nginx_cookie_flag_module
nginx_cookie_flag_module copied to clipboard
AirisX
Module for Nginx which allows to set the flags "HttpOnly", "secure" and "SameSite" for cookies.
I found the following gist really useful when attempting to add this module to nginx in docker: https://gist.github.com/muuvmuuv/f1a0e7b6a6a02c2253dc92350eab7607 It's not for this module per se but it taught me what...
I'm submitting this patch on behalf of Ruslan Ermilov ([email protected]), who is an nginx developer. You can reach out to him directly in case of any questions. Also, please note,...
I'm submitting this patch on behalf of Ruslan Ermilov ([email protected]), who is an nginx developer. You can reach out to him directly in case of any questions. Also, please note,...
Hi , We have installed nginx cookie flag module with nginx plus , configured the configuration as like below /myapp { set_cookie_flag Secret HttpOnly secure SameSite; set_cookie_flag * HttpOnly; set_cookie_flag...
Added SameSite=none to have possibility make old application (like php < 7.3) to be compatible with new version of Chrome
* fix bug in patten search, use ngx_strlcasestrn instead of ngx_strcasestrn * enable set in http scope * enable work with userid module
https://blog.chromium.org/2019/10/developers-get-ready-for-new.html A new SameSite attribute value "None" is being added. This module should probably be updated to support it.
I have development nginx configuration, it is working on localhost with HTTP, but proxies requests to HTTPS upstream. And I need to remove **Secure** flag from upstream cookies. I've found...
``` location / { set_cookie_flag Secret HttpOnly secure SameSite; set_cookie_flag * HttpOnly; set_cookie_flag SessionID SameSite = Lax secure; set_cookie_flag SiteToken SameSite = Strict; if ($request_method = 'OPTIONS') { add_header 'Access-Control-Allow-Origin'...
