OpenCloud
/
mastodon
mirror of https://github.com/tootsuite/mastodon
1
1
Fork 0
Code Issues Releases Wiki Activity
mastodon/spec
History
Sorin Davidoi 6f3d934bc1 feat(cookies): Use the same-site attribute to lax (#8626) 
CSFR-prevention is already implemented but adding this doesn't hurt.

A brief introduction to Same-Site cookies (and the difference between strict and
lax) can be found at
https://blog.mozilla.org/security/2018/04/24/same-site-cookies-in-firefox-60/

TLDR: We use lax since we want the cookies to be sent when the user navigates
safely from an external site.
 		2018-09-08 23:54:28 +02:00
..
controllers Make Api::V1::MutesController paginate properly (#8472) 2018-08-26 21:30:17 +02:00
fabricators Display pending message on admin relays UI (#8494) 2018-08-28 05:39:43 +02:00
features
fixtures
helpers Add theme identifier to body classes for easier custom CSS styling (#8439) 2018-08-25 22:55:25 +02:00
lib Fix autoplay issue with spoiler tag (#8540) 2018-08-31 15:16:59 +02:00
mailers
models Fix nil host in remotable (#8508) 2018-08-29 21:13:49 +02:00
policies Add status destroy authorization to policy (#3453) 2017-05-30 22:56:31 +02:00
presenters
requests
routing
services Add preference for report notification e-mails, skip for duplicates (#8559) 2018-09-02 00:11:58 +02:00
support
validators
views Add animate custom emoji param to embed pages (#8507) 2018-08-30 23:14:01 +02:00
workers
rails_helper.rb feat(cookies): Use the same-site attribute to lax (#8626) 2018-09-08 23:54:28 +02:00
spec_helper.rb