From 3bfcd1436a769af4a7c7ad49960c9cd874585e8c Mon Sep 17 00:00:00 2001
From: Nick Bessin <68278780+SinNeax@users.noreply.github.com>
Date: Tue, 8 Feb 2022 15:55:58 +0100
Subject: [PATCH] Set force_ssl=true (#268)

Co-authored-by: NikkelM <nikkel.mollenhauer@student.hpi.de>
---
 config/environments/production.rb | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/config/environments/production.rb b/config/environments/production.rb
index 4514ca08..feb8193a 100644
--- a/config/environments/production.rb
+++ b/config/environments/production.rb
@@ -47,7 +47,7 @@
   # config.action_cable.allowed_request_origins = [ 'http://example.com', /http:\/\/example.*/ ]
 
   # Force all access to the app over SSL, use Strict-Transport-Security, and use secure cookies.
-  # config.force_ssl = true
+  config.force_ssl = true
 
   # Include generic and useful information about system operation, but avoid logging too much
   # information to avoid inadvertent exposure of personally identifiable information (PII).