Support SameSite directive

awslabs / cognito-at-edge

Serverless authentication solution to protect your website or Amplify application

Apache License 2.0

168 stars 54 forks source link

Support SameSite directive #47

Closed ckifer closed 1 year ago

ckifer commented 1 year ago

What would you like to be added:

As a user with secure websites I would like control over all common cookie directives. Recently HttpOnly was added to the library - this would be to support SameSite as well.

Why is this needed:

Provide flexible configuration to cognito-at-edge
improve security config options

ckifer commented 1 year ago

Should probably wait on #46 to merge

ckifer commented 1 year ago

Resolved in #50

fknittel commented 1 year ago

@ckifer Thanks for the enhancement! Do you know whether this will be released anytime soon? We're keen on using it in our project.

ckifer commented 1 year ago

I also need to use it on next release - @jeandek or @borisfba ?

jeandek commented 1 year ago

@ckifer @fknittel : Sorry about the delay. I will try to publish the new version by the end of the week (probably Thursday).

ckifer commented 1 year ago

Thanks!

jeandek commented 1 year ago

@ckifer @fknittel We published version 1.3.2 of the package this morning. Here are the change notes.

ckifer commented 1 year ago

Thank you!!