Skip to content
This repository has been archived by the owner on Jan 17, 2023. It is now read-only.

Commit

Permalink
Merge pull request #2501 from cecilebertin/Fix-2187-Add-SameSite-to-c…
Browse files Browse the repository at this point in the history 
…ookies

Fix #2187 - Add SameSite to cookies
  • Loading branch information
@ianb
ianb committed Mar 28, 2017
2 parents f423208 + 6fd75c3 commit ee9a158
Showing 1 changed file with 2 additions and 2 deletions.
4 changes: 2 additions & 2 deletions server/src/server.js
View file
Original file line number Diff line number Diff line change
Expand Up @@ -563,8 +563,8 @@ function sendAuthInfo(req, res, params) {
let encodedAbTests = b64EncodeJson(userAbTests);
let keygrip = dbschema.getKeygrip();
let cookies = new Cookies(req, res, {keys: keygrip});
cookies.set("user", deviceId, {signed: true});
cookies.set("abtests", encodedAbTests, {signed: true});
cookies.set("user", deviceId, {signed: true, sameSite: 'lax'});
cookies.set("abtests", encodedAbTests, {signed: true, sameSite: 'lax'});
let authHeader = `${deviceId}:${keygrip.sign(deviceId)};abTests=${encodedAbTests}:${keygrip.sign(encodedAbTests)}`;
let responseJson = {
ok: "User created",
Expand Down

0 comments on commit ee9a158

Please sign in to comment.