Skip to content
This repository has been archived by the owner on Jan 17, 2023. It is now read-only.

Add SameSite to cookies #2187

Closed
ianb opened this issue Feb 21, 2017 · 1 comment
Closed

Add SameSite to cookies #2187

ianb opened this issue Feb 21, 2017 · 1 comment
Labels
good first issue
Milestone
General Release 55

Comments

@ianb
Copy link
Contributor

ianb commented Feb 21, 2017

Per this article we might want the SameSize=lax rule on our cookies as a CSRF protection.

I realize for instance that our delete button is pretty CSRF-attackable.
@ckprice ckprice added this to the Page Shot in 54 milestone Mar 1, 2017
@cecilebertin
Copy link
Collaborator

Hi @ianb,
I would like to work on this.

cecilebertin added a commit to cecilebertin/screenshots-pageshot that referenced this issue Mar 28, 2017
@cecilebertin
Add SameSite to cookies mozilla-services#2187
6fd75c3
@ianb ianb closed this as completed in ee9a158 Mar 28, 2017
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
good first issue
Projects
None yet
Milestone
General Release 55
Development

No branches or pull requests
3 participants
@ianb @ckprice @cecilebertin