forks/miniflux
1
0
Fork 0
Code Releases Activity

Set cookie attribute SameSite to strict mode

Browse source
This commit is contained in:
Frédéric Guillot 2018-08-29 21:09:42 -07:00
parent 6137b401ee
commit 88e81d4d80
1 changed files with 2 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
http/cookie/cookie.go
View file

@ -27,6 +27,7 @@ func New(name, value string, isHTTPS bool, path string) *http.Cookie {
Secure: isHTTPS, Secure: isHTTPS,
HttpOnly: true, HttpOnly: true,
Expires: time.Now().Add(cookieDuration * 24 * time.Hour), Expires: time.Now().Add(cookieDuration * 24 * time.Hour),
SameSite: http.SameSiteStrictMode,
} }
} }
@ -40,6 +41,7 @@ func Expired(name string, isHTTPS bool, path string) *http.Cookie {
HttpOnly: true, HttpOnly: true,
MaxAge: -1, MaxAge: -1,
Expires: time.Date(1970, 1, 1, 0, 0, 0, 0, time.UTC), Expires: time.Date(1970, 1, 1, 0, 0, 0, 0, time.UTC),
SameSite: http.SameSiteStrictMode,
} }
} }