Rails 7.1's config.assume_ssl for Rails 7.0

PabloC · May 5, 2023, 12:57pm

Is there a way to port the config.assume_ssl functionality from 7.1 alpha to 7.0.4.3? I’ve an app working well, and I woud like to incorporate only that feature to 7.0.4.3. Any help or idea on how to do it? Tks!

PabloC · May 5, 2023, 2:05pm

I guess, this is the code to implement this behaviour.

Lorin_Thwaits · May 6, 2023, 11:08am

Sure enough – that’s the stuff! You can add this to pretty much any older version of Rails by modifying your application.rb to look like this:

module TestApp
  class Application < Rails::Application
    # Initialize configuration defaults for originally generated Rails version.
    config.load_defaults 7.0

    # Configuration for the application, engines, and railties goes here.
    ...
    (all your other normal config settings and such)
    ...

    # After upgrading to Rails 7.1 or later, trade this out for:  config.assume_ssl = true
    ActiveSupport.on_load(:before_initialize) do |app|
      app.config.middleware.insert_before(::Rack::Sendfile, ::TestApp::AssumeSSL)
    end
  end

  class AssumeSSL
    def initialize(app)
      @app = app
    end

    def call(env)
      env["HTTPS"] = "on"
      env["HTTP_X_FORWARDED_PORT"] = 443
      env["HTTP_X_FORWARDED_PROTO"] = "https"
      env["rack.url_scheme"] = "https"

      @app.call(env)
    end
  end
end

Of course rename TestApp to your real application name.

After everything boots, the middleware stack (shown by running Rails.application.config.middleware) should have this sequence – note that AssumeSSL comes right before Rack::Sendfile:

Eager to hear how you get on!

PabloC · May 6, 2023, 11:35pm

thank you so much Lorin for taking the time to teach me! I will try it asap and come back to you

PabloC · May 7, 2023, 1:51am

Works great and also I learnt a lot. Thank you!

razorux · November 5, 2023, 8:56am

@Lorin_Thwaits, that worked perfectly!

For future viewers:

I copied the original source into lib/assume_ssl.rb.
In config/production.rb I added the import: require 'assume_ssl', and in the config block, I added:

ActiveSupport.on_load(:before_initialize) do |app|
    app.config.middleware.insert_before(::Rack::Sendfile, ActionDispatch::AssumeSSL)
  end

That did the trick.

Thanks!

AppleII717 · January 19, 2024, 10:39pm

Is this what makes my staging server, which is on port 80 hang up saying

couldn't find https://mystaging.server

when I try to access it?

I found I could get to /home with out any problem

Setting it to false and see what happens!

It works on port 80 setting to false - spent half a moringing wondering why upgrading to 7.1 killed my staging server. I think my 7.0 version had a different staging config.

Topic	Replies	Views
how to configure rails app on non default port 443 rubyonrails-talk	244	April 16, 2008
Help setting up RoR SSL on Bluehost rubyonrails-talk	109	February 20, 2008
enforce https for every page rubyonrails-talk	110	April 23, 2013
Config.assume_ssl - could not login to devise rubyonrails-talk	19	January 23, 2025
SSL on Rails 3 rubyonrails-talk	114	September 27, 2010

Rails 7.1's config.assume_ssl for Rails 7.0

Related topics

More Resources