2021-02-12 00:47:05 +02:00
|
|
|
# frozen_string_literal: true
|
|
|
|
|
|
|
|
module ActionDispatch
|
|
|
|
module CookieJarExtensions
|
|
|
|
private
|
|
|
|
|
|
|
|
# Monkey-patch ActionDispatch to serve secure cookies to Tor Hidden Service
|
|
|
|
# users. Otherwise, ActionDispatch would drop the cookie over HTTP.
|
|
|
|
def write_cookie?(*)
|
2021-02-19 10:56:14 +02:00
|
|
|
request.host.end_with?('.onion') || super
|
2021-02-12 00:47:05 +02:00
|
|
|
end
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
|
|
|
ActionDispatch::Cookies::CookieJar.prepend(ActionDispatch::CookieJarExtensions)
|
2021-02-14 01:10:52 +02:00
|
|
|
|
|
|
|
module Rack
|
|
|
|
module SessionPersistedExtensions
|
|
|
|
def security_matches?(request, options)
|
2021-02-19 10:56:14 +02:00
|
|
|
request.host.end_with?('.onion') || super
|
2021-02-14 01:10:52 +02:00
|
|
|
end
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
|
|
|
Rack::Session::Abstract::Persisted.prepend(Rack::SessionPersistedExtensions)
|