Not sure where to patch this, but: config.force_ssl should be inactive for tor hidden services (for those, ssl can if anything be worse).
Any suggestions? One way to do it would be to check for whether the TLD is .onion. There may be some gotchas with e.g. cookies or similar bits, for sites that operate both as HTTPS and Tor hidden service (which is what I'm trying to set up). - Sai -- You received this message because you are subscribed to the Google Groups "Ruby on Rails: Core" group. To view this discussion on the web visit https://groups.google.com/d/msg/rubyonrails-core/-/TXMVnIqgiaUJ. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/rubyonrails-core?hl=en.
