Allow secure cookies in docker

Setting these two options to True is recommended if (and only if) you serve PDA via TLS. It will break things on plain-HTTP deployments. For plain deployments these can be set in the flask config file, for docker they have to be whitelisted to be set via env vars.
2024-11-08 14:40:27 +00:00 · 2022-05-27 12:53:32 +02:00 · 2022-05-27 12:53:32 +02:00 · 1a77524447
commit 1a77524447
parent ae2ad6527a
1 changed files with 6 additions and 2 deletions
--- a/configs/docker_config.py
+++ b/configs/docker_config.py
@ -57,7 +57,9 @@ legal_envvars = (
    'LDAP_ENABLED',
    'SAML_CERT',
    'SAML_KEY',
-    'FILESYSTEM_SESSIONS_ENABLED'
+    'FILESYSTEM_SESSIONS_ENABLED',
+    'SESSION_COOKIE_SECURE',
+    'CSRF_COOKIE_SECURE',
 )

 legal_envvars_int = ('PORT', 'MAIL_PORT', 'SAML_METADATA_CACHE_LIFETIME')
@ -79,7 +81,9 @@ legal_envvars_bool = (
    'SIGNUP_ENABLED',
    'LOCAL_DB_ENABLED',
    'LDAP_ENABLED',
-    'FILESYSTEM_SESSIONS_ENABLED'
+    'FILESYSTEM_SESSIONS_ENABLED',
+    'SESSION_COOKIE_SECURE',
+    'CSRF_COOKIE_SECURE',
 )

 # import everything from environment variables