erp5_core: Use SameSite=Lax cookie

SameSite=None breaks the compatibility with some browser versions. https://www.chromium.org/updates/same-site/incompatible-clients

erp5_core: Use SameSite=Lax cookie
SameSite=None breaks the compatibility with some browser versions. https://www.chromium.org/updates/same-site/incompatible-clients
f987eff3 · Romain Courteaud · 1764c526 · f987eff3
Commit f987eff3 authored Jan 15, 2020 by Romain Courteaud
Hide whitespace changes
Inline Side-by-side

Showing with 1 addition and 1 deletion

product/ERP5/bootstrap/erp5_core/SkinTemplateItem/portal_skins/erp5_auto_logout/setAuthCookie.py ...mplateItem/portal_skins/erp5_auto_logout/setAuthCookie.py +1 -1

No files found.
--- a/product/ERP5/bootstrap/erp5_core/SkinTemplateItem/portal_skins/erp5_auto_logout/setAuthCookie.py
+++ b/product/ERP5/bootstrap/erp5_core/SkinTemplateItem/portal_skins/erp5_auto_logout/setAuthCookie.py
@@ -21,6 +21,6 @@ resp.setCookie(
  path='/',
  secure=getattr(portal, 'REQUEST', {}).get('SERVER_URL', '').startswith('https:'),
  http_only=True,
-  same_site='None',
+  same_site='Lax',
  **kw
 )