Merge pull request #1 from thinkific/fix-cookie-compatibility-with-4.2

fix-cookie-compatibility-with-4.2
thinkific · Apr 5, 2019 · 067f4bc · 067f4bc
2 parents eced9b0 + 5ff2fe0
commit 067f4bc
Showing 1 changed file with 6 additions and 1 deletion.
diff --git a/lib/devise/strategies/rememberable.rb b/lib/devise/strategies/rememberable.rb
@@ -19,7 +19,12 @@ def valid?
       # the record in the database. If the attempt fails, we pass to another
       # strategy handle the authentication.
       def authenticate!
-        resource = mapping.to.serialize_from_cookie(*remember_cookie)
+        remember_cookie # sets the instance variable
+        if @remember_cookie.length > 2
+          # safe, on this version we only care about the first two values
+          @remember_cookie = @remember_cookie[0..1]
+        end
+        resource = mapping.to.serialize_from_cookie(*@remember_cookie)
 
         unless resource
           cookies.delete(remember_key)