patx/micropie

revert to cookie headers from 0.9.9.7.1

Commit 1839c53 · patx · 2025-02-25T01:57:09-05:00

Changeset

1839c534983d14bb5ef29c6b2a2ced4afa50c08f

Parents

1fadb3b761d8ba4f148d70dd0a74d2d599602b64

View source at this commit

Comments

No comments yet.

Log in to comment

Diff

diff --git a/MicroPie.py b/MicroPie.py
index 7704a15..659e0b9 100644
--- a/MicroPie.py
+++ b/MicroPie.py
@@ -342,7 +342,7 @@ class App:
                 session_id = cookies.get("session_id") or str(uuid.uuid4())
                 await self.session_backend.save(session_id, request.session, SESSION_TIMEOUT)
                 if not cookies.get("session_id"):
-                    extra_headers.append(("Set-Cookie", f"session_id={session_id}; Path=/; HttpOnly; SameSite=Strict"))
+                    extra_headers.append(("Set-Cookie", f"session_id={session_id}; Path=/; SameSite=Lax"))
 
             # Middleware: after request
             for mw in self.middlewares: