会话cookie [英] session cookie httponly false rails 3.1

问题描述

我试图关闭httponly用于phonegap。我使用rails 3.1和设计，每个都报告（但没有记录）的方法，这些都没有工作：

I'm trying to turn httponly off for use in phonegap. I'm useing rails 3.1 and devise, each of which have reported (but not documented) ways of doing this, none of which work:

# application.rb
config.session_options = { :httponly => false } # no effect
config.session = { :httponly => false } # undefined method `session='


# devise.rb
config.cookie_options = { :httponly => false } # also no effect

测试我重新启动服务器，删除了现有的cookie，页。 'http'列仍在Chrome调试器中检查。

to test I restarted the server, deleted the existing cookie, and reloaded the page. 'Http' column was still checked in the chrome debugger.

帮助！

推荐答案

这个小代码片段似乎有效：

This little snippet seems to work :

Testapp::Application.config.session_store :cookie_store, key: '_testapp_session', :domain => :all, :httponly => false

这篇关于会话cookie的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！