htwkmooc/codeocean
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Use SameSite strict for cookies

Browse Source
This commit is contained in:
Sebastian Serth
2022-09-02 19:08:01 +02:00
parent 0a16f589e9
commit fe41d44548
1 changed files with 2 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
config/initializers/session_store.rb
View File

@ -6,4 +6,5 @@ Rails.application.config.session_store :cookie_store,
key: '_code_ocean_session', key: '_code_ocean_session',
expire_after: 1.month, expire_after: 1.month,
secure: Rails.env.production? || Rails.env.staging?, secure: Rails.env.production? || Rails.env.staging?,
path: Rails.application.config.relative_url_root path: Rails.application.config.relative_url_root,
same_site: :strict