Untrack secret_key_base

Question

Untrack secret_key_base

Closed this issue 11 years ago · 3 comments

If you happen to share your code publicly, make sure your secret_key_base value is kept private. (http://markdblackwell.blogspot.com/2013/06/ongoing-open-source-rails-secrettoken.html)

Answer 1 · 2013-07-03T21:56:30.000Z

I use the rails cache session strore instead of signed cookies for this exact reason. Despite this, config.secret_key_base is still required.

I am however looking for a nice way to setup my database.yml and still be able to deploy from my public repo. I fear I might have to go via the chef/puppet route.

Answer 2 · 2013-07-03T21:59:30.000Z

What about copying your database.yml into shared/config (capistrano-style) and then symlink the file after deploy:update_code? I tried that and it seems to work.

Answer 3 · 2013-07-17T05:49:26.000Z

Fixed with deae4a3