Changeset - 1308f068fc1a
Parent rev.
Child rev.
[Not reviewed]
beta
0 3 0
Marcin Kuzminski - 14 years ago 2011-11-23 15:37:50
marcin@python-works.com
added httponly and secure cookie into ini files
3 files changed with 12 insertions and 2 deletions:
development.ini
3
production.ini
4
1
rhodecode/config/deployment.ini_tmpl
5
1
0 comments (0 inline, 0 general)
development.ini
Show inline comments
 
@@ -142,6 +142,9 @@ beaker.session.key = rhodecode
 
beaker.session.encrypt_key = g654dcno0-9873jhgfreyu
 
beaker.session.validate_key = 9712sds2212c--zxc123
 
beaker.session.timeout = 36000
 
beaker.session.httponly = true
 
# uncomment for https secure cookie
 
beaker.session.secure = false
 

			




	
	
	
		
 
##auto save the session to not to use .save()

			




	
	
	
		
 
beaker.session.auto = False

			




        

    


    
    

    

        

                

                    production.ini
                

                

                  
                      
                        

                      

                      
                        
                  

                  
                      
                  
                      
                  
                      
                  
                      
                  
                  
                

                

                    Show inline comments
                    
                

        

        

            



	
	
		
 
@@ -142,6 +142,9 @@ beaker.session.key = rhodecode

			




	
	
	
		
 
beaker.session.encrypt_key = g654dcno0-9873jhgfreyu

			




	
	
	
		
 
beaker.session.validate_key = 9712sds2212c--zxc123

			




	
	
	
		
 
beaker.session.timeout = 36000

			




	
	
	
		
 
beaker.session.httponly = true

			




	
	
	
		
 
# uncomment for https secure cookie

			




	
	
	
		
 
beaker.session.secure = false

			




	
	
	
		
 

			




	
	
	
		
 
##auto save the session to not to use .save()

			




	
	
	
		
 
beaker.session.auto = False

			




	
	
		
 
@@ -255,4 +258,4 @@ datefmt = %Y-%m-%d %H:%M:%S

			




	
	
	
		
 
[formatter_color_formatter_sql]

			




	
	
	
		
 
class=rhodecode.lib.colored_formatter.ColorFormatterSql

			




	
	
	
		
 
format= %(asctime)s.%(msecs)03d %(levelname)-5.5s [%(name)s] %(message)s

			




	
	
	
		
 
datefmt = %Y-%m-%d %H:%M:%S

			




	
	
		
 
\ No newline at end of file

			




	
	
	
		
 
datefmt = %Y-%m-%d %H:%M:%S

			




        

    


    
    

    

        

                

                    rhodecode/config/deployment.ini_tmpl
                

                

                  
                      
                        

                      

                      
                        
                  

                  
                      
                  
                      
                  
                      
                  
                      
                  
                  
                

                

                    Show inline comments
                    
                

        

        

            



	
	
		
 
@@ -142,13 +142,17 @@ beaker.session.key = rhodecode

			




	
	
	
		
 
beaker.session.encrypt_key = ${app_instance_secret}

			




	
	
	
		
 
beaker.session.validate_key = ${app_instance_secret}

			




	
	
	
		
 
beaker.session.timeout = 36000

			




	
	
	
		
 
beaker.session.httponly = true

			




	
	
	
		
 
# uncomment for https secure cookie

			




	
	
	
		
 
beaker.session.secure = false

			




	
	
	
		
 

			




	
	
	
		
 
##auto save the session to not to use .save()

			




	
	
	
		
 
beaker.session.auto = False

			




	
	
	
		
 

			




	
	
	
		
 
##true exire at browser close

			




	
	
	
		
 
#beaker.session.cookie_expires = 3600

			




	
	
	
		
 
    

			




	
	
	
		
 

			




	
	
	
		
 

			




	
	
	
		
 
################################################################################

			




	
	
	
		
 
## WARNING: *THE LINE BELOW MUST BE UNCOMMENTED ON A PRODUCTION ENVIRONMENT*  ##

			




	
	
	
		
 
## Debug mode will enable the interactive debugging tool, allowing ANYONE to  ##

			




        

    



    


    



    



      

      





    
    0 comments (0 inline, 0 general)
    





    


  

  







  


    




    








    
        
    
    
        This site is powered by
            Kallithea 0.7.0,
        which is
        © 2010–2025 by various authors & licensed under GPLv3.