In Rails 3.1 I am using force_ssl when authenticating. This seems to cause a

Question

0

Asked: June 3, 20262026-06-03T06:20:59+00:00 2026-06-03T06:20:59+00:00

In Rails 3.1 I am using force_ssl when authenticating. This seems to cause a

0

In Rails 3.1 I am using force_ssl when authenticating. This seems to cause a problem when I have a redirect uri appended as a query string because it is stripped in the http -> https protocol switch. If I start on https protocol the query string stays intact and the redirect happens just fine.

Any ideas on how to preserve query strings through the force_ssl protocol switch?

Report

Leave an answer
Cancel reply

You must login to add an answer.

Need An Account,

1 Answer

Editorial Team · Answer 1 · 2026-06-03T06:21:01+00:00

Editorial Team

2026-06-03T06:21:01+00:00Added an answer on June 3, 2026 at 6:21 am

The latest version of rails has it fixed https://github.com/rmm5t/rails/commit/391e6a47dbd46fdce0a472819e8d27792cc91984

If you have to use Rails 3.1 you will have to create your own force ssl before filter

before_filter :check_ssl

def check_ssl
  redirect_to({:protocol => 'https'}.merge(params), :flash => flash) unless request.ssl?
end

0

Reply
Share
Share

- Report

Sign Up

Sign In

Forgot Password

The Archive Base Latest Questions

In Rails 3.1 I am using force_ssl when authenticating. This seems to cause a

Leave an answerCancel reply

1 Answer

Leave an answer
Cancel reply