add session secret as env varx

2016-04-06 15:42:01 +00:00
parent c0f3ed1ce0
commit 09624e3796
1 changed files with 1 additions and 1 deletions
@@ -104,7 +104,7 @@ module.exports =
 	# If provided, a sessionSecret is used to sign cookies so that they cannot be
 	# spoofed. This is recommended.
 	security:
-		sessionSecret: "CRYPTO_RANDOM" # This was randomly generated for you
+		sessionSecret: process.env["SHARELATEX_SESSION_SECRET"] or "CRYPTO_RANDOM" # This was randomly generated for you

 	# These credentials are used for authenticating api requests
 	# between services that may need to go over public channels