Skip to content

Commit

Permalink
Use samesite none for return cookie
Browse files Browse the repository at this point in the history
  • Loading branch information
NHAS committed Jun 10, 2024
1 parent 950f8f8 commit 1b017da
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion internal/webserver/authenticators/init.go
Original file line number Diff line number Diff line change
Expand Up @@ -57,7 +57,7 @@ func IssueChallengeTokenCookie(w http.ResponseWriter, r *http.Request, challenge
Name: "challenge",
Value: challenge,
Expires: time.Now().Add(8 * time.Hour),
SameSite: http.SameSiteLaxMode,
SameSite: http.SameSiteNoneMode,
Secure: r.URL.Scheme == "https",
HttpOnly: false,
}
Expand Down

0 comments on commit 1b017da

Please sign in to comment.