Add config option for cookie SameSite policy

Signed-off-by: Erik Michelson <github@erik.michelson.eu>
2020-08-27 02:04:49 +02:00
parent 23d54b8b4b
commit 824f910bfe
13 changed files with 41 additions and 25 deletions
--- a/public/js/lib/common/constant.ejs
+++ b/public/js/lib/common/constant.ejs
@@ -8,3 +8,5 @@ window.allowedUploadMimeTypes = <%- JSON.stringify(allowedUploadMimeTypes) %>
 window.linkifyHeaderStyle = '<%- linkifyHeaderStyle %>'

 window.DROPBOX_APP_KEY = '<%- DROPBOX_APP_KEY %>'
+
+window.cookiePolicy = '<%- cookiePolicy %>'
--- a/public/js/lib/common/login.js
+++ b/public/js/lib/common/login.js
@@ -20,12 +20,12 @@ export function resetCheckAuth () {
 export function setLoginState (bool, id) {
  Cookies.set('loginstate', bool, {
    expires: 365,
-    sameSite: 'strict'
+    sameSite: window.cookiePolicy
  })
  if (id) {
    Cookies.set('userid', id, {
      expires: 365,
-      sameSite: 'strict'
+      sameSite: window.cookiePolicy
    })
  } else {
    Cookies.remove('userid')