]> git.proxmox.com Git - pve-http-server.git/commit
projects / pve-http-server.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 1e9befe) | patch
formatter/bootstrap: set SameSite attr of auth cookie to 'strict'
authorMax Carrara <m.carrara@proxmox.com>
Wed, 15 Mar 2023 16:26:29 +0000 (17:26 +0100)
committerThomas Lamprecht <t.lamprecht@proxmox.com>
Tue, 6 Jun 2023 15:12:55 +0000 (17:12 +0200)
commitded13125c2877c69ada65bd7d08fd6580eb4de7f
tree28bb273a371768ed61222fa4e4bf7b4b1f39f5betree
parent1e9befeb80d96b0249216a34908b260aa029eaeecommit | diff
formatter/bootstrap: set SameSite attr of auth cookie to 'strict'

This prohibits the cookie from being sent along in cross-site
sub-requests or when the user navigates to a different site.

Signed-off-by: Max Carrara <m.carrara@proxmox.com>
src/PVE/APIServer/Formatter.pm diff | blob | blame | history
src/PVE/APIServer/Formatter/Bootstrap.pm diff | blob | blame | history
PVE HTTP Server