mam/mamweb
11
0
Fork 0
Code Issues Pull requests 10 Projects Wiki Activity Actions

Nastaveni HTTPS-only session cookies (prod a test)

Browse source
This commit is contained in:
Tomas Gavenciak 2015-10-04 00:09:24 +02:00
parent b77318e2d7
commit 3038fada3d
2 changed files with 11 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

8
mamweb/settings_prod.py
View file

@ -47,12 +47,18 @@ import os
SERVER_EMAIL = 'mamweb-prod-errors@mam.mff.cuni.cz' SERVER_EMAIL = 'mamweb-prod-errors@mam.mff.cuni.cz'
ADMINS = [ ADMINS = [
('Tomas Gavenciak', 'gavento@ucw.cz'),
('Petr Pecha', 'nejlepsitextovyeditorjevim@gmail.com'), ('Petr Pecha', 'nejlepsitextovyeditorjevim@gmail.com'),
('Matěj Kocián', 'matej.kocian@gmail.com'), ('Matěj Kocián', 'matej.kocian@gmail.com'),
] ]
# SECURITY: only send sensitive cookies via HTTPS
SESSION_COOKIE_SECURE = True
CSRF_COOKIE_SECURE = True
# LOGGING = { # LOGGING = {
# 'version': 1, # 'version': 1,
# 'disable_existing_loggers': True, # 'disable_existing_loggers': True,

4
mamweb/settings_test.py
View file

@ -53,6 +53,10 @@ ADMINS = [
] ]
# SECURITY: only send sensitive cookies via HTTPS
SESSION_COOKIE_SECURE = True
CSRF_COOKIE_SECURE = True