similar to: Can't set a secure session cookie

Is there any way to change the output of rake spec fails? The errors are just totally over the top ugly and not helpful. First of all the ruby -Ilib line always comes before each test and I find it distracting. But if an error occurs on something that is not nil it just gives me the entire contents of that object and that is no small matter when the object is a HTTP request response. Here is

I am using the restful authentication plugin and am always prompted to login if a different subdomain is accessed. I have found a couple rails "solutions", but none of them seem to work: # development.rb 1. ActionController::CgiRequest::DEFAULT_SESSION_OPTIONS[:session_key] = ".localhost" 2. ActionController::Base.session_options[:key] = ".localhost" Does anyone

I''m working on an ecommerce site (in Rails 2.3) and I added: ActionController::Base.session_options[:secure] = true to ~/config/environments/production.rb Now, every time I add something to my shopping cart and navigate away I get a new session_id (which essentially empties my shopping cart). How can I get the continuity of my sessions back, while still having the session_id get set

I''m having a problem switching from cookie sessions (the default) to active record sessions. I''ve created the sessions table via the rake task, uncommented the line config.action_controller.session_store = :active_record_store in my environment.rb file, cleared out my browsers cookies, restarted the server (natch), but still the it''s using cookie_store instead of

Hi, i need that all the subdomains of an app (using subdomain_fu) use ''.domain.com'' as domain for all cookies. I''ve set ActionController::Base.session_options[:domain] = ''.domain.com'' and it works...for just the session... how can i set this also for common cookies ? (created with cookies[:name] = {:value => value, :expires => 6.months.from_now} )

I like the cookie sessions that Rails edge has - they make sense, they''re fast, easy. For those that don''t know: the default session mechanism is to give developers a Hash called session. To store this object between requests it Marshals the session object and sends the object itself (now as a bitstream) back to clients to store in their cookie file. To prevent users from

I''m trying to set the cookie expiration in my environment.rb file but I keep getting a syntax error on WeBRICK startup. I''m trying both of the ways listed in http://wiki.rubyonrails.org/rails/pages/HowtoChangeSessionOptions. FYI I''m new to rails so this is probably easy. 1) ActionController::Base.session_options[:session_expires] = Time.local(2008,"jan"))

I''ve been looking around for how to store the session ID in a cookie. The "Agile Web Development with Rails" books seems to indicate that this is done by default with Rails. But I don''t see a cookie being set in my browser. (yeah, they''re enabled) I poked through the RForum code to find something referencing "cookies" but nothing came up. Does

I''m implementing simple "remember me" functionality for logging in users with Rails 2.3.4. I''m trying to set the session expiration date for some time in the future. After googling around a bit I found this post which seems to address my problem: http://squarewheel.pl/posts/3 My modifications to request.session_options are being ignored. According to this discussion (

We''re going to have problems keeping cookies across domains. We want people to shop in one domain (e.g. "booksareus.com") and then checkout on the same server securely under a different domain (e.g. "greatbooks.com"). When we make the jump to the secure domain (the checkout link) can we submit the user''s session ID along with it and have it

Is it possible to directly access session and cookie objects from within a Model? When I try to read the session object in my User Model I get the following error: NameError (undefined local variable or method `session'' for User:Class): I could pass attributes taken from the session into my method in the User Model, but this seems to go against DRY. -Lindsay -- Posted via

I''m getting ready to put an app into production and I''ve found a strange issue that, as far as I know, shouldn''t be happening. To me this looks like it could be a bug, but I''m not sure and I''m hoping some one here can tell me if they''ve seen this before, or can idiot- check me in that hopefully it''s just something I''ve missed

from the Agile Book, i see i can set the absolute session expiry time via: ActionController::CGIRequest::DEFAULT_SESSION_OPTIONS[:session_expires] however, I don''t see anything about what the actual default setting is when a session is created. also, is there a way to set the expiration to happen when the browser is closed? in PHP, this can be accomplished using

I am running RAILS 1.2.6 with apache balancing between a cluster of mongrel processes. It appears that intermittently the server is not receiving the session cookie from the browser for certain users. Wondering what situations could cause this... I know one is if the user has cookies turned off. Are there other situations where this could arise? The net effect is that users experiencing this

Hello all, I''ve been struggling with this for quite awhile and haven''t been able to find a solution. I need a user to be able to view multiple top level domains with a single login. My understanding is that this needs to be set in environment.rb and called with before_dispatch. This is what I''ve come up with: require ''activesupport'' require

I would like to integrate the uploadify plugin with a standard rails form. However I can''t figure out how to add a new field and have it get submitted with the file upload. I added a name field into the form, but the valued does not get submitted. <% dialog_file_description = ''Photos'' allowed_extensions = [:jpg, :jpeg, :gif, :png] max_size = 20.megabyte

is it true that Rails depend on cookies? It seems that flash is a part of session, and session uses cookies... so when i disable cookie in Firefox, what was working became ActionController::InvalidAuthenticityToken so is it true that for a RoR app to work, cookies are mandatory? -- Posted via http://www.ruby-forum.com/.

Hello, I''ve been testing my project with some manual tests. One of them consists of deleting cookies ("clean personal info" in firefox) just before submit the login form. Then, I get an error. The error message is: ActionController::InvalidAuthenticityToken in SessionsController#create I''m on Rails 2.0.2 with restful_authentication plugin. I''m using

Many of you probably know the ''depot'' app from the ''Agile Rails development'' book. When the view changes from ''Store'' to ''display_cart,'' a session containing the shopping-cart (:cart) is supposed maintain the ''cart'' between calls, but when the display_cart stub view shows up, I have always ZERO elements

Hi, I and a few folks on #camping thought it would be nice to have either cookie based or file based session handling. This would eliminate the need for creating a sessions table in the database (or a sequence), which feels too heavy for a lightweight framework like Camping anyway. Plus, we can more easily avoid nasty adapter errors. :) The general consensus was to create a separate