patx/micropie
put back secure cookie headers
Commit 1fadb3b · patx · 2025-02-24T22:40:47-05:00
Comments
No comments yet.
Diff
diff --git a/MicroPie.py b/MicroPie.py
index 659e0b9..7704a15 100644
--- a/MicroPie.py
+++ b/MicroPie.py
@@ -342,7 +342,7 @@ class App:
session_id = cookies.get("session_id") or str(uuid.uuid4())
await self.session_backend.save(session_id, request.session, SESSION_TIMEOUT)
if not cookies.get("session_id"):
- extra_headers.append(("Set-Cookie", f"session_id={session_id}; Path=/; SameSite=Lax"))
+ extra_headers.append(("Set-Cookie", f"session_id={session_id}; Path=/; HttpOnly; SameSite=Strict"))
# Middleware: after request
for mw in self.middlewares:
diff --git a/pyproject.toml b/pyproject.toml
index 075c7b8..986b4ee 100644
--- a/pyproject.toml
+++ b/pyproject.toml
@@ -4,7 +4,7 @@ build-backend = "flit_core.buildapi"
[project]
name = "MicroPie"
-version = "0.9.9.7.1"
+version = "0.9.9.7.2"
description = "An ultra micro ASGI web framework"
keywords = ["micropie", "asgi", "microframework", "http"]
readme = "README.md"