diff options
| author | Go MAEDA <maeda@farend.jp> | 2021-05-27 08:31:15 +0000 |
|---|---|---|
| committer | Go MAEDA <maeda@farend.jp> | 2021-05-27 08:31:15 +0000 |
| commit | 099b160d1183aea02612906530a4fae93c72d557 (patch) | |
| tree | 87d344eed24e119f271d0345f53762a4f7020292 /app/controllers | |
| parent | 8b8a1194ff84fd2ad01e616a3b296ed158d8d23c (diff) | |
| download | redmine-099b160d1183aea02612906530a4fae93c72d557.tar.gz redmine-099b160d1183aea02612906530a4fae93c72d557.zip | |
Add SameSite=Lax to cookies to fix warnings in web browsers (#35226).
Patch by Go MAEDA.
git-svn-id: http://svn.redmine.org/redmine/trunk@21009 e93f8b46-1217-0410-a6f0-8f06a7374b81
Diffstat (limited to 'app/controllers')
| -rw-r--r-- | app/controllers/account_controller.rb | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/app/controllers/account_controller.rb b/app/controllers/account_controller.rb index c6d13d417..e1b3d4f2b 100644 --- a/app/controllers/account_controller.rb +++ b/app/controllers/account_controller.rb @@ -404,6 +404,7 @@ class AccountController < ApplicationController :value => token, :expires => 1.year.from_now, :path => (Redmine::Configuration['autologin_cookie_path'] || RedmineApp::Application.config.relative_url_root || '/'), + :same_site => :lax, :secure => secure, :httponly => true } |