Forum: Ruby on Rails Rack::SSL

Announcement (2017-05-07): is now read-only since I unfortunately do not have the time to support and maintain the forum any more. Please see and for other Rails- und Ruby-related community platforms.
Jesse Knutsen (Guest)
on 2013-01-09 23:42
(Received via mailing list)
Hey All,

I have set up our site for https only using rack::ssl.

I also used it to secure our app's cookies.

# Enable SSL with secure cookies
   config.middleware.insert_before ActionDispatch::Cookies, Rack::SSL

however, there is one cookie that is set by a browser technology that we
will be sometimes using in our system that is never https_only. It seems
that now that our cookies are secured this cookie is unreadable by the

Does anyone have any idea how I can force the reading of a insecure
cookie given this config?
This topic is locked and can not be replied to.