Add HTTPOnly and SameSite and fix filename export

author: André Oliveira <oliveira.andrerodrigues95@gmail.com> 2022-07-10 22:26:57 +0100
committer: André Oliveira <oliveira.andrerodrigues95@gmail.com> 2022-07-10 22:26:57 +0100
commit: 56d14310ee9855ec660a2dbf2f05ad0d78698ddc (patch)
tree: 1a09e4569dbcae422f7f37b83ec0c66eede3aef5
parent: Fix broken faq url [skip ci] (diff)
download: ferdium-server-56d14310ee9855ec660a2dbf2f05ad0d78698ddc.tar.gz
ferdium-server-56d14310ee9855ec660a2dbf2f05ad0d78698ddc.tar.zst
ferdium-server-56d14310ee9855ec660a2dbf2f05ad0d78698ddc.zip
4 files changed, 4 insertions, 4 deletions
diff --git a/app/Controllers/Http/DashboardController.js b/app/Controllers/Http/DashboardController.js
index e7c38c2..611cd4e 100644
--- a/app/Controllers/Http/DashboardController.js
+++ b/app/Controllers/Http/DashboardController.js
@@ -205,7 +205,7 @@ class DashboardController {
    return response
      .header('Content-Type', 'application/force-download')
-      .header('Content-disposition', 'attachment; filename=export.ferdi-data')
+      .header('Content-disposition', 'attachment; filename=export.ferdium-data')
      .send(exportData);
  }
diff --git a/config/app.js b/config/app.js
index 4d36c7b..30e44f0 100644
--- a/config/app.js
+++ b/config/app.js
@@ -235,7 +235,7 @@ module.exports = {
  */
  cookie: {
    httpOnly: true,
-    sameSite: false,
+    sameSite: true,
    path: '/',
    maxAge: 7200,
  },
diff --git a/config/session.js b/config/session.js
index bce28bd..b2174da 100644
--- a/config/session.js
+++ b/config/session.js
@@ -64,7 +64,7 @@ module.exports = {
  cookie: {
    httpOnly: true,
    path: '/',
-    sameSite: false,
+    sameSite: true,
  },
  /*
diff --git a/config/shield.js b/config/shield.js
index 5c1c5cd..9849d29 100644
--- a/config/shield.js
+++ b/config/shield.js
@@ -135,7 +135,7 @@ module.exports = {
    methods: ['POST', 'PUT', 'DELETE'],
    filterUris: [],
    cookieOptions: {
-      httpOnly: false,
+      httpOnly: true,
      sameSite: true,
      path: '/',
      maxAge: 7200,
author	André Oliveira <oliveira.andrerodrigues95@gmail.com>	2022-07-10 22:26:57 +0100
committer	André Oliveira <oliveira.andrerodrigues95@gmail.com>	2022-07-10 22:26:57 +0100
commit	56d14310ee9855ec660a2dbf2f05ad0d78698ddc (patch)
tree	1a09e4569dbcae422f7f37b83ec0c66eede3aef5
parent	Fix broken faq url [skip ci] (diff)
download	ferdium-server-56d14310ee9855ec660a2dbf2f05ad0d78698ddc.tar.gz ferdium-server-56d14310ee9855ec660a2dbf2f05ad0d78698ddc.tar.zst ferdium-server-56d14310ee9855ec660a2dbf2f05ad0d78698ddc.zip

diff --git a/app/Controllers/Http/DashboardController.js b/app/Controllers/Http/DashboardController.js index e7c38c2..611cd4e 100644 --- a/app/Controllers/Http/DashboardController.js +++ b/app/Controllers/Http/DashboardController.js
@@ -205,7 +205,7 @@ class DashboardController {
205		205
206	return response	206	return response
207	.header('Content-Type', 'application/force-download')	207	.header('Content-Type', 'application/force-download')
208	.header('Content-disposition', 'attachment; filename=export.ferdi-data')	208	.header('Content-disposition', 'attachment; filename=export.ferdium-data')
209	.send(exportData);	209	.send(exportData);
210	}	210	}
211		211


diff --git a/config/app.js b/config/app.js index 4d36c7b..30e44f0 100644 --- a/config/app.js +++ b/config/app.js
@@ -235,7 +235,7 @@ module.exports = {
235	*/	235	*/
236	cookie: {	236	cookie: {
237	httpOnly: true,	237	httpOnly: true,
238	sameSite: false,	238	sameSite: true,
239	path: '/',	239	path: '/',
240	maxAge: 7200,	240	maxAge: 7200,
241	},	241	},


diff --git a/config/session.js b/config/session.js index bce28bd..b2174da 100644 --- a/config/session.js +++ b/config/session.js
@@ -64,7 +64,7 @@ module.exports = {
64	cookie: {	64	cookie: {
65	httpOnly: true,	65	httpOnly: true,
66	path: '/',	66	path: '/',
67	sameSite: false,	67	sameSite: true,
68	},	68	},
69		69
70	/*	70	/*


diff --git a/config/shield.js b/config/shield.js index 5c1c5cd..9849d29 100644 --- a/config/shield.js +++ b/config/shield.js
@@ -135,7 +135,7 @@ module.exports = {
135	methods: ['POST', 'PUT', 'DELETE'],	135	methods: ['POST', 'PUT', 'DELETE'],
136	filterUris: [],	136	filterUris: [],
137	cookieOptions: {	137	cookieOptions: {
138	httpOnly: false,	138	httpOnly: true,
139	sameSite: true,	139	sameSite: true,
140	path: '/',	140	path: '/',
141	maxAge: 7200,	141	maxAge: 7200,