hj/pleroma
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity

Merge branch 'add-secure-and-samesite-cookie-flags' into 'develop'

Browse source 
Add Secure and SameSite cookie flags

See merge request pleroma/pleroma!302
This commit is contained in:
kaniini 2018-09-07 23:55:42 +00:00
commit 530561a091
2 changed files with 7 additions and 2 deletions
Download patch file Download diff file Expand all files Collapse all files

6
lib/pleroma/web/endpoint.ex
View file

@ -49,7 +49,11 @@ defmodule Pleroma.Web.Endpoint do
Plug.Session,
store: :cookie,
key: "_pleroma_key",
signing_salt: "CqaoopA2"
signing_salt: "CqaoopA2",
http_only: true,
secure:
Application.get_env(:pleroma, Pleroma.Web.Endpoint) |> Keyword.get(:secure_cookie_flag),
extra: "SameSite=Strict"
)
plug(Pleroma.Web.Router)