Commit f97be33a authored by Nicolas Wavrant's avatar Nicolas Wavrant

stack-monitor: protection HttpOnly added for cookie

parent b7037f9c
...@@ -70,7 +70,7 @@ if "password" in form: ...@@ -70,7 +70,7 @@ if "password" in form:
password = form['password'].value password = form['password'].value
if password == '{{ password }}' : if password == '{{ password }}' :
cookie['password'] = password cookie['password'] = password
print cookie print cookie, "; Path=/; HttpOnly"
else: else:
cookie_string = os.environ.get('HTTP_COOKIE') cookie_string = os.environ.get('HTTP_COOKIE')
if cookie_string: if cookie_string:
......
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment