscribe from this group, send email to rubyonrails-core+unsubscribe@googlegroups.com. For more options, visit this group at http://groups.google.com/group/rubyonrails-core?hl=en.
Please check out Rails Talk<https://groups.google.com/forum/?fromgroups#!forum/rubyonrails-talk>or Stack Overflow <http://stackoverflow.com> for Rails help. This group is for discussion of Rails internal features. Thanks! On Monday, July 16, 2012 5:37:21 AM UTC-5, Sai . wrote:> > Not sure where to patch this, but: config.force_ssl should be inactive for > tor hidden services (for those, ssl can if anything be worse). > > Any suggestions? > > One way to do it would be to check for whether the TLD is .onion. There > may be some gotchas with e.g. cookies or similar bits, for sites that > operate both as HTTPS and Tor hidden service (which is what I''m trying to > set up). > > - Sai >-- You received this message because you are subscribed to the Google Groups "Ruby on Rails: Core" group. To view this discussion on the web visit https://groups.google.com/d/msg/rubyonrails-core/-/r9E5HS4-Qy4J. To post to this group, send email to rubyonrails-core@googlegroups.com. To unsubscribe from this group, send email to rubyonrails-core+unsubscribe@googlegroups.com. For more options, visit this group at http://groups.google.com/group/rubyonrails-core?hl=en.
Reasonably Related Threads
- Cannot receive from specified address Unauthenticated senders not allowed
- Allowing non-SSL connections only for certain Password Databases
- ActionView::Template::Error Not a directory vendor/assets/javascripts/ production
- my webpage does not send emails confimation/notification
- jquery_ujs.js 404