search

OpenBankProject / API-Manager

A Django project to manage the Open Bank Project API via API Calls
GNU Affero General Public License v3.0
63 stars 61 forks source link

Add Secure Session Cookies #339

Closed nemozak1 closed 11 months ago

nemozak1 commented 11 months ago

Cookies that are secure, have the HttpOnly flag, and a default timeout of 300s have been added. To change the timeout, change SESSION_COOKIE_AGE in the django settings.py file.

See Django docs for in-depth info: https://docs.djangoproject.com/en/4.2/topics/http/sessions/#:~:text=If%20value%20is%20an%20integer,at%20that%20specific%20date%2Ftime.

sonarcloud[bot] commented 11 months ago

Kudos, SonarCloud Quality Gate passed!    Quality Gate passed

Bug A 0 Bugs
Vulnerability A 0 Vulnerabilities
Security Hotspot A 0 Security Hotspots
Code Smell A 0 Code Smells

No Coverage information No Coverage information
No Duplication information No Duplication information