kevin/hypothetical
1
0
Fork 0
mirror of https://github.com/prurigro/hypothetical.git synced 2024-11-09 19:26:38 -05:00
Code Issues Projects Releases Packages Wiki Activity

Add Same-Site Cookies option to session.php

Browse source
This commit is contained in:
Kevin MacMartin 2017-09-26 12:03:25 -04:00
parent fa2595b531
commit 0bbb6c04db
1 changed files with 15 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

15
config/session.php
View file

@ -179,4 +179,19 @@ return [
'http_only' => false, 'http_only' => false,
/*
|--------------------------------------------------------------------------
| Same-Site Cookies
|--------------------------------------------------------------------------
|
| This option determines how your cookies behave when cross-site requests
| take place, and can be used to mitigate CSRF attacks. By default, we
| do not enable this as other CSRF protection services are in place.
|
| Supported: "lax", "strict"
|
*/
'same_site' => null,
]; ];