11 Commits (8a549b44b600b9f2238870a3e7eb87bbb99b9a80)

Author SHA1 Message Date
Nick Schonning 96a8aa32ad Enable Rubocop Style/FrozenStringLiteralComment (#23793)
1 year ago
Eugen Rochko b7a6bba0b7 Fix cookies secure flag being set when served over Tor (#17992)
3 years ago
Claire 86f5fad111 Add Ruby 3.0 support (#16046)
4 years ago
Claire e47570388a Drop dependency on secure_headers, fix response headers (#15712)
4 years ago
Cecylia Bocovich 6c300f08e5 Onion service related changes to HTTPS handling (#15560)
4 years ago
Eugen Rochko b788e7eb6f Fix cookies not having a SameSite attribute (#15098)
4 years ago
Moritz Heiber f2cefd9d73 Disable Same-Site cookie implementation to fix SSO issues on WebKit browsers (#9819)
6 years ago
Sorin Davidoi 0b1c90bf88 feat(cookies): Use the same-site attribute to lax (#8626)
6 years ago
Naoki Kosaka 3bc13de62f Fix enforce HTTPS in production. (#6180)
7 years ago
Eugen Rochko e7035a4d39 Make cookies https-only if LOCAL_HTTPS is true, set X-Frame-Options to DENY,
8 years ago
Eugen Rochko 9c4856bdb1 Initial commit
9 years ago