hedgedoc

mirror of https://github.com/hedgedoc/hedgedoc.git synced 2024-10-19 05:40:16 -04:00

History

David Mehren faa10da86b Set all cookies with sameSite: strict Modern browsers do not support (or will stop supporting) sameSite: none (or no sameSite attribute) without the Secure flag. As we don't want everyone to be able to make requests with our cookies anyway, this commit sets sameSite to strict. See https://developer.mozilla.org/de/docs/Web/HTTP/Headers/Set-Cookie/SameSite Signed-off-by: David Mehren <dmehren1@gmail.com>	2020-07-10 18:40:56 +08:00
..
lib	Set all cookies with sameSite: strict	2020-07-10 18:40:56 +08:00
test	ESLint fixes for tests 🚨	2020-05-22 21:48:15 +02:00

David Mehren faa10da86b Set all cookies with sameSite: strict

Modern browsers do not support (or will stop supporting) sameSite: none (or no sameSite attribute) without the Secure flag. As we don't want everyone to be able to make requests with our cookies anyway, this commit sets sameSite to strict. See https://developer.mozilla.org/de/docs/Web/HTTP/Headers/Set-Cookie/SameSite

Signed-off-by: David Mehren <dmehren1@gmail.com>

2020-07-10 18:40:56 +08:00

lib

Set all cookies with sameSite: strict

2020-07-10 18:40:56 +08:00

test

ESLint fixes for tests 🚨

2020-05-22 21:48:15 +02:00