altf4arnold/datatracker
1
0
Fork 0
Code Issues Pull requests Actions 3 Packages Projects Releases Wiki Activity

Added secure=True, samesite='None' for user preference cookies, to play well with recent changes in browser cookie handling.

Browse source 
- Legacy-Id: 18356
This commit is contained in:
Henrik Levkowetz 2020-08-12 13:08:17 +00:00
parent c5729d5c5d
commit dd09b70850
1 changed files with 2 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

3
ietf/cookies/views.py
View file

@ -36,7 +36,8 @@ def preferences(request, **kwargs):
request.COOKIES.update(preferences)
response = render(request, "cookies/settings.html", preferences )
for key in new_cookies:
response.set_cookie(key, new_cookies[key], settings.PREFERENCES_COOKIE_AGE)
response.set_cookie(key, new_cookies[key],
max_age=settings.PREFERENCES_COOKIE_AGE, secure=True, samesite='None')
for key in del_cookies:
response.delete_cookie(key)
return response