8 Commits (3f2533ca8e2465fbc742df02741e7dbe633d0da0)

Author SHA1 Message Date
Claire 21fb3f3684
Drop dependency on secure_headers, fix response headers (#15712) 4 years ago
Cecylia Bocovich e79f8dd85c
Onion service related changes to HTTPS handling (#15560) 4 years ago
Eugen Rochko acc1c03861
Fix cookies not having a SameSite attribute (#15098) 4 years ago
Moritz Heiber ecf40d09ed Disable Same-Site cookie implementation to fix SSO issues on WebKit browsers (#9819) 6 years ago
Sorin Davidoi 6f3d934bc1 feat(cookies): Use the same-site attribute to lax (#8626) 6 years ago
Naoki Kosaka 8d51ce4290 Fix enforce HTTPS in production. (#6180) 7 years ago
Eugen Rochko 9467b900a2 Make cookies https-only if LOCAL_HTTPS is true, set X-Frame-Options to DENY, 8 years ago
Eugen Rochko 9c4856bdb1 Initial commit 9 years ago