Heroku Security Setup #2

.gitignore

@@ -22,7 +22,7 @@ rerun.txt
 pickle-email-*.html
 
 # Secrets
-config/initializers/secret_token.rb
+config/secrets.yml
 
 ## Environment normalisation:
 /.bundle

config/application.rb

@@ -15,9 +15,6 @@ class Application < Rails::Application
 		# Fallback to assets pipeline if a precompiled asset is missed.
 		config.assets.compile = true
 
-		# Heroku: prevent app from starting up during precompilation...
-		config.assets.initialize_on_precompile = false
-
 		# Settings in config/environments/* take precedence over those specified here.
 		# Application configuration should go into files in config/initializers
 		# -- all .rb files in that directory are automatically loaded.

config/initializers/secret_token.rb

@@ -0,0 +1,5 @@
+Rails.application.config.secret_key_base = if Rails.env.development? or Rails.env.test?
+  ('x' * 30) # meets minimum requirement of 30 chars long
+else
+  ENV['SECRET_KEY_BASE']
+end