aboutsummaryrefslogtreecommitdiff
path: root/lib/pleroma/web/endpoint.ex
diff options
context:
space:
mode:
authorshibayashi <shibayashi@cypherpunk.observer>2018-08-28 00:40:58 +0200
committershibayashi <shibayashi@cypherpunk.observer>2018-08-28 00:40:58 +0200
commitb9a642da1ec290386d04245eb17175866e40308c (patch)
treec9a6b0195563e30ce32c73ca591b4762337ecba6 /lib/pleroma/web/endpoint.ex
parent5ffaa2bf69679f118af9736d62535cc4eb870709 (diff)
downloadpleroma-b9a642da1ec290386d04245eb17175866e40308c.tar.gz
Add Secure and SameSite cookie flags
Diffstat (limited to 'lib/pleroma/web/endpoint.ex')
-rw-r--r--lib/pleroma/web/endpoint.ex4
1 files changed, 3 insertions, 1 deletions
diff --git a/lib/pleroma/web/endpoint.ex b/lib/pleroma/web/endpoint.ex
index cbedca004..e81bc75b6 100644
--- a/lib/pleroma/web/endpoint.ex
+++ b/lib/pleroma/web/endpoint.ex
@@ -49,7 +49,9 @@ defmodule Pleroma.Web.Endpoint do
Plug.Session,
store: :cookie,
key: "_pleroma_key",
- signing_salt: "CqaoopA2"
+ signing_salt: "CqaoopA2",
+ secure: Application.get_env(:pleroma, Pleroma.Web.Endpoint) |> Keyword.get(:secure_cookie_flag),
+ extra: "SameSite=Lax"
)
plug(Pleroma.Web.Router)
generated by cgit v1.2.3 (git 2.26.2) at 2025-04-25 05:13:24 +0000