Titan session cookies set samesite to None

2024-11-12 17:11:20 +01:00 · 2020-03-19 12:43:32 -07:00 · 2020-03-19 12:43:32 -07:00 · d43d015527
commit d43d015527
parent e2f8189ec1
2 changed files with 3 additions and 1 deletions
--- a/requirements.txt
+++ b/requirements.txt
@ -10,9 +10,10 @@ asyncio_extras
 kombu
 redis
 aioredis
-Flask-Babel
+Flask-Babel>=1.0.0
 patreon
 flask-redis
 sqlalchemy
 asyncio_redis
 raven[flask]
+Werkzeug>=1.0.0
--- a/webapp/titanembeds/app.py
+++ b/webapp/titanembeds/app.py
@ -38,6 +38,7 @@ app.config['RATELIMIT_STORAGE_URL'] = config["redis-uri"]
 app.config['PERMANENT_SESSION_LIFETIME'] = timedelta(days=3)
 app.config['REDIS_URL'] = config["redis-uri"]
 app.config['MAX_CONTENT_LENGTH'] = 4 * 1024 * 1024 # Limit upload size to 4mb
+app.config['SESSION_COOKIE_SAMESITE'] = "None"
 app.secret_key = config['app-secret']

 #sentry.init_app(app)