added cookie security stuff
This commit is contained in:
parent
2505bf8b3a
commit
a21672c4aa
@ -21,6 +21,9 @@ def set_session_timeout():
|
||||
|
||||
def configure_app(app):
|
||||
app.secret_key = secret['secret_key']
|
||||
app.config['SESSION_COOKIE_SECURE'] = True
|
||||
app.config['SESSION_COOKIE_HTTPONLY'] = True
|
||||
app.config['SESSION_COOKIE_SAMESITE'] = 'Lax'
|
||||
|
||||
|
||||
def init_jinja(app):
|
||||
|
Loading…
Reference in New Issue
Block a user