Y
Hacker News
new
|
ask
|
show
|
jobs
by
epochwolf
4624 days ago
Cookie store has always been signed and in rails 4 it's encrypted.
1 comments
willvarfar
4624 days ago
Very sloppy it wasn't encrypted from day 1 imo.
link
rimantas
4624 days ago
Day 1 was eight years ago. Care to tell which popular web frameworks did that then?
link
mgkimsal
4624 days ago
most popular web frameworks don't put data in the cookie, signed or not. yes it introduces different problems, but avoids this one.
link