mirror of
https://github.com/go-gitea/gitea
synced 2025-08-12 04:28:21 +00:00
Support secure cookie for csrf-token (#3839)
* dep: Update github.com/go-macaron/csrf Update github.com/go-macaron/csrf with dep to revision 503617c6b372 to fix issue of csrf-token security. This update includes following commits: - Add support for the Cookie HttpOnly flag - Support secure mode for csrf cookie Signed-off-by: Aleksandr Bulyshchenko <A.Bulyshchenko@globallogic.com> * routers: set csrf-token security depending on COOKIE_SECURE Signed-off-by: Aleksandr Bulyshchenko <A.Bulyshchenko@globallogic.com>
This commit is contained in:
Aleksandr Bulyshchenko
committed by
Lauris BH
Lauris BH
parent
31067c0a89
commit
ee878e3951
3
Gopkg.lock
generated
3
Gopkg.lock
generated
@@ -254,9 +254,10 @@
|
||||
revision = "8aa5919789ab301e865595eb4b1114d6b9847deb"
|
||||
|
||||
[[projects]]
|
||||
branch = "master"
|
||||
name = "github.com/go-macaron/csrf"
|
||||
packages = ["."]
|
||||
revision = "6a9a7df172cc1fcd81e4585f44b09200b6087cc0"
|
||||
revision = "503617c6b37257a55dff6293ec28556506c3a9a8"
|
||||
|
||||
[[projects]]
|
||||
branch = "master"
|
||||
|
||||
Reference in New Issue
Block a user