From a21672c4aadece82f43531b581a1c9d2c872317f Mon Sep 17 00:00:00 2001
From: Netali <me@netali.de>
Date: Sat, 8 May 2021 07:38:33 +0200
Subject: [PATCH] added cookie security stuff

---
 flaskapp/app.py | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/flaskapp/app.py b/flaskapp/app.py
index 80b3f9e..c72921a 100644
--- a/flaskapp/app.py
+++ b/flaskapp/app.py
@@ -21,6 +21,9 @@ def set_session_timeout():
 
 def configure_app(app):
     app.secret_key = secret['secret_key']
+    app.config['SESSION_COOKIE_SECURE'] = True
+    app.config['SESSION_COOKIE_HTTPONLY'] = True
+    app.config['SESSION_COOKIE_SAMESITE'] = 'Lax'
 
 
 def init_jinja(app):