From f1f4a8291646b02b37aaf667615c1e70aebaa881 Mon Sep 17 00:00:00 2001
From: Tor Andersson <tor@ccxvii.net>
Date: Sat, 26 Jun 2021 12:49:10 +0200
Subject: Set strict cookies.

---
 server.js | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'server.js')

diff --git a/server.js b/server.js
index 43e81fd..ed945b7 100644
--- a/server.js
+++ b/server.js
@@ -62,7 +62,7 @@ app.use(express_session({
 	rolling: true,
 	saveUninitialized: false,
 	store: session_store,
-	cookie: { maxAge: 7 * 24 * 60 * 60 * 1000 }
+	cookie: { maxAge: 7 * 24 * 60 * 60 * 1000, sameSite: 'strict' }
 }));
 app.use(connect_flash());
 
-- 
cgit v1.2.3