Set SameSite=Lax on session cookies.

https://web.dev/samesite-cookies-explained
2019-09-09 11:51:01 -05:00
parent 312606bf98
commit efca48ee96
1 changed files with 1 additions and 1 deletions
--- a/config/initializers/session_store.rb
+++ b/config/initializers/session_store.rb
@@ -1,3 +1,3 @@
 # Be sure to restart your server when you modify this file.

-Rails.application.config.session_store :cookie_store, key: '_danbooru2_session', domain: :all, tld_length: 2
+Rails.application.config.session_store :cookie_store, key: '_danbooru2_session', domain: :all, tld_length: 2, same_site: :lax