pgAdmin 4 commit: Set SESSION_COOKIE_SAMESITE='Lax' per Flask recommend

From: Dave Page <dpage(at)pgadmin(dot)org>
To: pgadmin-hackers(at)postgresql(dot)org
Subject: pgAdmin 4 commit: Set SESSION_COOKIE_SAMESITE='Lax' per Flask recommend
Date: 2018-05-09 13:04:53
Message-ID: E1fGOm5-0008Ap-Sl@gothos.postgresql.org
Views: Raw Message | Whole Thread | Download mbox | Resend email
Thread:
Lists: pgadmin-hackers

Set SESSION_COOKIE_SAMESITE='Lax' per Flask recommendation to prevents sending cookies with CSRF-prone requests from external sites, such as submitting a form. Fixes #3342

Branch
------
master

Details
-------
https://git.postgresql.org/gitweb?p=pgadmin4.git;a=commitdiff;h=a68dac97c4e7610beb65871aca25ead59bb849e0
Author: Murtuza Zabuawala <murtuza(dot)zabuawala(at)enterprisedb(dot)com>

Modified Files
--------------
web/config.py | 1 +
1 file changed, 1 insertion(+)

Browse pgadmin-hackers by date

  From Date Subject
Next Message Dave Page 2018-05-09 13:05:08 Re: [pgAdmin4] To make session cookie more secure (Server mode)
Previous Message Dave Page 2018-05-09 12:49:36 Re: [pgAdmin4][Patch] Feature #3270 Add support for running regression tests against Firefox