Add configuration to secure cookies

hluk · Nov 23, 2023 · 0c793e6 · 0c793e6
1 parent 572004c
commit 0c793e6
Showing 1 changed file with 6 additions and 0 deletions.
diff --git a/waiverdb/config.py b/waiverdb/config.py
@@ -38,6 +38,12 @@ class Config(object):
     OTEL_EXPORTER_OTLP_METRICS_ENDPOINT = None
     OTEL_EXPORTER_SERVICE_NAME = "waiverdb"
 
+    # Secure cookies
+    PERMANENT_SESSION_LIFETIME = 300
+    SESSION_COOKIE_NAME = "session"
+    SESSION_COOKIE_SECURE = True
+    SESSION_COOKIE_SAMESITE = "Lax"
+
 
 class ProductionConfig(Config):
     DEBUG = False