- Force SSL for Rails
- Switch to encrypted_cookie_store
- Set session expire_after to 10 minutes
- Make sure that protect_from_forgery is set.
- Make sure passenger & nginx runs as nobody or a less privileged user.
- Double check uploads to make sure it is handling relative paths
- Use attr_accessible where it makes sense
- Filter all sensitive info from from logs
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| class SessionController | |
| before_filter :force_ssl, :only => :create | |
| # login | |
| def new | |
| end | |
| # login | |
| def create |
I hereby claim:
- I am vishnugopal on github.
- I am vishnugopal (https://keybase.io/vishnugopal) on keybase.
- I have a public key whose fingerprint is 1A82 C167 4C67 8AC4 E002 4574 15F2 DFE5 493E DE95
To claim this, I am signing this object:
vishnugopal
/ Pupilfirst Alumni Days Notes
Created
February 21, 2021 09:35
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Why work in a product based startup? | |
| * Learning over earning when you start off. Product-based startups have a lot of opportunity for focused growth. | |
| * Ride the wave: Most of the good companies you hear out there are product startups, so why do you want to join someplace else? | |
| * Follow your interest area, productivity, music, finance, et. al. | |
| * A more healthy environment for engineers: prioritising product growth over random customer decisions. | |
| Decisions you make as a CTO of a company |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Hello World |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Hello world |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Hello world3 |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Hello world |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Test 2 |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Hello world |