[DRE-commits] r4219 - trunk/redmine/debian/patches
Jérémy Lal
kapouer-guest at alioth.debian.org
Mon Oct 5 00:07:25 UTC 2009
Author: kapouer-guest
Date: 2009-10-05 00:07:23 +0000 (Mon, 05 Oct 2009)
New Revision: 4219
Added:
trunk/redmine/debian/patches/03_session_path.patch
Log:
Session cookie path did not respect RAILS_RELATIVE_URL_ROOT
Added: trunk/redmine/debian/patches/03_session_path.patch
===================================================================
--- trunk/redmine/debian/patches/03_session_path.patch (rev 0)
+++ trunk/redmine/debian/patches/03_session_path.patch 2009-10-05 00:07:23 UTC (rev 4219)
@@ -0,0 +1,14 @@
+By default, _redmine_session cookie path is /
+This patch sets the path to ENV['RAILS_RELATIVE_URL_ROOT'], so that
+multiple instances of redmine have distinct session cookies in any case.
+diff -Nur redmine-0.9.0~svn2903/lib/tasks/initializers.rake redmine-0.9.0~svn2903.new/lib/tasks/initializers.rake
+--- redmine-0.9.0~svn2903/lib/tasks/initializers.rake 2009-02-21 12:04:50.000000000 +0100
++++ redmine-0.9.0~svn2903.new/lib/tasks/initializers.rake 2009-10-04 23:40:41.963650176 +0200
+@@ -17,6 +17,7 @@
+ # you'll be exposed to dictionary attacks.
+ ActionController::Base.session = {
+ :session_key => '_redmine_session',
++ :session_path => ENV['RAILS_RELATIVE_URL_ROOT'],
+ :secret => '#{secret}'
+ }
+ EOF
More information about the Pkg-ruby-extras-commits
mailing list