enforce-ssl 0.2.0 → 0.2.1
Sign up to get free protection for your applications and to get access to all the features.
@@ -13,7 +13,7 @@ module EnforceSsl
|
|
13
13
|
# use only if max_age is set and only in production mode since it
|
14
14
|
# needs a proper (not self-signed) certificate
|
15
15
|
if Rails.configuration.hsts_max_age && Rails.env == "production"
|
16
|
-
subdomain = Rails.configuration.hsts_include_sub_domains
|
16
|
+
subdomain = Rails.configuration.hsts_include_sub_domains == true ? " ; includeSubDomains" : ""
|
17
17
|
controller. response.headers['Strict-Transport-Security'] = "max-age=#{Rails.configuration.hsts_max_age.to_i}" + subdomain
|
18
18
|
|
19
19
|
end
|
@@ -17,7 +17,7 @@ module EnforceSsl
|
|
17
17
|
# use only if max_age is set and only in production mode since it
|
18
18
|
# needs a proper (not self-signed) certificate
|
19
19
|
if Rails.configuration.hsts_max_age && Rails.env == "production"
|
20
|
-
subdomain = Rails.configuration.hsts_include_sub_domains
|
20
|
+
subdomain = Rails.configuration.hsts_include_sub_domains == true ? " ; includeSubDomains" : ""
|
21
21
|
@headers['Strict-Transport-Security'] = "max-age=#{Rails.configuration.hsts_max_age.to_i}" + subdomain
|
22
22
|
|
23
23
|
end
|
metadata
CHANGED
@@ -5,8 +5,8 @@ version: !ruby/object:Gem::Version
|
|
5
5
|
segments:
|
6
6
|
- 0
|
7
7
|
- 2
|
8
|
-
-
|
9
|
-
version: 0.2.
|
8
|
+
- 1
|
9
|
+
version: 0.2.1
|
10
10
|
platform: ruby
|
11
11
|
authors:
|
12
12
|
- mkristian
|
@@ -14,7 +14,7 @@ autorequire:
|
|
14
14
|
bindir: bin
|
15
15
|
cert_chain: []
|
16
16
|
|
17
|
-
date: 2011-
|
17
|
+
date: 2011-04-07 00:00:00 +05:30
|
18
18
|
default_executable:
|
19
19
|
dependencies:
|
20
20
|
- !ruby/object:Gem::Dependency
|