Skip to content

Commit

Permalink
🔧[#45] add session and CSRF samesite option
Browse files Browse the repository at this point in the history
  • Loading branch information
@Coperh
Coperh committed Aug 13, 2024
1 parent 44eb847 commit a49870b
Showing 1 changed file with 2 additions and 0 deletions.
2 changes: 2 additions & 0 deletions open_api_framework/conf/base.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -416,8 +416,10 @@
#
SESSION_COOKIE_SECURE = IS_HTTPS
SESSION_COOKIE_HTTPONLY = True
SESSION_COOKIE_SAMESITE = config("SESSION_COOKIE_SAMESITE", "Strict")

CSRF_COOKIE_SECURE = IS_HTTPS
CSRF_COOKIE_SAMESITE = config("CSRF_COOKIE_SAMESITE", "Strict")

X_FRAME_OPTIONS = "DENY"

Expand Down

0 comments on commit a49870b

Please sign in to comment.