mirror of
https://github.com/YunoHost/SSOwat.git
synced 2024-09-03 20:06:27 +02:00
Merge pull request #103 from frju365/patch-1
[fix] Secure cookie setting
This commit is contained in:
commit
b68ebc04c7
1 changed files with 9 additions and 3 deletions
12
helpers.lua
12
helpers.lua
|
@ -146,7 +146,9 @@ function set_auth_cookie(user, domain)
|
|||
local cookie_str = "; Domain=."..domain..
|
||||
"; Path=/"..
|
||||
"; Expires="..os.date("%a, %d %b %Y %X UTC;", expire)..
|
||||
"; Secure"
|
||||
"; Secure"..
|
||||
"; HttpOnly"..
|
||||
"; SameSite=Strict"
|
||||
|
||||
ngx.header["Set-Cookie"] = {
|
||||
"SSOwAuthUser="..user..cookie_str,
|
||||
|
@ -165,7 +167,9 @@ function delete_cookie()
|
|||
local cookie_str = "; Domain=."..domain..
|
||||
"; Path=/"..
|
||||
"; Expires="..expired_time..
|
||||
"; Secure"
|
||||
"; Secure"..
|
||||
"; HttpOnly"..
|
||||
"; SameSite=Strict"
|
||||
ngx.header["Set-Cookie"] = {
|
||||
"SSOwAuthUser="..cookie_str,
|
||||
"SSOwAuthHash="..cookie_str,
|
||||
|
@ -180,7 +184,9 @@ function delete_redirect_cookie()
|
|||
local expired_time = "Thu, 01 Jan 1970 00:00:00 UTC;"
|
||||
local cookie_str = "; Path="..conf["portal_path"]..
|
||||
"; Expires="..expired_time..
|
||||
"; Secure"
|
||||
"; Secure"..
|
||||
"; HttpOnly"..
|
||||
"; SameSite=Strict"
|
||||
ngx.header["Set-Cookie"] = "SSOwAuthRedirect=;" ..cookie_str
|
||||
end
|
||||
|
||||
|
|
Loading…
Reference in a new issue