Configuring Phoenix apps: Two small adjustments with big effects
· 9 min read
Showcasing two small techniques that improve your happiness when working with Phoenix application configuration.
When debugging (or during security audits) it may be handy to know which data exactly is encoded in a session cookie. This is especially important because authentication frameworks like guardian store authentication secrets in sessions and we need to know they are stored securely. For the Phoenix web framework session cookies are encoded in a special format. In this post we follow Phoenix’ cookie storage implementation to find out how sessions are encoded.