[Checkins] [zopefoundation/Zope] bc9144: Add support for optional 'SameSite' cookie attribu...
GitHub
noreply at github.com
Thu Sep 15 22:38:15 CEST 2016
Branch: refs/heads/master
Home: https://github.com/zopefoundation/Zope
Commit: bc91440b95ac57b68f4dfce0fe8d37f412e71b8d
https://github.com/zopefoundation/Zope/commit/bc91440b95ac57b68f4dfce0fe8d37f412e71b8d
Author: Cédric Le Ninivin <cedric.leninivin at tiolive.com>
Date: 2016-09-15 (Thu, 15 Sep 2016)
Changed paths:
M src/ZPublisher/HTTPResponse.py
M src/ZPublisher/tests/testHTTPResponse.py
Log Message:
-----------
Add support for optional 'SameSite' cookie attribute
As described in the definition document by the ietf:
https://tools.ietf.org/html/draft-west-first-party-cookies-07
"The 'SameSite' attribute allows servers to assert that a cookie
ought not to be sent along with cross-site requests. This assertion
allows user agents to mitigate the risk of cross-origin information
leakage, and provides some protection against cross-site request
forgery attacks."
Commit: e314d6c99363cff9442497d9ad86ec2eec85c079
https://github.com/zopefoundation/Zope/commit/e314d6c99363cff9442497d9ad86ec2eec85c079
Author: Cédric Le Ninivin <cedric.leninivin at tiolive.com>
Date: 2016-09-15 (Thu, 15 Sep 2016)
Changed paths:
M CHANGES.rst
M src/ZPublisher/HTTPResponse.py
Log Message:
-----------
Update CHANGES.rst and add explenation on SameSite cookie
Compare: https://github.com/zopefoundation/Zope/compare/740eb601fb96...e314d6c99363
More information about the checkins
mailing list