use encrypted cookies on new installations

lib/capistrano/tasks/deploy_initial.cap

@@ -70,7 +70,7 @@ namespace :deploy do
       require 'securerandom'
       on roles(:app), in: :groups do
         secret = SecureRandom.hex(64)
-        text = "Foodsoft::Application.config.secret_token = \"#{secret}\""
+        text = "Foodsoft::Application.config.secret_key_base = \"#{secret}\""
         execute :mkdir, '-p', shared_path.join("config/initializers")
         upload! StringIO.new(text), shared_path.join("config/initializers/secret_token.rb")
       end

lib/tasks/foodsoft_setup.rake

@@ -106,7 +106,7 @@ def setup_secret_token
   puts yellow "Generating secret_token and writing to #{file}..."
   Rake::Task["secret"].reenable
   secret = capture_stdout { Rake::Task["secret"].invoke }
-  %x( touch #{Rails.root.join("#{file}")}; echo 'Foodsoft::Application.config.secret_token = "#{secret.chomp}"' > #{Rails.root.join("#{file}")} )
+  %x( touch #{Rails.root.join("#{file}")}; echo 'Foodsoft::Application.config.secret_key_base = "#{secret.chomp}"' > #{Rails.root.join("#{file}")} )
 end
 
 def start_mailcatcher

lib/token_verifier.rb

@@ -31,7 +31,8 @@ class TokenVerifier < ActiveSupport::MessageVerifier
   protected
 
   def self.secret
-    Foodsoft::Application.config.secret_token
+    # secret_key_base for Rails 4, but Rails 3 initializer may still be used
+    Foodsoft::Application.config.secret_key_base or Foodsoft::Application.config.secret_token
   end
 
 end