Преглед на файлове

Revert "Set SameSite cookie attribute to Strict"

This reverts commit 5ac55518abe87ff871942c02c0cf0c536c6035d8.

Google Authentication doesn't work when Cookies are using strict mode.
Frédéric Guillot преди 6 години
родител
ревизия
c1e3783272
променени са 1 файла, в които са добавени 2 реда и са изтрити 2 реда
  1. 2 2
      http/cookie/cookie.go

+ 2 - 2
http/cookie/cookie.go

@@ -27,7 +27,7 @@ func New(name, value string, isHTTPS bool, path string) *http.Cookie {
 		Secure:   isHTTPS,
 		HttpOnly: true,
 		Expires:  time.Now().Add(cookieDuration * 24 * time.Hour),
-		SameSite: http.SameSiteStrictMode,
+		SameSite: http.SameSiteLaxMode,
 	}
 }
 
@@ -41,7 +41,7 @@ func Expired(name string, isHTTPS bool, path string) *http.Cookie {
 		HttpOnly: true,
 		MaxAge:   -1,
 		Expires:  time.Date(1970, 1, 1, 0, 0, 0, 0, time.UTC),
-		SameSite: http.SameSiteStrictMode,
+		SameSite: http.SameSiteLaxMode,
 	}
 }