1
0
Fork 0
forked from fedi/mastodon
Commit graph

3 commits

Author SHA1 Message Date
Claire 21fb3f3684
Drop dependency on secure_headers, fix response headers ()
* Drop dependency on secure_headers, use always_write_cookie instead

* Fix cookies in Tor Hidden Services by moving configuration to application.rb

* Instead of setting always_write_cookie at boot, monkey-patch ActionDispatch
2021-02-11 23:47:05 +01:00
Cecylia Bocovich e79f8dd85c
Onion service related changes to HTTPS handling ()
* Enable secure cookie flag for https only

* Disable force_ssl for .onion hosts only

Co-authored-by: Aiden McClelland <me@drbonez.dev>
2021-02-11 04:40:13 +01:00
Eugen Rochko acc1c03861
Fix cookies not having a SameSite attribute () 2020-11-06 11:57:14 +01:00