Do not force ssl

6 months ago · c8d3b49aee
1 changed files with 1 additions and 1 deletions
--- a/config/environments/production.rb
+++ b/config/environments/production.rb
@ -38,7 +38,7 @@ Rails.application.configure do
  # config.assume_ssl = true

  # Force all access to the app over SSL, use Strict-Transport-Security, and use secure cookies.
-  config.force_ssl = true
+  # config.force_ssl = true

  # Skip http-to-https redirect for the default health check endpoint.
  # config.ssl_options = { redirect: { exclude: ->(request) { request.path == "/up" } } }