Merge remote-tracking branch 'sec_fixes/cookies_improvement'

2024-12-01 05:49:58 +00:00 · 2020-05-10 10:22:21 +02:00 · 2020-05-10 10:22:21 +02:00 · f33e25ac40
commit f33e25ac40
parent 51365ab006 bf166b757a
1 changed files with 6 additions and 0 deletions
--- a/cps/init.py
+++ b/cps/init.py
@ -56,6 +56,12 @@ mimetypes.add_type('application/ogg', '.ogg')
 mimetypes.add_type('application/ogg', '.oga')
 app = Flask(__name__)
 app.config.update(
    SESSION_COOKIE_HTTPONLY=True,
    SESSION_COOKIE_SAMESITE='Lax',
    REMEMBER_COOKIE_SAMESITE='Lax',
 )
 lm = LoginManager()
 lm.login_view = 'web.login'