Merge branch 'allow_user_http_in_ouath' into 'master'

Allow user to use http in ouath See merge request !1426

Merge branch 'allow_user_http_in_ouath' into 'master'
Allow user to use http in ouath See merge request !1426
cefe81b1 · Dmitriy Zaporozhets · 497f7be5 · e36334c7 · cefe81b1
Commit cefe81b1 authored Jan 23, 2015 by Dmitriy Zaporozhets
Show whitespace changes
Inline Side-by-side

Showing with 6 additions and 0 deletions

config/initializers/doorkeeper.rb config/initializers/doorkeeper.rb +6 -0

No files found.
--- a/config/initializers/doorkeeper.rb
+++ b/config/initializers/doorkeeper.rb
@@ -36,6 +36,12 @@ Doorkeeper.configure do
  # Issue access tokens with refresh token (disabled by default)
  use_refresh_token

+  # Forces the usage of the HTTPS protocol in non-native redirect uris (enabled
+  # by default in non-development environments). OAuth2 delegates security in
+  # communication to the HTTPS protocol so it is wise to keep this enabled.
+  #
+  force_ssl_in_redirect_uri false
+
  # Provide support for an owner to be assigned to each registered application (disabled by default)
  # Optional parameter :confirmation => true (default false) if you want to enforce ownership of
  # a registered application