Session-only cookie corruption in Ruby web apps | perlkourRack and Rails have a cookie monster. Browsers place limits on the number and size of cookies present for a domain or in a response. If you exceed these limits, Bad Things can happen. Rack and Rails try to prevent this in the obvious cases, but this post describes what they get wrong in their current implementations. We’ll also review the potential impact of—and how you can mitigate—this type of i
Rails 5.2 adds expiry option for signed and encrypted cookies and adds relative expiry time | BigBinary Blog
Rails で (Rack の) セッション情報を Cookie に保存する仕組み - Qiita
