From 6c93fbc516f85fa59fa165f130872d02262f4a28 Mon Sep 17 00:00:00 2001
From: Filipe Moreira <famoreira@gmail.com>
Date: Mon, 12 Mar 2012 21:19:58 +0100
Subject: [PATCH] Advise to keep secret token private

---
 .../code/getting_started/config/initializers/secret_token.rb    | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/railties/guides/code/getting_started/config/initializers/secret_token.rb b/railties/guides/code/getting_started/config/initializers/secret_token.rb
index b0c8ee23c1..f36ebdda18 100644
--- a/railties/guides/code/getting_started/config/initializers/secret_token.rb
+++ b/railties/guides/code/getting_started/config/initializers/secret_token.rb
@@ -4,4 +4,6 @@
 # If you change this key, all old signed cookies will become invalid!
 # Make sure the secret is at least 30 characters and all random,
 # no regular words or you'll be exposed to dictionary attacks.
+# Make sure your secret key is kept private
+# if you're sharing your code publicly.
 Blog::Application.config.secret_token = '685a9bf865b728c6549a191c90851c1b5ec41ecb60b9e94ad79dd3f824749798aa7b5e94431901960bee57809db0947b481570f7f13376b7ca190fa28099c459'