diff options
author | Robert Paprocki <robert@cryptobells.com> | 2016-05-31 13:41:38 -0700 |
---|---|---|
committer | Jiale Zhi <vipcalio@gmail.com> | 2016-06-07 11:31:30 -0700 |
commit | 8f414390cc72da90e9a450a2127acaea247e3dda (patch) | |
tree | 3b5af925ce4c600aceaef10665378a626ebd4c8a /README.md | |
parent | b83165199e63eec5c7e58f489eb4ac17657e7c46 (diff) | |
download | lua-resty-cookie-8f414390cc72da90e9a450a2127acaea247e3dda.tar.gz lua-resty-cookie-8f414390cc72da90e9a450a2127acaea247e3dda.tar.bz2 lua-resty-cookie-8f414390cc72da90e9a450a2127acaea247e3dda.zip |
Implement support for SameSite attribute
SameSite is an update to RFC6265, allowing servers to assert
that user agents should not send certain cookies along with
cross-site requests.
See: https://tools.ietf.org/html/draft-west-first-party-cookies-07
Diffstat (limited to 'README.md')
-rw-r--r-- | README.md | 3 |
1 files changed, 2 insertions, 1 deletions
@@ -62,7 +62,7 @@ Synopsis key = "Name", value = "Bob", path = "/", domain = "example.com", secure = true, httponly = true, expires = "Wed, 09 Jun 2021 10:18:14 GMT", max_age = 50, - extension = "a4334aebaec" + samesite = "Strict", extension = "a4334aebaec" }) if not ok then ngx.log(ngx.ERR, err) @@ -122,6 +122,7 @@ syntax: ok, err = cookie_obj:set({ secure = true, httponly = true, expires = "Wed, 09 Jun 2021 10:18:14 GMT", max_age = 50, + samesite = "Strict", extension = "a4334aebaec" }) ``` |