Skip to content
This repository has been archived by the owner on Jan 17, 2023. It is now read-only.

Add SameSite to cookies #2187

Closed
ianb opened this issue Feb 21, 2017 · 1 comment
Closed

Add SameSite to cookies #2187

ianb opened this issue Feb 21, 2017 · 1 comment
Labels
good first issue
Milestone
General Release 55

Comments

@ianb
Copy link
Contributor

ianb commented Feb 21, 2017

Per this article we might want the SameSize=lax rule on our cookies as a CSRF protection.

I realize for instance that our delete button is pretty CSRF-attackable.
@ckprice ckprice added this to the Page Shot in 54 milestone Mar 1, 2017
@cecilebertin
Copy link
Collaborator

Hi @ianb,
I would like to work on this.

cecilebertin added a commit to cecilebertin/screenshots-pageshot that referenced this issue Mar 28, 2017
@cecilebertin
Add SameSite to cookies mozilla-services#2187
6fd75c3
@ianb ianb closed this as completed in ee9a158 Mar 28, 2017
# for free to subscribe to this conversation on GitHub. Already have an account? #.
Assignees
No one assigned
Labels
good first issue
Projects
None yet
Milestone
General Release 55
Development

No branches or pull requests
3 participants
@ianb @ckprice @cecilebertin