Action Dispatch AssumeSSL

When proxying through a load balancer that terminates SSL, the forwarded request will appear as though it’s HTTP instead of HTTPS to the application. This makes redirects and cookie security target HTTP instead of HTTPS. This middleware makes the server assume that the proxy already terminated SSL, and that the request really is HTTPS.

Methods

Class Public methods

new(app)

πŸ“ Source code
# File actionpack/lib/action_dispatch/middleware/assume_ssl.rb, line 14
    def initialize(app)
      @app = app
    end
πŸ”Ž See on GitHub

Instance Public methods

call(env)

πŸ“ Source code
# File actionpack/lib/action_dispatch/middleware/assume_ssl.rb, line 18
    def call(env)
      env["HTTPS"] = "on"
      env["HTTP_X_FORWARDED_PORT"] = "443"
      env["HTTP_X_FORWARDED_PROTO"] = "https"
      env["rack.url_scheme"] = "https"

      @app.call(env)
    end
πŸ”Ž See on GitHub