lib/gatleon/rails/authform/concern.rb in gatleon-rails-0.3.0 vs lib/gatleon/rails/authform/concern.rb in gatleon-rails-0.3.1
- old
+ new
@@ -33,9 +33,15 @@
uri = URI("#{_authform_base_url}/v1/exchangeUserVoucherForUser/#{params[:_authformUserVoucher]}")
response = Net::HTTP.get_response(uri)
if response.code.to_i == 200
+ # First attempt WITHOUT all - for setting on platforms like heroku that deny setting cookies across all subdomains
+ cookies[_authform_user_cookie_key] = {
+ value: response.body
+ }
+
+ # Then set all - desired behavior for hosting your own domain
cookies[_authform_user_cookie_key] = {
value: response.body,
domain: :all
}
end