external/aurweb
0
0
Fork 0
mirror of https://gitlab.archlinux.org/archlinux/aurweb.git synced 2025-02-03 10:43:03 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions

fix: Use SameSite=Lax on cookies

Browse source
This commit is contained in:
Joakim Saario 2022-08-18 18:35:25 +02:00
parent fb1fb2ef3b
commit f10732960c
No known key found for this signature in database
GPG key ID: D8B76D271B7BD453
3 changed files with 50 additions and 14 deletions
Download patch file Download diff file Expand all files Collapse all files

2
doc/web-auth.md
View file

@ -17,7 +17,7 @@ in the following ways:
- `options.disable_http_login: 0`
- [Samesite=LAX](https://developer.mozilla.org/en-US/docs/Web/HTTP/Cookies#samesite_attribute), Max-Age
- `options.disable_http_login: 1`
- [Secure, HttpOnly](https://developer.mozilla.org/en-US/docs/Web/HTTP/Cookies#restrict_access_to_cookies), [Samesite=Strict](https://developer.mozilla.org/en-US/docs/Web/HTTP/Cookies#samesite_attribute), Max-Age
- [Samesite=LAX](https://developer.mozilla.org/en-US/docs/Web/HTTP/Cookies#samesite_attribute), [Secure, HttpOnly](https://developer.mozilla.org/en-US/docs/Web/HTTP/Cookies#restrict_access_to_cookies)
### Max-Age