Infrastructure/ansible
3
0
Fork 0
Code Issues Pull requests 6 Projects Releases Packages Wiki Activity Actions

Set Bodhi sessions to expire and to only send cookies over TLS.

Browse source 
Signed-off-by: Randy Barlow <randy@electronsweatshop.com>
This commit is contained in:
Randy Barlow 2017-01-25 16:11:11 +00:00
parent 470b9186c3
commit 9a47520467
2 changed files with 8 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

4
roles/bodhi2/base/templates/production.ini.j2
View file

@ -448,6 +448,10 @@ session.data_dir = /var/cache/bodhi/sessions/data
session.lock_dir = /var/cache/bodhi/sessions/lock
session.key = {{ bodhi2SessionKey }}
session.cookie_on_exception = true
# Tell the browser to only send the cookie over TLS
session.secure = true
# Create a cookie that is only valid for one day
session.timeout = 86400
cache.regions = default_term, second, short_term, long_term
cache.type = memory
cache.second.expire = 1

4
roles/bodhi2/base/templates/staging.ini.j2
View file

@ -418,6 +418,10 @@ session.data_dir = /var/cache/bodhi/sessions/data
session.lock_dir = /var/cache/bodhi/sessions/lock
session.key = {{ bodhi2SessionKeySTG }}
session.cookie_on_exception = true
# Tell the browser to only send the cookie over TLS
session.secure = true
# Create a cookie that is only valid for one day
session.timeout = 86400
cache.regions = default_term, second, short_term, long_term
cache.type = memory
cache.second.expire = 1