Infrastructure/ansible
1
0
Fork 0
Code Issues Pull requests 6 Projects Releases Packages Wiki Activity Actions

Make other flask session cookies secure

Browse source
This commit is contained in:
Till Maas 2015-02-04 15:34:31 +01:00
parent 4a2e0ab67b
commit 73b1222f6b
8 changed files with 24 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

3
roles/anitya/backend/templates/anitya.cfg
View file

@ -24,3 +24,6 @@ CNUCNU_WEB_FEDORA_OPENID = 'https://id.fedoraproject.org'
# This is required to fix login # This is required to fix login
PREFERRED_URL_SCHEME='https' PREFERRED_URL_SCHEME='https'
# Make browsers send session cookie only via HTTPS
SESSION_COOKIE_SECURE = True

3
roles/anitya/backend/templates/anitya_admin.cfg
View file

@ -24,3 +24,6 @@ CNUCNU_WEB_FEDORA_OPENID = 'https://id.fedoraproject.org'
# This is required to fix login # This is required to fix login
PREFERRED_URL_SCHEME='https' PREFERRED_URL_SCHEME='https'
# Make browsers send session cookie only via HTTPS
SESSION_COOKIE_SECURE = True

3
roles/blockerbugs/templates/blockerbugs-settings.py.j2
View file

@ -21,3 +21,6 @@ STREAM_LOGGING = False
# to fix login issue for folks who are part of many FAS groups # to fix login issue for folks who are part of many FAS groups
PREFERRED_URL_SCHEME='https' PREFERRED_URL_SCHEME='https'
# Make browsers send session cookie only via HTTPS
SESSION_COOKIE_SECURE = True

3
roles/elections/templates/fedora-elections.cfg
View file

@ -31,6 +31,9 @@ FAS_CHECK_CERT = True
# This is required to fix login # This is required to fix login
PREFERRED_URL_SCHEME='https' PREFERRED_URL_SCHEME='https'
# Make browsers send session cookie only via HTTPS
SESSION_COOKIE_SECURE = True
DOGPILE_CACHE = { DOGPILE_CACHE = {
'backend': 'dogpile.cache.memcached', 'backend': 'dogpile.cache.memcached',
'arguments': { 'arguments': {

3
roles/fedocal/templates/fedocal.cfg
View file

@ -33,6 +33,9 @@ PATH_ALEMBIC_INI='/etc/fedocal/alembic.ini'
# This is required to fix login # This is required to fix login
PREFERRED_URL_SCHEME='https' PREFERRED_URL_SCHEME='https'
# Make browsers send session cookie only via HTTPS
SESSION_COOKIE_SECURE = True
{% if env == 'staging' %} {% if env == 'staging' %}
APP_URL = 'https://apps.stg.fedoraproject.org/calendar/' APP_URL = 'https://apps.stg.fedoraproject.org/calendar/'
FAS_OPENID_ENDPOINT = 'https://id.stg.fedoraproject.org/' FAS_OPENID_ENDPOINT = 'https://id.stg.fedoraproject.org/'

3
roles/kerneltest/templates/kerneltest.cfg
View file

@ -32,6 +32,9 @@ MAX_CONTENT_LENGTH = 1024 * 10
# This is required to fix login # This is required to fix login
PREFERRED_URL_SCHEME='https' PREFERRED_URL_SCHEME='https'
# Make browsers send session cookie only via HTTPS
SESSION_COOKIE_SECURE = True
{% if env == 'staging' %} {% if env == 'staging' %}
FAS_OPENID_ENDPOINT = 'https://id.stg.fedoraproject.org/' FAS_OPENID_ENDPOINT = 'https://id.stg.fedoraproject.org/'
{% endif %} {% endif %}

3
roles/nuancier/templates/nuancier.cfg
View file

@ -46,6 +46,9 @@ THUMB_SIZE = (256, 256)
# This is required to fix login in stg # This is required to fix login in stg
PREFERRED_URL_SCHEME='https' PREFERRED_URL_SCHEME='https'
# Make browsers send session cookie only via HTTPS
SESSION_COOKIE_SECURE = True
# dogpile.cache configuration to work with memcached # dogpile.cache configuration to work with memcached
NUANCIER_CACHE_BACKEND = 'dogpile.cache.memcached' NUANCIER_CACHE_BACKEND = 'dogpile.cache.memcached'
NUANCIER_CACHE_KWARGS = {'arguments' : { NUANCIER_CACHE_KWARGS = {'arguments' : {

3
roles/tagger/templates/fedoratagger.cfg.j2
View file

@ -12,6 +12,9 @@ FAS_OPENID_ENDPOINT = 'http://id.fedoraproject.org'
# This is required for openid to work in stg. Might as well for prod too. # This is required for openid to work in stg. Might as well for prod too.
PREFERRED_URL_SCHEME = 'https' PREFERRED_URL_SCHEME = 'https'
# Make browsers send session cookie only via HTTPS
SESSION_COOKIE_SECURE = True
# Stuff for toscawidgets2 # Stuff for toscawidgets2
RES_PREFIX = '/tagger/_res/' RES_PREFIX = '/tagger/_res/'