Home/ Questions/Q 6128317
In Process

The Archive Base Latest Questions

Editorial Team
  • 0
Asked: 2026-05-23T16:36:48+00:00

I use the plugin authlogic for my rails application (rails 2). How the data

  • 0

I use the plugin authlogic for my rails application (rails 2).
How the data will be saved in the session via authlogic? It is safe enough?

For example, if I save session[:group_id] = 1 in it, it will be saved on the client PC in a cookie? If yes, how I can change the session-settings, so that It will be saved on the server side and not on client side ?

Do you have any hints, how I can save data in a safe modus, that survives several requests without using a cookie ?

Share

Leave an answer

You must login to add an answer.

Need An Account,

1 Answer

  1. Editorial Team

    You can choose where to store the session in your application:

    • CookieStore – Stores everything on the client.
    • DRBStore – Stores the data on a DRb client.
    • MemCacheStore – Stores the data in MemCache.
    • ActiveRecordStore – Stores the data in a database using ActiveRecord.

    In the config/environment.rb file:

    # Set to one of [:active_record_store, :drb_store, :mem_cache_store, :cookie_store]
config.action_controller.session_store = :active_record_store

    There is also an oficial guide on security when using sessions http://guides.rubyonrails.org/security.html#sessions

    • 0