Mark cookies as sameSite=Strict

2021-05-19 18:08:26 +02:00
parent 4d9f554fe6
commit 312d9b7a6f
2 changed files with 3 additions and 2 deletions
--- a/app/src/cookies.rs
+++ b/app/src/cookies.rs
@@ -23,7 +23,7 @@ pub fn set_cookie(cookie_name: &str, value: &str, expiration: &DateTime<Utc>) ->
            d.dyn_into::<web_sys::HtmlDocument>()
                .map_err(|_| anyhow!("Document is not an HTMLDocument"))
        })?;
-    doc.set_cookie(&format!("{}={};expires={}", cookie_name, value, expiration))
+    doc.set_cookie(&format!("{}={};expires={};sameSite=Strict", cookie_name, value, expiration))
        .map_err(|_| anyhow!("Could not set cookie"))
 }